last executing test programs:

8.471413369s ago: executing program 4 (id=1623):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413e850000000f00000095"], &(0x7f0000000440)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = epoll_create1(0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f00000000c0)={0x6000001f})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x5, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = socket$nl_route(0x10, 0x3, 0x0)
recvmmsg(r4, &(0x7f0000000bc0)=[{{0x0, 0x0, &(0x7f0000000b80)=[{&(0x7f0000000b40)=""/22, 0x16}], 0x1}, 0x8}], 0x1, 0x40000040, 0x0)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x25, &(0x7f0000000300), 0x4)
sendfile(r3, r2, 0x0, 0x7ffff07a)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xb, &(0x7f0000000c00)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x83000000}, {0x85, 0x0, 0x0, 0x71}}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000040)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@usrjquota}]}, 0x3, 0x44a, &(0x7f0000000400)="$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")
r6 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r6, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1, 0x5}, 0x1c)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/24], 0x48)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_inet_SIOCSIFFLAGS(r7, 0x8914, &(0x7f00000003c0)={'bridge0\x00'})
ioctl$sock_SIOCBRDELBR(r7, 0x89a1, &(0x7f0000000080)='bridge0\x00')

7.616189963s ago: executing program 4 (id=1646):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x200000000000019f, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES16=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r0}, &(0x7f0000000540), &(0x7f0000000580)=r1}, 0x20)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000240)={r1}, 0x57)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="150000004effff000000000800395032303030"], 0x15)
r2 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
read(r2, 0x0, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = mq_open(&(0x7f00005a1ffb)='e\xeeQ\x92o', 0x42, 0x0, 0x0)
pselect6(0x40, &(0x7f00000045c0), 0x0, &(0x7f0000004640)={0xf8}, 0x0, 0x0)
mq_timedsend(r3, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r5, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff0180"], 0x15)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xe, 0xe, &(0x7f0000001740)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040), 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xfffffffffffffece, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0x0, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r7, &(0x7f0000000080), &(0x7f0000001540)=""/155}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r7}, &(0x7f0000000200), &(0x7f0000000240)=r6}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x4, &(0x7f0000001800)={{r7}, &(0x7f0000001780)=0x4, &(0x7f00000017c0)='%-010d \x00'}, 0x20)
r8 = dup(r5)
write$P9_RLERRORu(r8, &(0x7f00000002c0)=ANY=[@ANYRES64=r1], 0x53)
write$RDMA_USER_CM_CMD_CREATE_ID(r8, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x3, 0x0, 0x13f, 0x5}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r8, &(0x7f00000004c0)={0x0, 0x18, 0xfa00, {0x3, 0x0, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r8, &(0x7f00000003c0)={0x0, 0x18, 0xfa00, {0x2, 0x0, 0x13f}}, 0x20)
write$binfmt_elf64(r8, &(0x7f0000000280)=ANY=[@ANYBLOB="7f450700000053c407cd"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000001340)=ANY=[@ANYBLOB='transQfd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r5, @ANYBLOB=',k'])

6.73922203s ago: executing program 4 (id=1661):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0b00000005000000020000000400000005000000", @ANYRES32, @ANYBLOB="0000000000000000000000000000000000000023960fe4e93fbccfc1033347bdca53ec7bc5bcecb0246c47df1389f77846490a193df6f192f9206e6b188c00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x3000003, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, &(0x7f000095dffc)=0x8)
r1 = socket(0x11, 0x2, 0x0)
getsockopt$nfc_llcp(r1, 0x107, 0x18, 0x0, 0x20600000)

6.73887145s ago: executing program 4 (id=1662):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="4c0100001000130100000000000000007f00000100"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="000000000000000000000000000000000000000032000000ac14140000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000100000000000000000048000200656362286369706865725f6e756c6c29"], 0x14c}}, 0x0)

6.715028162s ago: executing program 4 (id=1663):
unlinkat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x0)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x48, 0x0, 0x0, 0x0, 0x0, 0x200, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6, 0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x1, 0xffffffffffffffff, 0x2)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "0000fa00ea8000"})
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x541b, 0x0)
r2 = socket$inet(0x2, 0x6, 0x200)
r3 = signalfd(r2, &(0x7f00000001c0)={[0xfffffffffffffffe]}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r3, 0xc0189377, &(0x7f0000000280)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x6, 0xb0a}}, './file0\x00'})
ioctl$sock_inet_SIOCSARP(r2, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @multicast2}, {0x1, @local}, 0x7a, {0x2, 0x4e23, @empty}})
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
timer_create(0x2, 0x0, &(0x7f0000000480))
timer_settime(0x0, 0x1, &(0x7f0000000000)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)

6.678726235s ago: executing program 4 (id=1664):
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
unshare(0x400)
fsync(0xffffffffffffffff)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108)
r1 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2a, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x108)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x48, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0006, &(0x7f0000001480)={[{@jqfmt_vfsold}, {@resgid={'resgid', 0x3d, 0xee00}}, {@bh}, {@noload}, {@data_err_ignore}, {@data_err_abort}]}, 0xfe, 0x43e, &(0x7f00000004c0)="$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")
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB="000000000100"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
read$char_usb(0xffffffffffffffff, &(0x7f0000000140)=""/189, 0xfffffecd)

1.81841319s ago: executing program 2 (id=1746):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b30, 0x0)
move_mount(0xffffffffffffffff, &(0x7f0000000280)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x310)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = socket(0xa, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f00000002c0)={0x100000011, @multicast2, 0x0, 0x2, 'lblcr\x00'}, 0x2c)
setsockopt$IP_VS_SO_SET_FLUSH(r1, 0x0, 0x485, 0x0, 0x0)

1.808074721s ago: executing program 2 (id=1747):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="4c0100001000130100000000000000007f00000100"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="000000000000000000000000000000000000000032000000ac14140000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000100000000000000000048000200656362286369706865725f6e756c6c29"], 0x14c}}, 0x0)

1.793213592s ago: executing program 2 (id=1748):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000480, &(0x7f0000000140), 0x1, 0x784, &(0x7f00000007c0)="$eJzs3c1rHOUfAPDvbJKmSfv7JYKg9RQQNFC6MTW2Ch4qHkSwUNCz7bLZhppNtmQ3pQkBW0TwIqh4EPTSsy/15tWXq/4XHqSlalqseJDI7Eu7bXbTTZvdDeTzgck+z8xsnue7z8wzz+wMOwHsWRPpn0zEoYj4KIkYq89PImKomhqMOFFb7/b6Wj6dktjYePOPpLrOrfW1fDS9J3WgnnkyIn58P+JwZnO55ZXV+VyxWFiq56cqC+enyiurR84t5OYKc4XFY9MzM0ePv3D82M7F+tcvqwevf/zas9+c+Oe9J65++FMSJ+JgfVlzHDtlIibqn8lQ+hHe49WdLqzPkn5XgIeS7poDtb08DsVYDFRTbYz0smYAQLe8GxEbAMAekzj+A8Ae0/ge4Nb6Wr4x9fcbid668UpE7K/F37i+WVsyWL9mt796HXT0VnLPlZEkIsZ3oPyJiPjiu7e/Sqfo0nVIgFYuXY6IM+MTm/v/ZNM9C9v13FYLN4arLxP3zdb/Qe98n45/Xmw1/svcGf9Ei/HPcIt992E8eP/PXNuBYtpKx38vN93bdrsp/rrxgXruf9Ux31By9lyxkPZt/4+IyRgaTvPT1VVb3wU1efPfm+3Kbx7//fnJO1+m5aevd9fIXBscvvc9s7lK7lHjbrhxOeKpwVbxJ3faP2kz/j3VYRmvv/TB5+2WpfGn8TamzfF318aViGdatv/dtky2vD9xqro5TDU2iha+/fWz0XblN7d/OqXlN84FeiFt/9Gt4x9Pmu/XLG+/jJ+vjP3QbtmD42+9/e9L3qqm99XnXcxVKkvTEfuSNzbPP3r3vY18Y/00/smnW+//W23/6TnhmQ7jH7z++9cPH393pfHPbqv9t5+4ent+oF35nbX/TDU1WZ/TSf/XaQUf5bMDAAAAAAAAAAAAAAAAAAAAAAAAgE5lIuJgJJnsnXQmk83WnuH9eIxmiqVy5fDZ0vLibFSflT0eQ5nGT12ONf0e6nT99/Ab+aP35Z+PiMci4tPhkWo+my8VZ/sdPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADUHWjz/P/Ub8P9rh0A0DX7+10BAKDnHP8BYO/Z3vF/pGv1AAB6x/k/AOw9HR//z3S3HgBA7zj/BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoMtOnTyZTht/r6/l0/zshZXl+dKFI7OF8nx2YTmfzZeWzmfnSqW5YiGbLy20/UeXai/FUun8TCwuX5yqFMqVqfLK6umF0vJi5fS5hdxc4XRhqGeRAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEDnyiur87lisbAksWViZHdUY9ckBmNXVEOia4nmXmKkfx0UAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwC73XwAAAP//+Lkq2Q==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r0, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r1, &(0x7f0000000140)='2', 0x1, 0x8000c61)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="0100000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB="00faffffffffffffff0200ea75b4f7498b71f1c03c415388004e5ca9e9ba7e0f010884ae2e38a356efd9900a42fb617eae13382c1423e8a64036e25a1db1ce7fe475a5192a212b10c770e0b41ae9fed2f870f9978fb2a49a259f7b7ee4d53081", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008088100b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0xfffffe57, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r3}, 0x10)
r4 = fsopen(&(0x7f0000000340)='tmpfs\x00', 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$PIO_UNIMAP(r5, 0x4b67, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{}]})
ioctl$PIO_UNIMAPCLR(r5, 0x4b68, &(0x7f0000000300)={0x6, 0xfffe, 0xfff})
r6 = socket(0x10, 0x3, 0x0)
r7 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000004640)={&(0x7f0000000540)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x3fff8}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x37}}}]}, 0x78}}, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r9 = fsmount(r4, 0x0, 0x0)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000004000000000000000000000005000000000000"], 0x48)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000fcffffff18110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b702000000000100850000008600000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8b, 0x0, &(0x7f00000004c0)="4eba57723639cad0f1b20d4db34c2b2f142d1549fc8706c6a41d1f9741b5ee8695d6ef20736728351d87bf6da79e2494e76307c44af1a37b7456588215759691f3c2c92475b1ec74d9ede731c39851f842d5e9071ac8c8c08a3360fc9f4869c2b0bd9308f9c550bfbd25c8521be88feeef7650ab49d8fe5b6f40c8ab6b02dbb95ae6a1217fd6018eae7a14", 0x0}, 0x50)
write$binfmt_script(r10, &(0x7f00000002c0), 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r10, 0x0)
r13 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCETHTOOL(r13, 0x8946, &(0x7f0000000080)={'macvlan0\x00', &(0x7f0000000fc0)=@ethtool_per_queue_op={0x4b, 0x2b, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x5b, 0x4]}})
mknodat$loop(r9, &(0x7f0000000040)='./file0\x00', 0x40, 0x1)
name_to_handle_at(r9, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000240)=ANY=[@ANYBLOB="140000"], &(0x7f00000004c0), 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r10, 0x84, 0x1c, &(0x7f0000000180), &(0x7f0000000280)=0x4)

1.627420187s ago: executing program 0 (id=1752):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000080)='netlink_extack\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEAUTHENTICATE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)={0x24, r2, 0xfc5, 0x0, 0x0, {{0x11}, {@val={0x8}, @void}}, [@NL80211_ATTR_IE={0x8, 0x2a, [@perr={0x84, 0xffffffffffffff21}]}]}, 0x24}}, 0x0)

1.59802539s ago: executing program 0 (id=1754):
perf_event_open(&(0x7f0000000300)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x5, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000001000/0x4000)=nil)
prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000ffc000/0x4000)=nil)
munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000)
brk(0x20ffc004)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x40002, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})

1.577020731s ago: executing program 0 (id=1755):
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
syz_emit_ethernet(0x46, &(0x7f00000000c0)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x0, 0x0, 0x12, 0x0, 0x2802, {0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6c, 0x0, @broadcast, @private}, "0000050000000000"}}}}}, 0x0)
r0 = socket(0xa, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @multicast2, 0xffff, 0x0, 'ovf\x00', 0x3f, 0x0, 0x4}, 0x2c)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), r1)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000003000000400001802c0004001400010002000000ac1414aa00000000000000001400020002000000e000000200000000000004000d0001007564703a73"], 0x54}}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000700096a938c5dff34f84bc2a11f0040", @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)={0x114, 0x2b, 0x1, 0x1000000, 0x0, "", [@nested={0x101, 0x0, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@loopback={0x100000000000000}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd"]}]}, 0x114}], 0x1}, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r3, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r3, <r5=>0xffffffffffffffff}, &(0x7f0000000440), &(0x7f00000005c0)}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x18)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r3, &(0x7f0000000000), &(0x7f00000000c0)=""/109}, 0x20)
r7 = io_uring_setup(0x4f01, &(0x7f0000000180))
r8 = socket$inet6(0xa, 0x6, 0x0)
listen(r8, 0x400000001ffffffd)
r9 = accept4(r8, 0x0, 0x0, 0x0)
close_range(r7, r9, 0x0)

1.576697982s ago: executing program 3 (id=1756):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000480, &(0x7f0000000140), 0x1, 0x784, &(0x7f00000007c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x89f1, &(0x7f0000000900)={'ip6gre0\x00', @random="0600002000"})
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000a50000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x3, 0x10, 0x1, 0x20, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001640)={&(0x7f0000000300)={0x2, 0x0, @multicast2=0xe0000001}, 0x10, 0x0, 0x0, 0x0, 0x38}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='mem_disconnect\x00', r3}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000002c0)={r5}, 0x69)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000400)='global_dirty_state\x00', r6}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000400)='global_dirty_state\x00', r7}, 0x10)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r8, &(0x7f0000000180), 0x40001)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000300)=ANY=[], 0x20)

1.522732816s ago: executing program 2 (id=1757):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = openat$tun(0xffffff9c, &(0x7f0000000300), 0x40080, 0x0)
ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000340)={'bridge_slave_1\x00', 0x200})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000400)='kfree\x00', r2, 0x0, 0x1c}, 0x18)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
io_uring_setup(0x168e, &(0x7f0000000180)={0x0, 0x0, 0x10, 0x1})
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
syz_emit_ethernet(0x7a, &(0x7f0000000280)={@random="856b934629fa", @local, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "381f34", 0x14, 0x2f, 0x0, @private0, @mcast2, {[], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x88a8, 0x2}}}}}}}, 0x0)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
unshare(0x20040600)
r6 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_opts(r6, 0x0, 0x4, 0x0, 0x0)

1.438199614s ago: executing program 0 (id=1758):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b30, 0x0)
move_mount(0xffffffffffffffff, &(0x7f0000000280)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x310)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = socket(0xa, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f00000002c0)={0x100000011, @multicast2, 0x0, 0x2, 'lblcr\x00'}, 0x2c)
setsockopt$IP_VS_SO_SET_FLUSH(r1, 0x0, 0x485, 0x0, 0x0)

1.426068095s ago: executing program 0 (id=1759):
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, &(0x7f00000010c0)=0x5, 0x4)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x13, 0xb, &(0x7f00000003c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000000)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'bridge0\x00'})
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x7, &(0x7f0000000180)=0x8, 0x4)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
unshare(0x6020400)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)=<r4=>0x0)
timer_settime(r4, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe(&(0x7f00000002c0)={<r5=>0xffffffffffffffff})
vmsplice(r5, &(0x7f0000000300)=[{&(0x7f0000000080)='|', 0x1}, {&(0x7f0000000240)="84fe1167f1815ab7a6cdbbeee2101e0d493fd0933101fbc8a473cf09e0a59e21829810b55df95c", 0x27}], 0x2, 0x0)
fcntl$lock(r2, 0x5, &(0x7f0000000040)={0x1, 0x3, 0x0, 0x8, 0xffffffffffffffff})
lsetxattr$trusted_overlay_opaque(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380), &(0x7f0000000440), 0x2, 0x1)
syz_emit_ethernet(0xfdef, &(0x7f0000001b80)={@multicast, @dev, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @empty=0x2, @multicast2}}}}}, 0x0)

1.354723131s ago: executing program 3 (id=1760):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000200)={[{@quota}, {@oldalloc}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x3, 0x442, &(0x7f0000000d80)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0xc, &(0x7f0000000380)=@framed={{}, [@printk={@lx, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x2d}}, @call={0x85, 0x0, 0x0, 0xf}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='block_plug\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0)
read$usbmon(r3, &(0x7f0000000140)=""/196, 0xc4)
r4 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
r5 = dup3(r3, r4, 0x0)
preadv(r5, &(0x7f0000000280)=[{&(0x7f0000000100)=""/24, 0x30}, {0x0, 0x2}], 0x2, 0x0, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000240)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x0, 0x11, 0x148, 0x0, 0x0, 0x430, 0x2a8, 0x2a8, 0x430, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip_vti0\x00', {0x0, 0x0, 0x3f, 0x0, 0x0, 0x3, 0x7}}}, @common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x200}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'syz0\x00'}}}, {{@ip={@multicast2, @private, 0x0, 0x0, 'vlan0\x00', 'netdevsim0\x00'}, 0x0, 0xd0, 0xf0, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@unspec=@quota={{0x38}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x528)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r6, 0x4000000000000, 0x40, &(0x7f0000000780)=@raw={'raw\x00', 0x701, 0x3, 0x258, 0x108, 0xb, 0x108, 0x1c0, 0x0, 0x1c0, 0x1c8, 0x1c8, 0x1c0, 0x1c8, 0x3, 0x0, {[{{@ip={@rand_addr, @broadcast, 0x0, 0x0, 'veth1_to_batadv\x00', '\x00', {}, {}, 0x32}, 0x0, 0xa0, 0x108, 0x0, {}, [@common=@inet=@esp={{0x30}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz0\x00'}}}, {{@ip={@loopback, @empty, 0x0, 0x0, 'veth1_to_batadv\x00', 'ip6erspan0\x00'}, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x2b8)
write$cgroup_type(r1, &(0x7f0000000000), 0x248800)

803.313729ms ago: executing program 1 (id=1768):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TIOCGICOUNT(r0, 0x545d, 0x0) (fail_nth: 1)

574.16644ms ago: executing program 2 (id=1769):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TIOCGICOUNT(r0, 0x545d, 0x0)

573.659369ms ago: executing program 0 (id=1770):
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, &(0x7f00000010c0)=0x5, 0x4)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000000)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'bridge0\x00'})
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x7, &(0x7f0000000180)=0x8, 0x4)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
unshare(0x6020400)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe(&(0x7f00000002c0)={<r4=>0xffffffffffffffff})
vmsplice(r4, &(0x7f0000000300)=[{&(0x7f0000000080)='|', 0x1}, {&(0x7f0000000240)="84fe1167f1815ab7a6cdbbeee2101e0d493fd0933101fbc8a473cf09e0a59e21829810b55df95c", 0x27}], 0x2, 0x0)

558.395691ms ago: executing program 1 (id=1771):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYRES16=r0], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f00000004000000040000001200000000000000", @ANYRES16=r5, @ANYBLOB="0000deffffffffffffff00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000a00)=ANY=[@ANYRES16=r1, @ANYRES32=r6, @ANYBLOB='&\x00'/12, @ANYRES32=r5, @ANYBLOB="511f59949abf0d668509b995a7b1a3535d72d40e11a4b3b194c7804c83e9f657b9f1f161851b126f92c3845049578e4c2c19dabd4e9a43ba8f47d168f0dfbeacf1d090af9bea3596d4655033f9d432619d6e1b6700000000000000000000006c", @ANYRESDEC], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r6}, &(0x7f0000000000), &(0x7f0000000080)=r2}, 0x20)
recvmsg$unix(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0xb3}], 0x1}, 0x0)
sendmsg$inet(r4, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000280)='>', 0x1}], 0x1}, 0x0)
ioctl$MON_IOCT_RING_SIZE(0xffffffffffffffff, 0x9204, 0x80000000003d55d)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000bc0)=ANY=[@ANYBLOB="0500000001000000080000000800000000000000", @ANYRES32, @ANYBLOB="0b00ffeb000000000000000000000000364ee5fe309cc3ffd145b3527a595a2e8a480be611487ba8eed2e9b05242bf88b180e79bfa633b6f8351ff83d8c85f198dffdb6a89098ff6e096342678d8d7a9479b6bf9c0a943da535bec0c1ead16073c9a004a3aa68bf353f6e5d74bd38b01b3ce010d8e77151fcaf674adea65559f9f407860fb7dcbe1e4db342cb89c16641ea1d06b98d22fe73c994a4a01cc0eff70f9875ad43742eb32af4aee96c96005d949880e6c4c893a4cb1307e56bca9271b8f8471fd0d93e3e6a4af9532e6ec378c0442def1bfcd94f96d26640534ba0b", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRESDEC=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r7], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x10)
r9 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="248474091d1812bef6659a000000b300"/39], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r10}, 0x10)
r11 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r11, 0x6, 0xd, &(0x7f00000002c0)='cdg\x00', 0x4)
close(r11)
r12 = openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000500), 0x2, 0x0)
write$selinux_context(r12, &(0x7f0000000540)='system_u:object_r:cpu_device_t:s0\x00', 0x22)
r13 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='sys_enter\x00', r13}, 0x10)

558.046151ms ago: executing program 2 (id=1772):
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a00000000000000000000000000000900010073797a300000000014000000030a00000000000000000000000000004c000000060a000000000000000000000000000008000b4040000000300004802c0001800a0001006c696d69740000001c0002800c000140ffffffffffffffff0c0002400000000000000000140000001100010000000000000000000000000a"], 0xa8}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x4b0}}, 0x0)
flock(r1, 0x2)
r3 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
flock(0xffffffffffffffff, 0x2)
flock(r0, 0x1)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYRESDEC=r3, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRESDEC=0x0, @ANYBLOB='\x00\x00\b\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})
r6 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'syzkaller0\x00', <r7=>0x0})
setsockopt$packet_add_memb(r5, 0x107, 0x1, &(0x7f00000000c0)={r7, 0x2, 0x6, @dev}, 0x10)
r8 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r8, 0x89a1, &(0x7f0000000040)={'syzkaller0\x00'})
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000200)=ANY=[@ANYBLOB="cc020000", @ANYRES16, @ANYBLOB="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"], 0x2cc}}, 0x0)

545.552192ms ago: executing program 3 (id=1773):
r0 = syz_io_uring_setup(0x6acf, &(0x7f0000000940), &(0x7f00000009c0), &(0x7f00000003c0))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, 0x0, &(0x7f00000002c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
io_uring_register$IORING_REGISTER_BUFFERS2(r0, 0xf, &(0x7f0000001c80)={0x2, 0x0, 0x0, &(0x7f0000001c00)=[{0x0}, {0x0}], &(0x7f0000001c40)}, 0x20)

470.380728ms ago: executing program 3 (id=1774):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mbind(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x5, &(0x7f0000000240)=0xffffffffffffffff, 0x85, 0x0)
set_mempolicy_home_node(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x0)

469.918448ms ago: executing program 1 (id=1775):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
write$vga_arbiter(0xffffffffffffffff, &(0x7f0000000000), 0xf)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x89f1, &(0x7f0000000040)={'ip6_vti0\x00', @random='\a\x00\x00 \x00'})

456.22993ms ago: executing program 3 (id=1776):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f00000001c0)='./bus\x00', 0x1004043, &(0x7f0000000080), 0x64, 0x516, &(0x7f0000000740)="$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")
r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
r1 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x8, 0x7fe2, 0xfffffffd, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
ioctl$EVIOCGRAB(r1, 0x40044590, &(0x7f0000000440))
close(r1)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000200)={0x0, <r2=>0x0})
ptrace$peek(0x1, r2, &(0x7f0000000180))
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r3, &(0x7f0000000300), 0x10)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
ptrace$getregset(0x4205, r4, 0x202, &(0x7f0000000240)={0x0})
sendmsg$can_bcm(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x5, 0x0, 0x0, {}, {}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "b0a2a7cf704005cd"}}, 0x48}}, 0x0)
sendmsg$can_bcm(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="050000000508"], 0x80}}, 0x0)
sendmsg$can_bcm(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x6, 0x0, 0x0, {0x0, 0xea60}, {0x77359400}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "6f8f1b7e3e806009"}}, 0x48}}, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)
openat$bsg(0xffffff9c, &(0x7f0000000140), 0x44102, 0x0)
r5 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
timer_settime(0x0, 0x1, &(0x7f00000000c0)={{0x0, 0x3938700}}, &(0x7f0000000100))
fsconfig$FSCONFIG_SET_FLAG(r5, 0x0, &(0x7f0000000080)='ro\x00', 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r6}, 0x10)
r7 = socket(0x40000000015, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r7, 0x114, 0x8, &(0x7f0000000080), 0x4)
bind$inet(r7, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r5, 0x7, 0x0, 0x0, 0x0)

225.20574ms ago: executing program 3 (id=1777):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413e850000000f00000095"], &(0x7f0000000440)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = epoll_create1(0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f00000000c0)={0x6000001f})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x5, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = socket$nl_route(0x10, 0x3, 0x0)
recvmmsg(r4, &(0x7f0000000bc0)=[{{0x0, 0x0, &(0x7f0000000b80)=[{&(0x7f0000000b40)=""/22, 0x16}], 0x1}, 0x8}], 0x1, 0x40000040, 0x0)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x25, &(0x7f0000000300), 0x4)
sendfile(r3, r2, 0x0, 0x7ffff07a)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xb, &(0x7f0000000c00)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x83000000}, {0x85, 0x0, 0x0, 0x71}}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000040)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@usrjquota}]}, 0x3, 0x44a, &(0x7f0000000400)="$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")
r6 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r6, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1, 0x5}, 0x1c)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/24], 0x48)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_inet_SIOCSIFFLAGS(r7, 0x8914, &(0x7f00000003c0)={'bridge0\x00'})
ioctl$sock_SIOCBRDELBR(r7, 0x89a1, &(0x7f0000000080)='bridge0\x00')

218.34471ms ago: executing program 1 (id=1778):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'geneve0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="4400000010000100"/20, @ANYRES32=r1, @ANYBLOB="00000000000000001c0012800b00010067656e65766500000c00028008000200ac1414bb080004"], 0x44}, 0x1, 0x2}, 0x0)

160.743106ms ago: executing program 1 (id=1779):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000600)='kfree\x00', r0}, 0x10)
r1 = socket$inet(0x2, 0x2000000080002, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
r3 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x0, 0x70bd26}, 0x34}}, 0x0)
getsockname$packet(r3, &(0x7f0000000200)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000500)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}, {0x7}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001ac0)=@newtfilter={0x3c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0xd}, {}, {0x2}}, [@filter_kind_options=@f_flow={{0x9}, {0xc, 0x2, [@TCA_FLOW_KEYS={0x8, 0x1, 0x7b04}]}}]}, 0x3c}}, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r5, &(0x7f00000002c0), 0x40000000000009f, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x100000000000000, 0x80, &(0x7f00000001c0)=@broute={'broute\x00', 0x4000, 0x0, 0x90, [], 0x2, 0x0, &(0x7f0000000100)=[{}, {}, {}]}, 0x108)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x8)
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000000)='./file1\x00', 0x844, &(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1, 0x249, &(0x7f00000001c0)="$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")
acct(&(0x7f0000000040)='./file0\x00')
acct(0x0)

0s ago: executing program 1 (id=1780):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
fcntl$setlease(r0, 0x400, 0x1)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYRESOCT=0x0, @ANYRESOCT=r0, @ANYRESHEX=r0, @ANYRES8=r1], 0x48)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000001480)={'syzkaller0\x00', 0x7101})
r3 = syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x2200054, &(0x7f0000000180), 0x4, 0x244, &(0x7f0000000480)="$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")
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000140)='./bus\x00', 0x1a40cc4, &(0x7f0000000a40)=ANY=[@ANYRESDEC, @ANYBLOB="4ffef8a5fe039b069f473594fba9121a07732b", @ANYRESOCT=r3, @ANYRES8, @ANYBLOB="bab44e31f8deff1431e4636edd55f637aed9cafb33edf184a7cb1b0eba595affa9bf118a3444c4520a835f62d434ace1ccb1260ab47dfca4666b9b6a9eb0708af98c10a39bea9e5f1a3d1796dc418aba8b0800be64a012c5fe91ae8558f6594ccc0c903163045e8699ece57e70d8b03f7f9acdad754bfb0d2fda181cfcc2b9270bfab8d1a5bf11dcffb41587b97fba268864cc697e5ac812657ead20fe2b57c4c6362910cfee7f936f06c9108967c96c2cf29723a9746c91490e63a16c4480dc70d0a7105d832fc334caadfae31a67edf1ac56ca4cc7b85ca295f89a346730ef87fc89443f397b16087ae9b53e13803b4dcba22cf6af052e86c22ce41332251938493c45a5419eaf9ffcb4ed18ad875ba11b64e471656c98d0677945f509f3704c5dd43a02e7d3a9240dfb090b6d843ce48a250f29acda15a369b29e328aa16c692823ad29fca897c88fbeef9a09d5b5c163cf7b", @ANYBLOB="1263a7b959383aa0a9fa10796416da755d29640e5041a395796348a83463470c07de0fe7c8e02a1a743587f58ffb22bbd585d0a5cbead9ca0823180dad88e609da79bbd442bddae537570748f21ac461994ea7754a096f9d50951ef0a07c555e2e53a20f4a407feef4892391f639afa0eccda43b87b58452d42073ba989bbdec9a81948e1f0c9cb8c0ad00fccafaefa58aadfc71bbd61088", @ANYRESDEC, @ANYRES64, @ANYBLOB="14a8d0ca3386858350717bda500a6e0d271cba7c24404f4fdd13b1b5922dc27fae2bb7656c2c9cf00076db74ad9da398465c271f3c99f9c8b75aa628562a36eae8e60442812741be1793c1486650f74ba8ad8536070000000000000065f3bc92da1e56d7ffa95c91b5c58ba55f9245a209ef24b8348e9ff4cb9b84333e1a13"], 0xde, 0x0, &(0x7f0000000000))
mkdirat(0xffffffffffffffff, &(0x7f0000000280)='./bus/file0\x00', 0x0)
renameat2(0xffffffffffffffff, &(0x7f00000001c0)='./bus/file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x4)
r4 = socket$inet6_dccp(0xa, 0x6, 0x0)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f0000000200)={@initdev, <r5=>0x0}, &(0x7f00000002c0)=0x14)
ioctl$sock_inet6_SIOCDIFADDR(r4, 0x8936, &(0x7f0000000380)={@loopback, 0x3, r5})
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020100008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r7}, 0x18)
pipe2$9p(0x0, 0x0)
r8 = dup(0xffffffffffffffff)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r8])
r9 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r9, 0x0, 0x483, 0x0, &(0x7f00000005c0))

kernel console output (not intermixed with test programs):

cted capacity change from 0 to 512
[   89.467990][ T6893] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   89.487120][ T6898] loop2: detected capacity change from 0 to 512
[   89.494267][ T6898] EXT4-fs: Ignoring removed oldalloc option
[   89.499520][ T6893] EXT4-fs (loop0): 1 orphan inode deleted
[   89.506481][ T6893] EXT4-fs (loop0): 1 truncate cleaned up
[   89.525442][ T6898] EXT4-fs error (device loop2): ext4_xattr_inode_iget:436: comm syz.2.1106: Parent and EA inode have the same ino 15
[   89.535383][ T6904] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[   89.547325][ T6898] EXT4-fs (loop2): Remounting filesystem read-only
[   89.553475][ T6903] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1107'.
[   89.558833][ T6898] EXT4-fs warning (device loop2): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   89.578043][ T6898] EXT4-fs (loop2): 1 orphan inode deleted
[   89.584377][ T6898] SELinux: (dev loop2, type ext4) getxattr errno 5
[   89.610951][ T6904] EXT4-fs (loop0): Remounting filesystem read-only
[   89.617635][ T6904] coredump: 208(syz.0.1104): failed when writing out, error -28
[   89.625411][ T6904] coredump: 208(syz.0.1104): Error emitting the program header for notes
[   89.633974][ T6904] coredump: 208(syz.0.1104): written to core: VMAs: 29, size 89026560; core: 64 bytes, pos 64
[   89.682818][ T5290] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=11
[   89.692789][ T5290] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=11
[   89.707785][ T5290] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=11
[   89.719095][ T5290] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=11
[   89.728725][ T5290] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=11
[   89.738701][ T5290] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=11
[   89.748725][ T5290] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=11
[   89.758558][ T5290] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=11
[   89.788187][   T36] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.858548][   T36] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.905775][   T36] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.927181][ T6926] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[   89.944231][   T36] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.977644][ T6928] loop1: detected capacity change from 0 to 512
[   89.985041][ T6928] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   90.007468][ T6928] EXT4-fs (loop1): 1 orphan inode deleted
[   90.013684][ T6928] EXT4-fs (loop1): 1 truncate cleaned up
[   90.016516][ T6916] chnl_net:caif_netlink_parms(): no params data found
[   90.026584][ T6932] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[   90.041389][ T6932] EXT4-fs (loop1): Remounting filesystem read-only
[   90.048430][ T6932] coredump: 463(syz.1.1114): failed when writing out, error -28
[   90.056300][ T6932] coredump: 463(syz.1.1114): Error emitting the program header for notes
[   90.064914][ T6932] coredump: 463(syz.1.1114): written to core: VMAs: 29, size 91123712; core: 64 bytes, pos 64
[   90.120126][ T3339] tipc: Node number set to 2886997162
[   90.161625][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   90.173225][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   90.183809][   T36] bond0 (unregistering): Released all slaves
[   90.205367][ T6916] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.212592][ T6916] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.219975][ T6916] bridge_slave_0: entered allmulticast mode
[   90.226966][ T6916] bridge_slave_0: entered promiscuous mode
[   90.234350][ T6916] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.241667][ T6916] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.249084][ T6916] bridge_slave_1: entered allmulticast mode
[   90.256892][ T6916] bridge_slave_1: entered promiscuous mode
[   90.274929][ T6916] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   90.286114][   T36] hsr_slave_0: left promiscuous mode
[   90.292147][   T36] hsr_slave_1: left promiscuous mode
[   90.300641][   T36] veth1_macvtap: left promiscuous mode
[   90.306338][   T36] veth0_macvtap: left promiscuous mode
[   90.312139][   T36] veth1_vlan: left promiscuous mode
[   90.317399][   T36] veth0_vlan: left promiscuous mode
[   90.318014][ T6941] loop4: detected capacity change from 0 to 512
[   90.341671][ T6941] EXT4-fs error (device loop4): ext4_orphan_get:1388: inode #17: comm syz.4.1116: iget: bogus i_mode (0)
[   90.354631][ T6941] EXT4-fs error (device loop4): ext4_orphan_get:1393: comm syz.4.1116: couldn't read orphan inode 17 (err -117)
[   90.427224][   T36] team0 (unregistering): Port device team_slave_1 removed
[   90.439509][   T36] team0 (unregistering): Port device team_slave_0 removed
[   90.448712][ T6950] loop4: detected capacity change from 0 to 512
[   90.456220][ T6950] EXT4-fs: Ignoring removed oldalloc option
[   90.467639][ T6950] EXT4-fs error (device loop4): ext4_xattr_inode_iget:436: comm syz.4.1120: Parent and EA inode have the same ino 15
[   90.500598][ T6950] EXT4-fs (loop4): Remounting filesystem read-only
[   90.507171][ T6950] EXT4-fs warning (device loop4): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   90.520661][ T6950] EXT4-fs (loop4): 1 orphan inode deleted
[   90.528273][ T6950] SELinux: (dev loop4, type ext4) getxattr errno 5
[   90.531616][ T6916] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   90.546704][ T6958] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1124'.
[   90.554778][ T6959] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[   90.591635][ T6916] team0: Port device team_slave_0 added
[   90.603996][ T6916] team0: Port device team_slave_1 added
[   90.608421][ T6963] loop2: detected capacity change from 0 to 1024
[   90.627079][ T6963] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   90.638240][ T6963] JBD2: no valid journal superblock found
[   90.644117][ T6963] EXT4-fs (loop2): Could not load journal inode
[   90.653877][ T6916] batman_adv: batadv0: Adding interface: batadv_slave_0
[   90.661130][ T6916] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.687301][ T6916] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   90.698735][ T6916] batman_adv: batadv0: Adding interface: batadv_slave_1
[   90.705812][ T6916] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.732012][ T6916] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   90.753421][ T6965] syzkaller0: entered allmulticast mode
[   90.770181][ T6968] syzkaller0 (unregistering): left allmulticast mode
[   90.777386][ T6975] FAULT_INJECTION: forcing a failure.
[   90.777386][ T6975] name failslab, interval 1, probability 0, space 0, times 0
[   90.790193][ T6975] CPU: 1 UID: 0 PID: 6975 Comm: syz.2.1130 Tainted: G        W          6.11.0-syzkaller-10622-gaa486552a110 #0
[   90.802009][ T6975] Tainted: [W]=WARN
[   90.805880][ T6975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   90.816660][ T6975] Call Trace:
[   90.820202][ T6975]  <TASK>
[   90.823134][ T6975]  dump_stack_lvl+0xf2/0x150
[   90.827775][ T6975]  dump_stack+0x15/0x20
[   90.832106][ T6975]  should_fail_ex+0x223/0x230
[   90.836802][ T6975]  ? security_file_alloc+0x32/0x100
[   90.842138][ T6975]  should_failslab+0x8f/0xb0
[   90.846773][ T6975]  kmem_cache_alloc_noprof+0x4c/0x290
[   90.852222][ T6975]  security_file_alloc+0x32/0x100
[   90.857312][ T6975]  alloc_empty_file+0x121/0x2f0
[   90.862269][ T6975]  alloc_file_pseudo+0xc3/0x140
[   90.867162][ T6975]  __shmem_file_setup+0x1bb/0x1f0
[   90.872208][ T6975]  shmem_file_setup+0x3b/0x50
[   90.876902][ T6975]  __se_sys_memfd_create+0x31d/0x5c0
[   90.882625][ T6975]  __x64_sys_memfd_create+0x31/0x40
[   90.887879][ T6975]  x64_sys_call+0x2891/0x2d60
[   90.892645][ T6975]  do_syscall_64+0xc9/0x1c0
[   90.897178][ T6975]  ? clear_bhb_loop+0x55/0xb0
[   90.901882][ T6975]  ? clear_bhb_loop+0x55/0xb0
[   90.906657][ T6975]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.912848][ T6975] RIP: 0033:0x7f67bba4df39
[   90.917270][ T6975] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.936917][ T6975] RSP: 002b:00007f67ba6c0e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   90.945377][ T6975] RAX: ffffffffffffffda RBX: 00000000000007c1 RCX: 00007f67bba4df39
[   90.953359][ T6975] RDX: 00007f67ba6c0ef0 RSI: 0000000000000000 RDI: 00007f67bbac0a09
[   90.961410][ T6975] RBP: 0000000020001a00 R08: 00007f67ba6c0bb7 R09: 00007f67ba6c0e40
[   90.969386][ T6975] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000080
[   90.977415][ T6975] R13: 00007f67ba6c0ef0 R14: 00007f67ba6c0eb0 R15: 0000000020000d40
[   90.985420][ T6975]  </TASK>
[   91.040796][ T6916] hsr_slave_0: entered promiscuous mode
[   91.047068][ T6916] hsr_slave_1: entered promiscuous mode
[   91.059914][ T6916] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   91.068098][ T6916] Cannot create hsr debugfs directory
[   91.111478][ T6986] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1135'.
[   91.127336][   T36] IPVS: stop unused estimator thread 0...
[   91.162752][ T6991] loop4: detected capacity change from 0 to 512
[   91.180207][ T6996] loop2: detected capacity change from 0 to 512
[   91.194702][ T6996] EXT4-fs error (device loop2): ext4_orphan_get:1388: inode #17: comm syz.2.1139: iget: bogus i_mode (0)
[   91.201932][ T6991] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1134: corrupted in-inode xattr: invalid ea_ino
[   91.206399][ T6996] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.1139: couldn't read orphan inode 17 (err -117)
[   91.220278][ T6991] EXT4-fs error (device loop4): ext4_orphan_get:1393: comm syz.4.1134: couldn't read orphan inode 15 (err -117)
[   91.239072][ T7000] syzkaller0: entered allmulticast mode
[   91.258950][ T7000] syzkaller0 (unregistering): left allmulticast mode
[   91.291841][ T7004] loop2: detected capacity change from 0 to 1764
[   91.298396][ T7004] iso9660: Bad value for 'sbsector'
[   91.444168][ T7019] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1147'.
[   91.468165][ T6916] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   91.477001][ T6916] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   91.485820][ T6916] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   91.494912][ T6916] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   91.511008][ T7021] syzkaller0: entered allmulticast mode
[   91.518842][ T7021] syzkaller0 (unregistering): left allmulticast mode
[   91.571026][ T7022] loop3: detected capacity change from 0 to 512
[   91.585348][ T6916] 8021q: adding VLAN 0 to HW filter on device bond0
[   91.591575][ T7022] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   91.598907][ T6916] 8021q: adding VLAN 0 to HW filter on device team0
[   91.606805][ T7022] System zones: 0-2, 18-18, 34-34
[   91.611011][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.615380][ T7022] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1146: bg 0: block 248: padding at end of block bitmap is not set
[   91.618909][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[   91.640145][ T7022] EXT4-fs error (device loop3): ext4_acquire_dquot:6879: comm syz.3.1146: Failed to acquire dquot type 1
[   91.654028][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.661121][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[   91.670509][ T7022] EXT4-fs (loop3): 1 truncate cleaned up
[   91.673940][ T6916] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   91.686664][ T6916] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   91.686664][ T7022] ext4 filesystem being mounted at /127/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.719285][ T7020] EXT4-fs error (device loop3): ext4_readdir:261: inode #2: block 3: comm syz.3.1146: path /127/file0: bad entry in directory: rec_len % 4 != 0 - offset=92, inode=2164260880, rec_len=231, size=4096 fake=0
[   91.755670][ T6916] 8021q: adding VLAN 0 to HW filter on device batadv0
[   91.825316][ T6916] veth0_vlan: entered promiscuous mode
[   91.834112][ T6916] veth1_vlan: entered promiscuous mode
[   91.850539][ T6916] veth0_macvtap: entered promiscuous mode
[   91.858101][ T6916] veth1_macvtap: entered promiscuous mode
[   91.869733][ T6916] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   91.880495][ T6916] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.890786][ T6916] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   91.901258][ T6916] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.911126][ T6916] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   91.921580][ T6916] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.931453][ T6916] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   91.942014][ T6916] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.954016][ T6916] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.969384][ T6916] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   91.980057][ T6916] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.990154][ T6916] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   92.000795][ T6916] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   92.010803][ T6916] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   92.021277][ T6916] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   92.031222][ T6916] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   92.041793][ T6916] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   92.052626][ T6916] batman_adv: batadv0: Interface activated: batadv_slave_1
[   92.063252][ T6916] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   92.072153][ T6916] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   92.080939][ T6916] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   92.089903][ T6916] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   92.175860][ T7047] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[   92.209472][ T7050] loop2: detected capacity change from 0 to 1764
[   92.216251][ T7050] iso9660: Bad value for 'sbsector'
[   92.397071][ T7066] loop1: detected capacity change from 0 to 512
[   92.406967][ T7066] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.1157: corrupted in-inode xattr: invalid ea_ino
[   92.421858][ T7066] EXT4-fs error (device loop1): ext4_orphan_get:1393: comm syz.1.1157: couldn't read orphan inode 15 (err -117)
[   92.436276][ T7066] bridge0: port 3(netdevsim1) entered disabled state
[   92.443135][ T7066] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.450388][ T7066] bridge0: port 1(bridge_slave_0) entered disabled state
[   92.479746][ T7066] netdevsim netdevsim1 netdevsim1: left allmulticast mode
[   92.487019][ T7066] netdevsim netdevsim1 netdevsim1: left promiscuous mode
[   92.494235][ T7066] bridge0: port 3(netdevsim1) entered disabled state
[   92.525034][ T7066] bridge_slave_1: left allmulticast mode
[   92.530923][ T7066] bridge_slave_1: left promiscuous mode
[   92.536624][ T7066] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.552323][ T7066] bridge_slave_0: left allmulticast mode
[   92.558108][ T7066] bridge_slave_0: left promiscuous mode
[   92.564019][ T7066] bridge0: port 1(bridge_slave_0) entered disabled state
[   92.673379][ T7071] loop3: detected capacity change from 0 to 512
[   92.693486][ T7071] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters
[   92.708588][ T7071] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #13: comm syz.3.1159: attempt to clear invalid blocks 1024 len 1
[   92.726421][ T7071] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.1159: invalid indirect mapped block 1819239214 (level 0)
[   92.742605][ T7071] EXT4-fs (loop3): 1 truncate cleaned up
[   92.792452][ T7078] loop3: detected capacity change from 0 to 256
[   92.843434][ T7084] loop3: detected capacity change from 0 to 512
[   92.851643][ T7084] EXT4-fs: Ignoring removed oldalloc option
[   92.862459][ T7086] loop4: detected capacity change from 0 to 256
[   92.869449][ T7084] EXT4-fs error (device loop3): ext4_xattr_inode_iget:436: comm syz.3.1164: Parent and EA inode have the same ino 15
[   92.883957][ T7084] EXT4-fs (loop3): Remounting filesystem read-only
[   92.890585][ T7084] EXT4-fs warning (device loop3): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   92.900786][ T7084] EXT4-fs (loop3): 1 orphan inode deleted
[   92.906850][ T7084] SELinux: (dev loop3, type ext4) getxattr errno 5
[   92.934193][ T7089] 9pnet_virtio: no channels available for device 
[   93.017788][ T7103] loop0: detected capacity change from 0 to 256
[   93.034503][ T7105] loop4: detected capacity change from 0 to 1764
[   93.041553][ T7105] iso9660: Bad value for 'sbsector'
[   93.208793][ T7133] loop3: detected capacity change from 0 to 256
[   93.249456][ T7136] loop3: detected capacity change from 0 to 128
[   93.260555][ T7136] ext4 filesystem being mounted at /140/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.269232][ T7132] loop2: detected capacity change from 0 to 8192
[   93.286658][ T7142] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1188'.
[   93.308246][ T7144] tipc: Enabling of bearer <udp:s> rejected, already enabled
[   93.317963][ T7144] netlink: 'syz.3.1189': attribute type 1 has an invalid length.
[   93.326076][ T7144] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1189'.
[   93.450961][ T7157] loop0: detected capacity change from 0 to 512
[   93.459673][ T7159] FAULT_INJECTION: forcing a failure.
[   93.459673][ T7159] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   93.470060][ T7157] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1193: corrupted in-inode xattr: invalid ea_ino
[   93.472990][ T7159] CPU: 1 UID: 0 PID: 7159 Comm: syz.3.1195 Tainted: G        W          6.11.0-syzkaller-10622-gaa486552a110 #0
[   93.488218][ T7157] EXT4-fs error (device loop0): ext4_orphan_get:1393: comm syz.0.1193: couldn't read orphan inode 15 (err -117)
[   93.498658][ T7159] Tainted: [W]=WARN
[   93.498669][ T7159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   93.498683][ T7159] Call Trace:
[   93.498691][ T7159]  <TASK>
[   93.498700][ T7159]  dump_stack_lvl+0xf2/0x150
[   93.498746][ T7159]  dump_stack+0x15/0x20
[   93.498827][ T7159]  should_fail_ex+0x223/0x230
[   93.498871][ T7159]  should_fail+0xb/0x10
[   93.549249][ T7159]  should_fail_usercopy+0x1a/0x20
[   93.554358][ T7159]  _copy_from_user+0x1e/0xd0
[   93.559080][ T7159]  load_msg+0x1e1/0x2c0
[   93.563262][ T7159]  do_msgsnd+0xdd/0xaf0
[   93.567476][ T7159]  ? __fget_files+0x1d4/0x210
[   93.572342][ T7159]  ? fput+0x14e/0x190
[   93.576350][ T7159]  __x64_sys_msgsnd+0xa1/0xc0
[   93.581045][ T7159]  x64_sys_call+0x26b1/0x2d60
[   93.585975][ T7159]  do_syscall_64+0xc9/0x1c0
[   93.590509][ T7159]  ? clear_bhb_loop+0x55/0xb0
[   93.595306][ T7159]  ? clear_bhb_loop+0x55/0xb0
[   93.600001][ T7159]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.606035][ T7159] RIP: 0033:0x7f7d1e82df39
[   93.610524][ T7159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.630362][ T7159] RSP: 002b:00007f7d1d4a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000045
[   93.638947][ T7159] RAX: ffffffffffffffda RBX: 00007f7d1e9e5f80 RCX: 00007f7d1e82df39
[   93.647148][ T7159] RDX: 0000000000002000 RSI: 00000000200000c0 RDI: 0000000000000000
[   93.655132][ T7159] RBP: 00007f7d1d4a7090 R08: 0000000000000000 R09: 0000000000000000
[   93.663372][ T7159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   93.671356][ T7159] R13: 0000000000000000 R14: 00007f7d1e9e5f80 R15: 00007ffeca65a688
[   93.679342][ T7159]  </TASK>
[   93.683028][ T7157] bridge0: port 2(bridge_slave_1) entered disabled state
[   93.687078][   T29] kauditd_printk_skb: 173 callbacks suppressed
[   93.687096][   T29] audit: type=1400 audit(1727320332.333:2938): avc:  denied  { read } for  pid=7158 comm="syz.3.1195" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   93.690420][ T7157] bridge0: port 1(bridge_slave_0) entered disabled state
[   93.726920][ T7163] bridge_slave_1: left allmulticast mode
[   93.732854][ T7163] bridge_slave_1: left promiscuous mode
[   93.738640][ T7163] bridge0: port 2(bridge_slave_1) entered disabled state
[   93.746722][ T7163] bridge_slave_0: left allmulticast mode
[   93.752602][ T7163] bridge_slave_0: left promiscuous mode
[   93.758371][ T7163] bridge0: port 1(bridge_slave_0) entered disabled state
[   93.948889][ T7167] loop4: detected capacity change from 0 to 256
[   93.989993][ T7171] loop4: detected capacity change from 0 to 128
[   93.998717][ T7171] ext4 filesystem being mounted at /132/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.047814][   T29] audit: type=1326 audit(1727320332.693:2939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7175 comm="syz.1.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9278f2df39 code=0x7ffc0000
[   94.071520][   T29] audit: type=1326 audit(1727320332.693:2940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7175 comm="syz.1.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9278f2df39 code=0x7ffc0000
[   94.095327][   T29] audit: type=1326 audit(1727320332.693:2941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7175 comm="syz.1.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9278f2df39 code=0x7ffc0000
[   94.118847][   T29] audit: type=1326 audit(1727320332.693:2942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7175 comm="syz.1.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9278f2df39 code=0x7ffc0000
[   94.142443][   T29] audit: type=1326 audit(1727320332.693:2943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7175 comm="syz.1.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9278f2df39 code=0x7ffc0000
[   94.166083][   T29] audit: type=1326 audit(1727320332.693:2944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7175 comm="syz.1.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9278f2df39 code=0x7ffc0000
[   94.189882][   T29] audit: type=1326 audit(1727320332.693:2945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7175 comm="syz.1.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9278f2df39 code=0x7ffc0000
[   94.213832][   T29] audit: type=1326 audit(1727320332.693:2946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7175 comm="syz.1.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=4 compat=0 ip=0x7f9278f2df39 code=0x7ffc0000
[   94.237294][   T29] audit: type=1326 audit(1727320332.693:2947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7175 comm="syz.1.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9278f2df39 code=0x7ffc0000
[   94.302694][ T7187] tipc: Started in network mode
[   94.307712][ T7187] tipc: Node identity ac1414aa, cluster identity 4711
[   94.317928][ T7187] tipc: Enabled bearer <udp:s>, priority 10
[   94.324963][ T7187] netlink: 'syz.2.1204': attribute type 1 has an invalid length.
[   94.332788][ T7187] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1204'.
[   94.334217][ T7191] loop1: detected capacity change from 0 to 128
[   94.360256][ T7191] ext4 filesystem being mounted at /213/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.412809][ T7198] loop1: detected capacity change from 0 to 256
[   94.450471][ T7201] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[   94.885255][ T7220] loop3: detected capacity change from 0 to 512
[   94.891992][ T7220] EXT4-fs: Ignoring removed oldalloc option
[   94.899882][ T7220] EXT4-fs error (device loop3): ext4_xattr_inode_iget:436: comm syz.3.1224: Parent and EA inode have the same ino 15
[   94.912734][ T7220] EXT4-fs (loop3): Remounting filesystem read-only
[   94.919317][ T7220] EXT4-fs warning (device loop3): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   94.930372][ T7220] EXT4-fs (loop3): 1 orphan inode deleted
[   94.936506][ T7220] SELinux: (dev loop3, type ext4) getxattr errno 5
[   95.107842][ T7241] loop4: detected capacity change from 0 to 256
[   95.179257][ T7243] loop4: detected capacity change from 0 to 512
[   95.188343][ T7243] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters
[   95.203530][ T7243] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #13: comm syz.4.1222: attempt to clear invalid blocks 1024 len 1
[   95.217167][ T7243] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.1222: invalid indirect mapped block 1819239214 (level 0)
[   95.231834][ T7243] EXT4-fs (loop4): 1 truncate cleaned up
[   95.296062][ T7249] loop4: detected capacity change from 0 to 512
[   95.316131][ T7249] EXT4-fs (loop4): 1 truncate cleaned up
[   95.345035][ T7254] netlink: 'syz.2.1228': attribute type 4 has an invalid length.
[   95.363414][ T7254] loop2: detected capacity change from 0 to 512
[   95.392440][ T7254] EXT4-fs (loop2): 1 truncate cleaned up
[   95.429898][ T3339] tipc: Node number set to 2886997162
[   95.441305][ T7259] loop1: detected capacity change from 0 to 1024
[   95.448608][ T7259] EXT4-fs: Ignoring removed nomblk_io_submit option
[   95.467287][ T7259] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e854e01c, mo2=0003]
[   95.528046][ T7261] EXT4-fs error (device loop4): ext4_add_entry:2437: inode #2: comm syz.4.1225: Directory hole found for htree leaf block 0
[   95.556156][ T7259] System zones: 0-1, 3-36
[   95.592966][ T7254] EXT4-fs error (device loop2): ext4_add_entry:2437: inode #2: comm syz.2.1228: Directory hole found for htree leaf block 0
[   95.616397][ T7256] capability: warning: `syz.1.1227' uses deprecated v2 capabilities in a way that may be insecure
[   95.716206][ T7263] netlink: 'syz.0.1229': attribute type 10 has an invalid length.
[   95.964626][ T7277] EXT4-fs: Ignoring removed nomblk_io_submit option
[   95.971719][ T7277] No source specified
[   96.052581][ T7292] FAULT_INJECTION: forcing a failure.
[   96.052581][ T7292] name failslab, interval 1, probability 0, space 0, times 0
[   96.065317][ T7292] CPU: 1 UID: 0 PID: 7292 Comm: syz.1.1240 Tainted: G        W          6.11.0-syzkaller-10622-gaa486552a110 #0
[   96.077222][ T7292] Tainted: [W]=WARN
[   96.081047][ T7292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   96.091127][ T7292] Call Trace:
[   96.094431][ T7292]  <TASK>
[   96.097600][ T7292]  dump_stack_lvl+0xf2/0x150
[   96.102262][ T7292]  dump_stack+0x15/0x20
[   96.106597][ T7292]  should_fail_ex+0x223/0x230
[   96.111470][ T7292]  ? __alloc_skb+0x10b/0x310
[   96.116130][ T7292]  should_failslab+0x8f/0xb0
[   96.120969][ T7292]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[   96.126812][ T7292]  __alloc_skb+0x10b/0x310
[   96.131286][ T7292]  audit_log_start+0x368/0x6b0
[   96.136064][ T7292]  audit_seccomp+0x4b/0x130
[   96.140578][ T7292]  __seccomp_filter+0x6fa/0x1180
[   96.145617][ T7292]  ? proc_fail_nth_write+0x12a/0x150
[   96.150918][ T7292]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   96.156580][ T7292]  ? vfs_write+0x580/0x910
[   96.161021][ T7292]  __secure_computing+0x9f/0x1c0
[   96.166507][ T7292]  syscall_trace_enter+0xd1/0x1f0
[   96.172727][ T7292]  do_syscall_64+0xaa/0x1c0
[   96.177420][ T7292]  ? clear_bhb_loop+0x55/0xb0
[   96.183164][ T7292]  ? clear_bhb_loop+0x55/0xb0
[   96.188126][ T7292]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.194055][ T7292] RIP: 0033:0x7f9278f2df39
[   96.198481][ T7292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.218896][ T7292] RSP: 002b:00007f9277ba7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d5
[   96.227360][ T7292] RAX: ffffffffffffffda RBX: 00007f92790e5f80 RCX: 00007f9278f2df39
[   96.240413][ T7292] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[   96.248552][ T7292] RBP: 00007f9277ba7090 R08: 0000000000000000 R09: 0000000000000000
[   96.256849][ T7292] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.264849][ T7292] R13: 0000000000000000 R14: 00007f92790e5f80 R15: 00007fff789984e8
[   96.273147][ T7292]  </TASK>
[   96.299045][ T7296] vhci_hcd: invalid port number 61
[   96.304844][ T7296] vhci_hcd: default hub control req: 000d v0000 i003d l0
[   96.351883][ T7305] netlink: 'syz.4.1245': attribute type 10 has an invalid length.
[   96.394113][ T7311] SELinux:  Context system_u:object_r:crond_initrc_exec_t:s0 is not valid (left unmapped).
[   96.504775][ T7321] loop4: detected capacity change from 0 to 1024
[   96.511598][ T7321] EXT4-fs: Ignoring removed orlov option
[   96.517499][ T7321] EXT4-fs: Ignoring removed nomblk_io_submit option
[   96.552047][ T7321] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a842e018, mo2=0002]
[   96.560513][ T7321] System zones: 0-1, 3-12
[   96.572719][ T7321] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2792: inode #14: comm syz.4.1252: corrupted in-inode xattr: bad magic number in in-inode xattr
[   96.589047][ T7321] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #14: comm syz.4.1252: attempt to clear invalid blocks 1886221359 len 1
[   96.710735][ T7338] netlink: 'syz.4.1256': attribute type 10 has an invalid length.
[   96.784594][ T7342] loop4: detected capacity change from 0 to 8192
[   96.841164][ T7344] loop2: detected capacity change from 0 to 2048
[   96.900003][ T7344] netlink: 116 bytes leftover after parsing attributes in process `syz.2.1259'.
[   96.973970][ T7361] syz.2.1265[7361] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   96.974044][ T7361] syz.2.1265[7361] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   96.985814][ T7361] syz.2.1265[7361] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.001690][ T7361] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1265'.
[   97.078263][ T7370] netlink: 'syz.3.1268': attribute type 10 has an invalid length.
[   97.102123][ T7368] vhci_hcd: invalid port number 157
[   97.107480][ T7368] vhci_hcd: default hub control req: c1ef v21ba i009d l29779
[   97.198586][ T7384] loop3: detected capacity change from 0 to 2048
[   97.243407][ T7384]  loop3: p1 < > p4
[   97.248191][ T7384] loop3: p4 size 8388608 extends beyond EOD, truncated
[   97.281508][ T7392] loop1: detected capacity change from 0 to 512
[   97.291903][ T7392] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   97.301064][ T7392] System zones: 0-2, 18-18, 34-34
[   97.307406][ T7392] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1272: bg 0: block 248: padding at end of block bitmap is not set
[   97.325546][ T7392] EXT4-fs error (device loop1): ext4_acquire_dquot:6879: comm syz.1.1272: Failed to acquire dquot type 1
[   97.326658][ T7397] loop2: detected capacity change from 0 to 512
[   97.345244][ T7392] EXT4-fs (loop1): 1 truncate cleaned up
[   97.351495][ T7392] ext4 filesystem being mounted at /224/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.369362][ T7397] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.1276: corrupted in-inode xattr: invalid ea_ino
[   97.391323][ T7397] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.1276: couldn't read orphan inode 15 (err -117)
[   97.409369][ T7392] EXT4-fs error (device loop1): ext4_readdir:261: inode #2: block 3: comm syz.1.1272: path /224/file0: bad entry in directory: rec_len % 4 != 0 - offset=92, inode=2164260880, rec_len=231, size=4096 fake=0
[   97.646298][ T7423] loop0: detected capacity change from 0 to 2048
[   97.700164][ T7423]  loop0: p1 < > p3 p4 < >
[   97.705225][ T7423] loop0: p3 start 4284289 is beyond EOD, truncated
[   97.766167][ T7430] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   97.959511][ T7435] loop0: detected capacity change from 0 to 256
[   97.983460][ T7437] loop0: detected capacity change from 0 to 256
[   98.043456][   T24] IPVS: starting estimator thread 0...
[   98.065567][ T7454] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1298'.
[   98.065651][ T7453] tipc: Started in network mode
[   98.079679][ T7453] tipc: Node identity ac1414aa, cluster identity 4711
[   98.087228][ T7453] tipc: Enabled bearer <udp:s>, priority 10
[   98.096060][ T7453] netlink: 'syz.0.1297': attribute type 1 has an invalid length.
[   98.103978][ T7453] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1297'.
[   98.127550][ T7460] loop2: detected capacity change from 0 to 256
[   98.160291][ T7448] IPVS: using max 2448 ests per chain, 122400 per kthread
[   98.283496][ T7480] netlink: 'syz.2.1309': attribute type 10 has an invalid length.
[   98.337200][ T7482] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1310'.
[   98.491779][ T7491] loop3: detected capacity change from 0 to 256
[   98.512845][ T7493] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2052 sclass=netlink_route_socket pid=7493 comm=syz.4.1313
[   98.554923][ T7493] netlink: 'syz.4.1313': attribute type 1 has an invalid length.
[   98.562902][ T7493] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1313'.
[   98.683219][ T7507] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1321'.
[   98.742286][ T7516] loop3: detected capacity change from 0 to 256
[   98.831962][ T7519] netlink: 'syz.3.1325': attribute type 10 has an invalid length.
[   98.987298][ T7522] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1326'.
[   99.095040][ T7522] syzkaller0: entered allmulticast mode
[   99.169781][ T7471] uprobe: syz.0.1305:7471 failed to unregister, leaking uprobe
[   99.209898][    T8] tipc: Node number set to 2886997162
[   99.375089][ T7535] syz.3.1332[7535] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   99.375159][ T7535] syz.3.1332[7535] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   99.397235][ T7535] syz.3.1332[7535] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   99.411172][ T7535] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1332'.
[   99.530914][ T7488] syz.0.1305 (7488) used greatest stack depth: 7472 bytes left
[   99.566032][ T7548] netlink: 'syz.4.1338': attribute type 10 has an invalid length.
[   99.593221][   T29] kauditd_printk_skb: 400 callbacks suppressed
[   99.593237][   T29] audit: type=1326 audit(1727320338.243:3344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7551 comm="syz.2.1340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67bba4df39 code=0x7ffc0000
[   99.627364][   T29] audit: type=1326 audit(1727320338.273:3345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7551 comm="syz.2.1340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f67bba4df39 code=0x7ffc0000
[   99.635379][ T7553] loop0: detected capacity change from 0 to 512
[   99.650948][   T29] audit: type=1326 audit(1727320338.273:3346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7551 comm="syz.2.1340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67bba4df39 code=0x7ffc0000
[   99.680856][   T29] audit: type=1326 audit(1727320338.273:3347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7551 comm="syz.2.1340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f67bba4df39 code=0x7ffc0000
[   99.704518][   T29] audit: type=1326 audit(1727320338.273:3348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7551 comm="syz.2.1340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67bba4df39 code=0x7ffc0000
[   99.716204][ T7553] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1336: corrupted in-inode xattr: invalid ea_ino
[   99.728461][   T29] audit: type=1326 audit(1727320338.273:3349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7551 comm="syz.2.1340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f67bba4df39 code=0x7ffc0000
[   99.743765][ T7553] EXT4-fs error (device loop0): ext4_orphan_get:1393: comm syz.0.1336: couldn't read orphan inode 15 (err -117)
[   99.765679][   T29] audit: type=1326 audit(1727320338.273:3350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7551 comm="syz.2.1340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67bba4df39 code=0x7ffc0000
[   99.780749][ T7553] EXT4-fs mount: 118 callbacks suppressed
[   99.780769][ T7553] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.801050][   T29] audit: type=1326 audit(1727320338.273:3351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7551 comm="syz.2.1340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f67bba4df39 code=0x7ffc0000
[   99.801085][   T29] audit: type=1326 audit(1727320338.273:3352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7551 comm="syz.2.1340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67bba4df39 code=0x7ffc0000
[   99.866475][   T29] audit: type=1326 audit(1727320338.273:3353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7551 comm="syz.2.1340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f67bba4df39 code=0x7ffc0000
[   99.890163][ T7521] syzkaller0: left allmulticast mode
[   99.942722][ T7561] loop2: detected capacity change from 0 to 1024
[   99.952465][ T7561] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.019990][ T7571] loop4: detected capacity change from 0 to 1024
[  100.029974][ T7561] loop2: detected capacity change from 1024 to 0
[  100.039383][ T7571] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.043872][ T5305] EXT4-fs error (device loop2): ext4_readdir:261: inode #2: block 48: comm syz-executor: path /158/bus: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  100.070748][ T5304] EXT4-fs error (device loop4): ext4_readdir:261: inode #11: block 74: comm syz-executor: path /160/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=2147483648, rec_len=0, size=1024 fake=0
[  100.072234][ T5305] syz-executor: attempt to access beyond end of device
[  100.072234][ T5305] loop2: rw=14337, sector=2, nr_sectors = 2 limit=0
[  100.097548][ T5304] EXT4-fs error (device loop4): ext4_empty_dir:3128: inode #11: block 74: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=10240, inode=2147483648, rec_len=0, size=1024 fake=0
[  100.108117][ T5305] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  100.131092][ T5304] EXT4-fs error (device loop4): ext4_readdir:261: inode #11: block 74: comm syz-executor: path /160/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=2147483648, rec_len=0, size=1024 fake=0
[  100.140598][ T5305] EXT4-fs (loop2): I/O error while writing superblock
[  100.160683][ T5304] EXT4-fs error (device loop4): ext4_empty_dir:3128: inode #11: block 74: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=10240, inode=2147483648, rec_len=0, size=1024 fake=0
[  100.166355][ T5305] syz-executor: attempt to access beyond end of device
[  100.166355][ T5305] loop2: rw=524288, sector=10, nr_sectors = 2 limit=0
[  100.188561][ T5304] EXT4-fs error (device loop4): ext4_readdir:261: inode #11: block 74: comm syz-executor: path /160/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=2147483648, rec_len=0, size=1024 fake=0
[  100.199969][ T5305] syz-executor: attempt to access beyond end of device
[  100.199969][ T5305] loop2: rw=524288, sector=14, nr_sectors = 2 limit=0
[  100.224004][ T5304] EXT4-fs error (device loop4): ext4_empty_dir:3128: inode #11: block 74: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=10240, inode=2147483648, rec_len=0, size=1024 fake=0
[  100.235859][ T5305] syz-executor: attempt to access beyond end of device
[  100.235859][ T5305] loop2: rw=524288, sector=16, nr_sectors = 2 limit=0
[  100.259275][ T5304] EXT4-fs error (device loop4): ext4_readdir:261: inode #11: block 74: comm syz-executor: path /160/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=2147483648, rec_len=0, size=1024 fake=0
[  100.270853][ T5305] syz-executor: attempt to access beyond end of device
[  100.270853][ T5305] loop2: rw=524288, sector=18, nr_sectors = 2 limit=0
[  100.293763][ T5304] EXT4-fs error (device loop4): ext4_empty_dir:3128: inode #11: block 74: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=10240, inode=2147483648, rec_len=0, size=1024 fake=0
[  100.305871][ T5305] syz-executor: attempt to access beyond end of device
[  100.305871][ T5305] loop2: rw=524288, sector=20, nr_sectors = 2 limit=0
[  100.329681][ T5304] EXT4-fs error (device loop4): ext4_readdir:261: inode #11: block 74: comm syz-executor: path /160/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=2147483648, rec_len=0, size=1024 fake=0
[  100.343911][ T5305] syz-executor: attempt to access beyond end of device
[  100.343911][ T5305] loop2: rw=524288, sector=22, nr_sectors = 2 limit=0
[  100.366800][ T5304] EXT4-fs error (device loop4): ext4_empty_dir:3128: inode #11: block 74: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=10240, inode=2147483648, rec_len=0, size=1024 fake=0
[  100.378872][ T5305] syz-executor: attempt to access beyond end of device
[  100.378872][ T5305] loop2: rw=524288, sector=24, nr_sectors = 2 limit=0
[  100.415328][ T5305] syz-executor: attempt to access beyond end of device
[  100.415328][ T5305] loop2: rw=524288, sector=26, nr_sectors = 2 limit=0
[  100.431021][ T5305] syz-executor: attempt to access beyond end of device
[  100.431021][ T5305] loop2: rw=524288, sector=28, nr_sectors = 2 limit=0
[  100.445021][ T6916] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.454957][ T5305] EXT4-fs error (device loop2): ext4_get_inode_loc:4541: inode #2: block 6: comm syz-executor: unable to read itable block
[  100.475824][ T5305] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  100.484380][ T5305] EXT4-fs (loop2): I/O error while writing superblock
[  100.491387][ T5305] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: IO failure
[  100.512166][ T5305] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  100.522762][ T5305] EXT4-fs (loop2): I/O error while writing superblock
[  100.529582][ T5305] EXT4-fs error (device loop2): ext4_dirty_inode:5984: inode #2: comm syz-executor: mark_inode_dirty error
[  100.541453][ T5305] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  100.550240][ T5305] EXT4-fs (loop2): I/O error while writing superblock
[  100.565290][   T57] EXT4-fs error (device loop2): __ext4_get_inode_loc_noinmem:4526: inode #2: block 6: comm kworker/u8:4: unable to read itable block
[  100.579215][   T57] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  100.587713][   T57] EXT4-fs (loop2): I/O error while writing superblock
[  100.595011][ T5305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.604928][ T5305] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  100.614969][ T5305] EXT4-fs (loop2): I/O error while writing superblock
[  100.630502][ T7592] netlink: 'syz.3.1358': attribute type 10 has an invalid length.
[  100.681628][ T5304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.698262][   T36] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.774629][   T36] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.828635][   T36] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.886191][   T36] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.890094][ T7614] loop1: detected capacity change from 0 to 512
[  100.904304][ T7614] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  100.915625][ T7614] EXT4-fs (loop1): 1 truncate cleaned up
[  100.935923][ T7614] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.013890][ T4496] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.032988][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  101.052663][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  101.068927][   T36] bond0 (unregistering): Released all slaves
[  101.098717][ T7635] netlink: 'syz.3.1373': attribute type 10 has an invalid length.
[  101.122575][   T36] hsr_slave_0: left promiscuous mode
[  101.128522][   T36] hsr_slave_1: left promiscuous mode
[  101.134497][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  101.141982][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  101.149947][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  101.157454][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  101.167239][   T36] veth1_macvtap: left promiscuous mode
[  101.172791][   T36] veth0_macvtap: left promiscuous mode
[  101.178390][   T36] veth1_vlan: left promiscuous mode
[  101.183718][   T36] veth0_vlan: left promiscuous mode
[  101.283107][   T36] team0 (unregistering): Port device team_slave_1 removed
[  101.294895][   T36] team0 (unregistering): Port device team_slave_0 removed
[  101.413318][ T7646] loop3: detected capacity change from 0 to 512
[  101.420037][ T7646] EXT4-fs: Ignoring removed oldalloc option
[  101.423151][ T7601] chnl_net:caif_netlink_parms(): no params data found
[  101.428510][ T7646] EXT4-fs error (device loop3): ext4_xattr_inode_iget:436: comm syz.3.1376: Parent and EA inode have the same ino 15
[  101.448000][ T7646] EXT4-fs error (device loop3): ext4_xattr_inode_iget:436: comm syz.3.1376: Parent and EA inode have the same ino 15
[  101.460769][ T7646] EXT4-fs (loop3): 1 orphan inode deleted
[  101.466827][ T7646] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.476668][ T7606] chnl_net:caif_netlink_parms(): no params data found
[  101.516271][ T7601] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.523483][ T7601] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.531206][ T7601] bridge_slave_0: entered allmulticast mode
[  101.537909][ T7601] bridge_slave_0: entered promiscuous mode
[  101.545672][ T7601] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.552792][ T7601] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.560064][ T7601] bridge_slave_1: entered allmulticast mode
[  101.566561][ T7601] bridge_slave_1: entered promiscuous mode
[  101.584293][ T7662] FAULT_INJECTION: forcing a failure.
[  101.584293][ T7662] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  101.597465][ T7662] CPU: 0 UID: 0 PID: 7662 Comm: syz.0.1379 Tainted: G        W          6.11.0-syzkaller-10622-gaa486552a110 #0
[  101.609505][ T7662] Tainted: [W]=WARN
[  101.613310][ T7662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  101.623454][ T7662] Call Trace:
[  101.626734][ T7662]  <TASK>
[  101.629688][ T7662]  dump_stack_lvl+0xf2/0x150
[  101.634311][ T7662]  dump_stack+0x15/0x20
[  101.638480][ T7662]  should_fail_ex+0x223/0x230
[  101.643192][ T7662]  should_fail+0xb/0x10
[  101.647383][ T7662]  should_fail_usercopy+0x1a/0x20
[  101.652449][ T7662]  _copy_from_user+0x1e/0xd0
[  101.657069][ T7662]  bpf_obj_get_info_by_fd+0x2cd/0x1cb0
[  101.662701][ T7662]  ? _parse_integer+0x27/0x30
[  101.667476][ T7662]  __sys_bpf+0x613/0x7a0
[  101.671726][ T7662]  __x64_sys_bpf+0x43/0x50
[  101.676268][ T7662]  x64_sys_call+0x2625/0x2d60
[  101.681030][ T7662]  do_syscall_64+0xc9/0x1c0
[  101.685580][ T7662]  ? clear_bhb_loop+0x55/0xb0
[  101.690284][ T7662]  ? clear_bhb_loop+0x55/0xb0
[  101.694993][ T7662]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.700949][ T7662] RIP: 0033:0x7f2442a3df39
[  101.705391][ T7662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.725036][ T7662] RSP: 002b:00007f24416b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  101.733496][ T7662] RAX: ffffffffffffffda RBX: 00007f2442bf5f80 RCX: 00007f2442a3df39
[  101.741475][ T7662] RDX: 0000000000000010 RSI: 0000000020000300 RDI: 000000000000000f
[  101.749451][ T7662] RBP: 00007f24416b7090 R08: 0000000000000000 R09: 0000000000000000
[  101.757778][ T7662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  101.765824][ T7662] R13: 0000000000000000 R14: 00007f2442bf5f80 R15: 00007ffd1f1ad9b8
[  101.773861][ T7662]  </TASK>
[  101.790976][ T7646] lo speed is unknown, defaulting to 1000
[  101.793107][ T7601] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  101.814722][ T7646] lo speed is unknown, defaulting to 1000
[  101.820949][ T7646] lo speed is unknown, defaulting to 1000
[  101.827172][ T7601] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  101.827355][ T7646] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  101.849261][ T7606] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.856398][ T7606] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.859444][ T7646] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  101.865920][ T7606] bridge_slave_0: entered allmulticast mode
[  101.877398][ T7606] bridge_slave_0: entered promiscuous mode
[  101.889939][ T7646] lo speed is unknown, defaulting to 1000
[  101.890566][ T7606] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.902811][ T7606] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.910147][ T7606] bridge_slave_1: entered allmulticast mode
[  101.916816][ T7606] bridge_slave_1: entered promiscuous mode
[  101.927696][ T7646] lo speed is unknown, defaulting to 1000
[  101.941646][ T7601] team0: Port device team_slave_0 added
[  101.949128][ T7601] team0: Port device team_slave_1 added
[  101.955578][ T7646] lo speed is unknown, defaulting to 1000
[  101.958096][ T7606] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  101.965856][   T36] IPVS: stop unused estimator thread 0...
[  101.994416][ T7646] lo speed is unknown, defaulting to 1000
[  101.994826][ T7601] batman_adv: batadv0: Adding interface: batadv_slave_0
[  102.007351][ T7601] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  102.033429][ T7601] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  102.056324][ T7606] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  102.067683][ T7672] netlink: 'syz.0.1383': attribute type 10 has an invalid length.
[  102.075972][ T7646] lo speed is unknown, defaulting to 1000
[  102.093658][ T7601] batman_adv: batadv0: Adding interface: batadv_slave_1
[  102.100797][ T7601] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  102.126985][ T7601] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  102.139185][ T7646] lo speed is unknown, defaulting to 1000
[  102.157123][ T7606] team0: Port device team_slave_0 added
[  102.174555][   T36] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.202541][ T7606] team0: Port device team_slave_1 added
[  102.211426][ T5311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.223317][   T36] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.251897][ T7601] hsr_slave_0: entered promiscuous mode
[  102.260514][ T7601] hsr_slave_1: entered promiscuous mode
[  102.266536][ T7601] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  102.274199][ T7601] Cannot create hsr debugfs directory
[  102.289985][   T36] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.298830][ T7682] loop0: detected capacity change from 0 to 128
[  102.310140][ T7682] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  102.322612][ T7682] ext4 filesystem being mounted at /46/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.323308][ T7606] batman_adv: batadv0: Adding interface: batadv_slave_0
[  102.340148][ T7606] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  102.366119][ T7606] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  102.383523][ T7606] batman_adv: batadv0: Adding interface: batadv_slave_1
[  102.390586][ T7606] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  102.416555][ T7606] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  102.428412][ T6916] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  102.438485][   T36] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.473866][ T7688] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1388'.
[  102.486601][ T7606] hsr_slave_0: entered promiscuous mode
[  102.494497][ T7606] hsr_slave_1: entered promiscuous mode
[  102.500683][ T7606] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  102.508333][ T7606] Cannot create hsr debugfs directory
[  102.644593][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  102.656005][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  102.666538][   T36] bond0 (unregistering): Released all slaves
[  102.710990][   T36] tipc: Disabling bearer <udp:s>
[  102.716042][   T36] tipc: Left network mode
[  102.724153][   T36] hsr_slave_0: left promiscuous mode
[  102.729983][   T36] hsr_slave_1: left promiscuous mode
[  102.736036][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  102.743545][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  102.751299][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  102.758873][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  102.767739][   T36] veth1_macvtap: left promiscuous mode
[  102.773425][   T36] veth0_macvtap: left promiscuous mode
[  102.778929][   T36] veth1_vlan: left promiscuous mode
[  102.847756][ T7700] syz.1.1393[7700] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.847910][ T7700] syz.1.1393[7700] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.859530][ T7700] syz.1.1393[7700] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.871498][   T36] team0 (unregistering): Port device team_slave_1 removed
[  102.871687][ T7700] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1393'.
[  102.899552][   T36] team0 (unregistering): Port device team_slave_0 removed
[  102.940743][ T7702] netlink: 'syz.1.1394': attribute type 10 has an invalid length.
[  103.102976][ T7705] loop1: detected capacity change from 0 to 128
[  103.112528][ T7705] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  103.126176][ T7705] ext4 filesystem being mounted at /244/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  103.182354][ T4496] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  103.230948][ T7601] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  103.242877][ T7601] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  103.257742][ T7601] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  103.271568][ T7601] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  103.294647][ T7718] loop3: detected capacity change from 0 to 1024
[  103.305324][ T7718] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  103.316489][ T7718] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (52876!=20869)
[  103.329224][ T7718] EXT4-fs (loop3): invalid journal inode
[  103.335106][ T7718] EXT4-fs (loop3): can't get journal size
[  103.347141][ T7718] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  103.353497][   T36] IPVS: stop unused estimator thread 0...
[  103.374753][ T7601] 8021q: adding VLAN 0 to HW filter on device bond0
[  103.400549][ T7601] 8021q: adding VLAN 0 to HW filter on device team0
[  103.425042][ T3350] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.432172][ T3350] bridge0: port 1(bridge_slave_0) entered forwarding state
[  103.440814][ T7722] syz.0.1402[7722] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  103.440887][ T7722] syz.0.1402[7722] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  103.452938][ T7722] syz.0.1402[7722] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  103.466990][ T6037] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.485596][ T6037] bridge0: port 2(bridge_slave_1) entered forwarding state
[  103.497280][ T7718] can0: slcan on ttyS3.
[  103.502196][ T7722] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1402'.
[  103.535227][ T7726] netlink: 'syz.0.1403': attribute type 10 has an invalid length.
[  103.549381][ T7601] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  103.559909][ T7601] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  103.590218][ T7724] can0 (unregistered): slcan off ttyS3.
[  103.603586][ T7606] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  103.632473][ T7606] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  103.650066][ T7606] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  103.665927][ T7606] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  103.712629][ T7606] 8021q: adding VLAN 0 to HW filter on device bond0
[  103.725831][ T7606] 8021q: adding VLAN 0 to HW filter on device team0
[  103.736964][ T6057] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.744064][ T6057] bridge0: port 1(bridge_slave_0) entered forwarding state
[  103.763550][ T7601] 8021q: adding VLAN 0 to HW filter on device batadv0
[  103.771839][ T3350] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.778950][ T3350] bridge0: port 2(bridge_slave_1) entered forwarding state
[  103.905082][ T7606] 8021q: adding VLAN 0 to HW filter on device batadv0
[  103.914860][ T5311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.009606][ T7601] veth0_vlan: entered promiscuous mode
[  104.022606][ T7601] veth1_vlan: entered promiscuous mode
[  104.043685][ T7606] veth0_vlan: entered promiscuous mode
[  104.057178][ T7606] veth1_vlan: entered promiscuous mode
[  104.082669][ T7606] veth0_macvtap: entered promiscuous mode
[  104.086392][ T7770] loop0: detected capacity change from 0 to 1024
[  104.090363][ T7601] veth0_macvtap: entered promiscuous mode
[  104.100233][ T7770] EXT4-fs: Ignoring removed nobh option
[  104.106321][ T7770] EXT4-fs: dax option not supported
[  104.106564][ T7601] veth1_macvtap: entered promiscuous mode
[  104.122100][ T7606] veth1_macvtap: entered promiscuous mode
[  104.129651][ T7770] Non-string source
[  104.136770][ T7606] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  104.147568][ T7606] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.157566][ T7606] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  104.168066][ T7606] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.177930][ T7606] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  104.188679][ T7606] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.199694][ T7606] batman_adv: batadv0: Interface activated: batadv_slave_0
[  104.211615][ T7601] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  104.222276][ T7601] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.232145][ T7601] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  104.242820][ T7601] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.252983][ T7601] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  104.252999][ T7774] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1411'.
[  104.263789][ T7601] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.282532][ T7601] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  104.293078][ T7601] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.304034][ T7601] batman_adv: batadv0: Interface activated: batadv_slave_0
[  104.313760][ T7606] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  104.324257][ T7606] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.334214][ T7606] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  104.345113][ T7606] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.355075][ T7606] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  104.365667][ T7606] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.376558][ T7606] batman_adv: batadv0: Interface activated: batadv_slave_1
[  104.388171][ T7601] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  104.398727][ T7601] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.409126][ T7601] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  104.419773][ T7601] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.430073][ T7601] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  104.440734][ T7601] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.450826][ T7601] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  104.462470][ T7601] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.473444][ T7601] batman_adv: batadv0: Interface activated: batadv_slave_1
[  104.482272][ T7601] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  104.491224][ T7601] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  104.500069][ T7601] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  104.508901][ T7601] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  104.551524][ T7606] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  104.560622][ T7606] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  104.569381][ T7606] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  104.578330][ T7606] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  104.601022][ T7782] netlink: 256 bytes leftover after parsing attributes in process `syz.1.1413'.
[  104.604168][   T29] kauditd_printk_skb: 215 callbacks suppressed
[  104.604186][   T29] audit: type=1400 audit(1727320343.253:3569): avc:  denied  { ioctl } for  pid=7783 comm="syz.4.1362" path="/dev/mISDNtimer" dev="devtmpfs" ino=225 ioctlcmd=0x4940 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  104.657588][ T7787] loop1: detected capacity change from 0 to 128
[  104.665778][   T29] audit: type=1400 audit(1727320343.313:3570): avc:  denied  { mount } for  pid=7781 comm="syz.1.1413" name="/" dev="loop1" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  104.707331][   T29] audit: type=1400 audit(1727320343.353:3571): avc:  denied  { unmount } for  pid=4496 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  104.741830][   T29] audit: type=1326 audit(1727320343.373:3572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7789 comm="syz.4.1415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f236b64df39 code=0x7ffc0000
[  104.765368][   T29] audit: type=1326 audit(1727320343.373:3573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7789 comm="syz.4.1415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f236b64df39 code=0x7ffc0000
[  104.770217][ T3340] IPVS: starting estimator thread 0...
[  104.788911][   T29] audit: type=1326 audit(1727320343.383:3574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7789 comm="syz.4.1415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f236b64df39 code=0x7ffc0000
[  104.788946][   T29] audit: type=1326 audit(1727320343.383:3575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7789 comm="syz.4.1415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f236b64df39 code=0x7ffc0000
[  104.822783][ T7797] netlink: 'syz.4.1416': attribute type 1 has an invalid length.
[  104.841308][   T29] audit: type=1326 audit(1727320343.383:3576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7789 comm="syz.4.1415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f236b64df39 code=0x7ffc0000
[  104.849003][ T7797] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1416'.
[  104.881858][   T29] audit: type=1326 audit(1727320343.383:3577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7789 comm="syz.4.1415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f236b64df39 code=0x7ffc0000
[  104.905633][   T29] audit: type=1326 audit(1727320343.383:3578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7789 comm="syz.4.1415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f236b64df39 code=0x7ffc0000
[  104.909910][ T7796] IPVS: using max 2064 ests per chain, 103200 per kthread
[  104.944172][ T7795] tipc: Started in network mode
[  104.949094][ T7795] tipc: Node identity ac1414aa, cluster identity 4711
[  104.956284][ T7795] tipc: Enabled bearer <udp:s>, priority 10
[  104.994934][ T7806] loop4: detected capacity change from 0 to 512
[  105.006345][ T7806] EXT4-fs: Ignoring removed oldalloc option
[  105.030760][ T7806] EXT4-fs error (device loop4): ext4_xattr_inode_iget:436: comm syz.4.1419: Parent and EA inode have the same ino 15
[  105.033431][ T7809] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  105.066258][ T7806] EXT4-fs error (device loop4): ext4_xattr_inode_iget:436: comm syz.4.1419: Parent and EA inode have the same ino 15
[  105.114535][ T7817] loop0: detected capacity change from 0 to 256
[  105.121637][ T7806] EXT4-fs (loop4): 1 orphan inode deleted
[  105.127740][ T7806] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.209741][ T7826] SELinux: failed to load policy
[  105.210619][ T7806] siw: device registration error -23
[  105.273314][ T7601] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.297330][ T7837] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1433'.
[  105.330787][ T7844] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1436'.
[  105.344410][ T7842] loop2: detected capacity change from 0 to 1024
[  105.351564][ T7842] EXT4-fs: Ignoring removed nobh option
[  105.357163][ T7842] EXT4-fs: dax option not supported
[  105.362971][ T7848] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  105.367563][ T7842] Non-string source
[  105.382844][ T7846] loop4: detected capacity change from 0 to 128
[  105.402772][ T7846] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  105.415794][ T7846] ext4 filesystem being mounted at /4/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  105.478198][ T7601] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  105.516911][ T7861] loop2: detected capacity change from 0 to 128
[  105.769549][ T7868] FAULT_INJECTION: forcing a failure.
[  105.769549][ T7868] name failslab, interval 1, probability 0, space 0, times 0
[  105.782171][ T7868] CPU: 1 UID: 0 PID: 7868 Comm: syz.3.1444 Tainted: G        W          6.11.0-syzkaller-10622-gaa486552a110 #0
[  105.794068][ T7868] Tainted: [W]=WARN
[  105.797941][ T7868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  105.807996][ T7868] Call Trace:
[  105.811395][ T7868]  <TASK>
[  105.814423][ T7868]  dump_stack_lvl+0xf2/0x150
[  105.819060][ T7868]  dump_stack+0x15/0x20
[  105.823390][ T7868]  should_fail_ex+0x223/0x230
[  105.828079][ T7868]  ? __sigqueue_alloc+0xf6/0x180
[  105.833165][ T7868]  should_failslab+0x8f/0xb0
[  105.837950][ T7868]  kmem_cache_alloc_noprof+0x4c/0x290
[  105.843424][ T7868]  __sigqueue_alloc+0xf6/0x180
[  105.848223][ T7868]  __send_signal_locked+0x139/0x700
[  105.853551][ T7868]  send_signal_locked+0x28f/0x3a0
[  105.858614][ T7868]  ? avc_has_perm_noaudit+0x1cc/0x210
[  105.864001][ T7868]  do_send_sig_info+0x9f/0xf0
[  105.868820][ T7868]  send_sig+0x53/0x60
[  105.872828][ T7868]  inode_newsize_ok+0x96/0x130
[  105.877602][ T7868]  shmem_fallocate+0xc6/0x860
[  105.882281][ T7868]  ? selinux_file_permission+0x327/0x360
[  105.887976][ T7868]  vfs_fallocate+0x368/0x3b0
[  105.892612][ T7868]  __x64_sys_fallocate+0x79/0xc0
[  105.897622][ T7868]  x64_sys_call+0x2783/0x2d60
[  105.902341][ T7868]  do_syscall_64+0xc9/0x1c0
[  105.906924][ T7868]  ? clear_bhb_loop+0x55/0xb0
[  105.911870][ T7868]  ? clear_bhb_loop+0x55/0xb0
[  105.916563][ T7868]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.922465][ T7868] RIP: 0033:0x7f7d1e82df39
[  105.926927][ T7868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.946547][ T7868] RSP: 002b:00007f7d1d4a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  105.955062][ T7868] RAX: ffffffffffffffda RBX: 00007f7d1e9e5f80 RCX: 00007f7d1e82df39
[  105.960723][    T8] tipc: Node number set to 2886997162
[  105.963162][ T7868] RDX: 0400000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  105.963181][ T7868] RBP: 00007f7d1d4a7090 R08: 0000000000000000 R09: 0000000000000000
[  105.984577][ T7868] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000001
[  105.992620][ T7868] R13: 0000000000000000 R14: 00007f7d1e9e5f80 R15: 00007ffeca65a688
[  106.000610][ T7868]  </TASK>
[  106.044157][ T7870] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  106.053347][ T7870] netlink: 'syz.3.1445': attribute type 1 has an invalid length.
[  106.061166][ T7870] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1445'.
[  106.096901][ T7872] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1446'.
[  106.156393][ T7879] loop1: detected capacity change from 0 to 256
[  106.199832][ T7885] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  106.210327][ T7887] loop3: detected capacity change from 0 to 256
[  106.224864][ T7885] loop0: detected capacity change from 0 to 764
[  106.257188][ T7894] netlink: 256 bytes leftover after parsing attributes in process `syz.0.1456'.
[  106.290602][ T7901] netlink: 'syz.1.1458': attribute type 10 has an invalid length.
[  106.394645][   T35] IPVS: starting estimator thread 0...
[  106.403553][ T7910] tipc: Started in network mode
[  106.408540][ T7910] tipc: Node identity ac1414aa, cluster identity 4711
[  106.430928][ T7910] tipc: Enabled bearer <udp:s>, priority 10
[  106.438261][ T7910] netlink: 'syz.2.1462': attribute type 1 has an invalid length.
[  106.446089][ T7910] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1462'.
[  106.485115][ T7918] loop0: detected capacity change from 0 to 512
[  106.492594][ T7914] IPVS: using max 2496 ests per chain, 124800 per kthread
[  106.512963][ T7918] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1463: corrupted in-inode xattr: invalid ea_ino
[  106.526963][ T7918] EXT4-fs error (device loop0): ext4_orphan_get:1393: comm syz.0.1463: couldn't read orphan inode 15 (err -117)
[  106.541498][ T7918] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.651644][ T7942] loop1: detected capacity change from 0 to 128
[  106.658274][ T7944] netlink: 'syz.2.1474': attribute type 10 has an invalid length.
[  106.666601][ T7944] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  106.670476][ T7942] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  106.687507][ T7942] ext4 filesystem being mounted at /266/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  106.692178][ T7944] bond0: (slave netdevsim1): Enslaving as an active interface with an up link
[  106.748019][ T4496] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  106.784827][ T7951] netlink: 'syz.1.1477': attribute type 10 has an invalid length.
[  107.252086][ T6916] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.298046][ T7982] netlink: 'syz.0.1489': attribute type 10 has an invalid length.
[  107.352923][ T7987] loop3: detected capacity change from 0 to 256
[  107.359566][ T7987] msdos: Unknown parameter 'fowner>00000000000000000000'
[  107.512096][ T8001] loop0: detected capacity change from 0 to 512
[  107.533005][ T8001] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.545971][ T8001] ext4 filesystem being mounted at /74/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.551271][   T35] tipc: Node number set to 2886997162
[  107.561422][ T8001] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.1496: corrupted inode contents
[  107.574016][ T8001] EXT4-fs error (device loop0): ext4_dirty_inode:5984: inode #2: comm syz.0.1496: mark_inode_dirty error
[  107.586360][ T8001] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.1496: corrupted inode contents
[  107.601937][ T8001] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.1496: corrupted inode contents
[  107.623822][ T6916] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.672345][ T8009] loop2: detected capacity change from 0 to 512
[  107.681023][ T8009] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.1497: corrupted in-inode xattr: invalid ea_ino
[  107.694740][ T8009] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.1497: couldn't read orphan inode 15 (err -117)
[  107.707640][ T8009] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.722918][ T8009] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.730144][ T8009] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.741115][ T8009] bridge_slave_1: left allmulticast mode
[  107.746855][ T8009] bridge_slave_1: left promiscuous mode
[  107.752614][ T8009] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.758780][ T8013] loop0: detected capacity change from 0 to 128
[  107.766697][ T8009] bridge_slave_0: left allmulticast mode
[  107.772441][ T8009] bridge_slave_0: left promiscuous mode
[  107.778096][ T8009] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.780290][ T8013] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  107.797947][ T8013] ext4 filesystem being mounted at /76/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.863537][ T6916] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  107.883249][ T8016] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1500'.
[  108.005672][ T8026] netlink: 'syz.0.1505': attribute type 10 has an invalid length.
[  108.122722][ T8033] FAULT_INJECTION: forcing a failure.
[  108.122722][ T8033] name failslab, interval 1, probability 0, space 0, times 0
[  108.135555][ T8033] CPU: 1 UID: 0 PID: 8033 Comm: syz.4.1508 Tainted: G        W          6.11.0-syzkaller-10622-gaa486552a110 #0
[  108.147482][ T8033] Tainted: [W]=WARN
[  108.151305][ T8033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  108.161486][ T8033] Call Trace:
[  108.164783][ T8033]  <TASK>
[  108.167798][ T8033]  dump_stack_lvl+0xf2/0x150
[  108.172592][ T8033]  dump_stack+0x15/0x20
[  108.176949][ T8033]  should_fail_ex+0x223/0x230
[  108.181663][ T8033]  ? skb_clone+0x154/0x1f0
[  108.186317][ T8033]  should_failslab+0x8f/0xb0
[  108.191066][ T8033]  kmem_cache_alloc_noprof+0x4c/0x290
[  108.196485][ T8033]  skb_clone+0x154/0x1f0
[  108.200867][ T8033]  nfnetlink_rcv+0x2de/0x15c0
[  108.205689][ T8033]  ? kmem_cache_free+0xdc/0x2d0
[  108.210596][ T8033]  ? nlmon_xmit+0x51/0x60
[  108.215024][ T8033]  ? __kfree_skb+0x102/0x150
[  108.219761][ T8033]  ? consume_skb+0x49/0x160
[  108.224390][ T8033]  ? nlmon_xmit+0x51/0x60
[  108.228765][ T8033]  ? dev_hard_start_xmit+0x3c1/0x3f0
[  108.234116][ T8033]  ? __dev_queue_xmit+0xb8a/0x1fe0
[  108.239392][ T8033]  ? ref_tracker_free+0x3a5/0x410
[  108.244479][ T8033]  ? __dev_queue_xmit+0x161/0x1fe0
[  108.249722][ T8033]  netlink_unicast+0x599/0x670
[  108.254688][ T8033]  netlink_sendmsg+0x5cc/0x6e0
[  108.259556][ T8033]  ? __pfx_netlink_sendmsg+0x10/0x10
[  108.265045][ T8033]  __sock_sendmsg+0x140/0x180
[  108.269768][ T8033]  ____sys_sendmsg+0x312/0x410
[  108.274619][ T8033]  __sys_sendmsg+0x1d9/0x270
[  108.279315][ T8033]  __x64_sys_sendmsg+0x46/0x50
[  108.284139][ T8033]  x64_sys_call+0x2689/0x2d60
[  108.289030][ T8033]  do_syscall_64+0xc9/0x1c0
[  108.293575][ T8033]  ? clear_bhb_loop+0x55/0xb0
[  108.298473][ T8033]  ? clear_bhb_loop+0x55/0xb0
[  108.303229][ T8033]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.309230][ T8033] RIP: 0033:0x7f236b64df39
[  108.313648][ T8033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.333289][ T8033] RSP: 002b:00007f236a2c1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  108.341739][ T8033] RAX: ffffffffffffffda RBX: 00007f236b805f80 RCX: 00007f236b64df39
[  108.349748][ T8033] RDX: 0000000000000000 RSI: 000000002000c2c0 RDI: 0000000000000006
[  108.357937][ T8033] RBP: 00007f236a2c1090 R08: 0000000000000000 R09: 0000000000000000
[  108.365960][ T8033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  108.374003][ T8033] R13: 0000000000000000 R14: 00007f236b805f80 R15: 00007fff8a07e248
[  108.381987][ T8033]  </TASK>
[  108.409220][ T8036] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  108.426705][ T8036] netlink: 'syz.3.1509': attribute type 1 has an invalid length.
[  108.434851][ T8036] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1509'.
[  108.458734][ T7606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.590528][ T8066] netlink: 'syz.3.1521': attribute type 10 has an invalid length.
[  108.646693][ T8072] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  108.780552][ T8076] loop4: detected capacity change from 0 to 512
[  108.834223][ T8076] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1524: corrupted in-inode xattr: invalid ea_ino
[  108.851613][ T8076] EXT4-fs error (device loop4): ext4_orphan_get:1393: comm syz.4.1524: couldn't read orphan inode 15 (err -117)
[  108.867058][ T8049] FAULT_INJECTION: forcing a failure.
[  108.867058][ T8049] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  108.880551][ T8049] CPU: 0 UID: 0 PID: 8049 Comm: syz.0.1511 Tainted: G        W          6.11.0-syzkaller-10622-gaa486552a110 #0
[  108.882030][ T8076] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.892372][ T8049] Tainted: [W]=WARN
[  108.892383][ T8049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  108.892397][ T8049] Call Trace:
[  108.892406][ T8049]  <TASK>
[  108.892416][ T8049]  dump_stack_lvl+0xf2/0x150
[  108.892461][ T8049]  dump_stack+0x15/0x20
[  108.892492][ T8049]  should_fail_ex+0x223/0x230
[  108.938614][ T8049]  should_fail+0xb/0x10
[  108.942798][ T8049]  should_fail_usercopy+0x1a/0x20
[  108.947970][ T8049]  _copy_to_user+0x1e/0xa0
[  108.952399][ T8049]  simple_read_from_buffer+0xa0/0x110
[  108.957811][ T8049]  proc_fail_nth_read+0xf9/0x140
[  108.963080][ T8049]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  108.968728][ T8049]  vfs_read+0x195/0x720
[  108.972924][ T8049]  ? __se_sys_mremap+0xdfe/0xec0
[  108.977882][ T8049]  ? __rcu_read_unlock+0x4e/0x70
[  108.983081][ T8049]  ? __fget_files+0x1d4/0x210
[  108.987854][ T8049]  ksys_read+0xeb/0x1b0
[  108.992054][ T8049]  __x64_sys_read+0x42/0x50
[  108.996584][ T8049]  x64_sys_call+0x27d3/0x2d60
[  109.001318][ T8049]  do_syscall_64+0xc9/0x1c0
[  109.005838][ T8049]  ? clear_bhb_loop+0x55/0xb0
[  109.010553][ T8049]  ? clear_bhb_loop+0x55/0xb0
[  109.015276][ T8049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.021208][ T8049] RIP: 0033:0x7f2442a3c97c
[  109.025705][ T8049] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  109.045554][ T8049] RSP: 002b:00007f2441696030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  109.053976][ T8049] RAX: ffffffffffffffda RBX: 00007f2442bf6058 RCX: 00007f2442a3c97c
[  109.062054][ T8049] RDX: 000000000000000f RSI: 00007f24416960a0 RDI: 0000000000000005
[  109.070030][ T8049] RBP: 00007f2441696090 R08: 0000000000000000 R09: 0000000000000000
[  109.078006][ T8049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.086082][ T8049] R13: 0000000000000000 R14: 00007f2442bf6058 R15: 00007ffd1f1ad9b8
[  109.094081][ T8049]  </TASK>
[  109.107381][ T8076] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.115063][ T8076] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.129600][ T8081] bridge_slave_1: left allmulticast mode
[  109.135450][ T8081] bridge_slave_1: left promiscuous mode
[  109.141218][ T8081] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.160903][ T8081] bridge_slave_0: left allmulticast mode
[  109.166605][ T8081] bridge_slave_0: left promiscuous mode
[  109.172511][ T8081] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.261519][ T8087] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  109.306798][ T8094] loop0: detected capacity change from 0 to 512
[  109.313921][ T8094] EXT4-fs: Ignoring removed i_version option
[  109.319983][ T8094] EXT4-fs: Ignoring removed i_version option
[  109.326104][ T8094] EXT4-fs: Ignoring removed nomblk_io_submit option
[  109.332886][ T8094] ext4: Unknown parameter 'mask'
[  109.382946][ T8101] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  109.419883][ T8109] batman_adv: batadv0: Adding interface: veth1_vlan
[  109.426943][ T8109] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  109.456666][ T8109] batman_adv: batadv0: Interface activated: veth1_vlan
[  109.479097][ T8114] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  109.564684][ T7601] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.569394][ T8132] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  109.617003][   T29] kauditd_printk_skb: 463 callbacks suppressed
[  109.617017][   T29] audit: type=1326 audit(1727320348.263:4042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8140 comm="syz.0.1550" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2442a3df39 code=0x0
[  109.657492][ T8143] loop4: detected capacity change from 0 to 128
[  109.666191][   T29] audit: type=1326 audit(1727320348.313:4043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8144 comm="syz.2.1552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94cb39df39 code=0x7ffc0000
[  109.690071][   T29] audit: type=1326 audit(1727320348.313:4044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8144 comm="syz.2.1552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94cb39df39 code=0x7ffc0000
[  109.713957][   T29] audit: type=1400 audit(1727320348.313:4045): avc:  denied  { mount } for  pid=8142 comm="syz.4.1551" name="/" dev="loop4" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  109.736168][   T29] audit: type=1326 audit(1727320348.363:4046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8144 comm="syz.2.1552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7f94cb39df39 code=0x7ffc0000
[  109.759703][   T29] audit: type=1326 audit(1727320348.363:4047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8144 comm="syz.2.1552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94cb39df39 code=0x7ffc0000
[  109.783425][   T29] audit: type=1326 audit(1727320348.363:4048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8144 comm="syz.2.1552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94cb39df39 code=0x7ffc0000
[  109.806953][   T29] audit: type=1326 audit(1727320348.363:4049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8144 comm="syz.2.1552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f94cb39df39 code=0x7ffc0000
[  109.830551][   T29] audit: type=1326 audit(1727320348.363:4050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8144 comm="syz.2.1552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94cb39df39 code=0x7ffc0000
[  109.854395][   T29] audit: type=1326 audit(1727320348.363:4051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8144 comm="syz.2.1552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94cb39df39 code=0x7ffc0000
[  109.893230][ T8149] FAULT_INJECTION: forcing a failure.
[  109.893230][ T8149] name failslab, interval 1, probability 0, space 0, times 0
[  109.894815][ T8142] coredump: 51(syz.4.1551): Error writing out the process memory
[  109.905979][ T8149] CPU: 1 UID: 0 PID: 8149 Comm: syz.2.1553 Tainted: G        W          6.11.0-syzkaller-10622-gaa486552a110 #0
[  109.906015][ T8149] Tainted: [W]=WARN
[  109.906024][ T8149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  109.906038][ T8149] Call Trace:
[  109.906047][ T8149]  <TASK>
[  109.913824][ T8142] coredump: 51(syz.4.1551): written to core: VMAs: 28, size 35467264; core: 20376 bytes, pos 40960
[  109.925652][ T8149]  dump_stack_lvl+0xf2/0x150
[  109.961097][ T8149]  dump_stack+0x15/0x20
[  109.965671][ T8149]  should_fail_ex+0x223/0x230
[  109.970582][ T8149]  ? skb_clone+0x154/0x1f0
[  109.975065][ T8149]  should_failslab+0x8f/0xb0
[  109.979741][ T8149]  kmem_cache_alloc_noprof+0x4c/0x290
[  109.985136][ T8149]  skb_clone+0x154/0x1f0
[  109.989519][ T8149]  dev_queue_xmit_nit+0x149/0x620
[  109.994663][ T8149]  dev_hard_start_xmit+0xcc/0x3f0
[  109.999702][ T8149]  ? validate_xmit_skb+0x658/0x8d0
[  110.004877][ T8149]  __dev_queue_xmit+0xfe6/0x1fe0
[  110.010163][ T8149]  ? __dev_queue_xmit+0x161/0x1fe0
[  110.015368][ T8149]  ? should_fail_ex+0xd7/0x230
[  110.020194][ T8149]  ? __skb_clone+0x2d0/0x2f0
[  110.024875][ T8149]  __netlink_deliver_tap+0x39f/0x4c0
[  110.030187][ T8149]  netlink_unicast+0x64a/0x670
[  110.035091][ T8149]  netlink_sendmsg+0x5cc/0x6e0
[  110.039965][ T8149]  ? __pfx_netlink_sendmsg+0x10/0x10
[  110.045347][ T8149]  __sock_sendmsg+0x140/0x180
[  110.050051][ T8149]  ____sys_sendmsg+0x312/0x410
[  110.054859][ T8149]  __sys_sendmsg+0x1d9/0x270
[  110.059584][ T8149]  __x64_sys_sendmsg+0x46/0x50
[  110.064384][ T8149]  x64_sys_call+0x2689/0x2d60
[  110.069079][ T8149]  do_syscall_64+0xc9/0x1c0
[  110.073688][ T8149]  ? clear_bhb_loop+0x55/0xb0
[  110.078389][ T8149]  ? clear_bhb_loop+0x55/0xb0
[  110.083228][ T8149]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.089216][ T8149] RIP: 0033:0x7f94cb39df39
[  110.093636][ T8149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.113361][ T8149] RSP: 002b:00007f94ca017038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  110.121853][ T8149] RAX: ffffffffffffffda RBX: 00007f94cb555f80 RCX: 00007f94cb39df39
[  110.129834][ T8149] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000007
[  110.137870][ T8149] RBP: 00007f94ca017090 R08: 0000000000000000 R09: 0000000000000000
[  110.146137][ T8149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  110.154230][ T8149] R13: 0000000000000000 R14: 00007f94cb555f80 R15: 00007ffe3318d6d8
[  110.162263][ T8149]  </TASK>
[  110.186002][ T8154] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 6
[  110.202631][ T8154] veth3: entered promiscuous mode
[  110.301709][ T8169] loop3: detected capacity change from 0 to 512
[  110.310059][ T8169] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.1558: corrupted in-inode xattr: invalid ea_ino
[  110.325077][ T8169] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.1558: couldn't read orphan inode 15 (err -117)
[  110.337893][ T8169] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.357033][ T8174] loop4: detected capacity change from 0 to 128
[  110.416001][ T8179] loop2: detected capacity change from 0 to 2048
[  110.423132][ T8179] EXT4-fs (loop2): couldn't mount as ext3 due to feature incompatibilities
[  110.546131][ T8173] coredump: 65(syz.4.1564): Error writing out the process memory
[  110.554001][ T8173] coredump: 65(syz.4.1564): written to core: VMAs: 26, size 35336192; core: 18532 bytes, pos 40960
[  110.678097][ T8207] loop0: detected capacity change from 0 to 512
[  110.708635][ T8207] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1576: corrupted in-inode xattr: invalid ea_ino
[  110.722751][ T8210] loop4: detected capacity change from 0 to 256
[  110.731517][ T8207] EXT4-fs error (device loop0): ext4_orphan_get:1393: comm syz.0.1576: couldn't read orphan inode 15 (err -117)
[  110.765235][ T8207] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.798337][ T8214] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[  110.804891][ T8214] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  110.812639][ T8214] vhci_hcd vhci_hcd.0: Device attached
[  110.820829][ T8216] vhci_hcd: cannot find the pending unlink 32769
[  110.828945][ T8216] vhci_hcd: connection closed
[  110.829278][   T57] vhci_hcd: stop threads
[  110.838414][   T57] vhci_hcd: release socket
[  110.842894][   T57] vhci_hcd: disconnect device
[  110.848196][ T6916] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.899237][ T8227] loop0: detected capacity change from 0 to 128
[  110.988858][ T8226] coredump: 236(syz.0.1583): Error writing out the process memory
[  110.996851][ T8226] coredump: 236(syz.0.1583): written to core: VMAs: 26, size 35336192; core: 18532 bytes, pos 40960
[  111.081460][ T8234] FAULT_INJECTION: forcing a failure.
[  111.081460][ T8234] name failslab, interval 1, probability 0, space 0, times 0
[  111.094450][ T8234] CPU: 0 UID: 0 PID: 8234 Comm: syz.0.1586 Tainted: G        W          6.11.0-syzkaller-10622-gaa486552a110 #0
[  111.106295][ T8234] Tainted: [W]=WARN
[  111.110267][ T8234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  111.120333][ T8234] Call Trace:
[  111.123614][ T8234]  <TASK>
[  111.126548][ T8234]  dump_stack_lvl+0xf2/0x150
[  111.131175][ T8234]  dump_stack+0x15/0x20
[  111.135417][ T8234]  should_fail_ex+0x223/0x230
[  111.140340][ T8234]  ? __kvmalloc_node_noprof+0x72/0x170
[  111.145928][ T8234]  should_failslab+0x8f/0xb0
[  111.150649][ T8234]  __kmalloc_node_noprof+0xa8/0x380
[  111.155914][ T8234]  __kvmalloc_node_noprof+0x72/0x170
[  111.161367][ T8234]  pfifo_fast_init+0x25e/0x360
[  111.166203][ T8234]  qdisc_create_dflt+0xce/0x280
[  111.171114][ T8234]  mq_init+0x1b9/0x380
[  111.175268][ T8234]  qdisc_create_dflt+0xce/0x280
[  111.180318][ T8234]  dev_activate+0xd9/0x9e0
[  111.184754][ T8234]  ? dev_set_rx_mode+0x189/0x1a0
[  111.189774][ T8234]  __dev_open+0x263/0x2e0
[  111.194336][ T8234]  __dev_change_flags+0x155/0x410
[  111.199457][ T8234]  dev_change_flags+0x59/0xd0
[  111.204218][ T8234]  dev_ifsioc+0x67f/0xa10
[  111.208636][ T8234]  dev_ioctl+0x7fa/0xab0
[  111.212999][ T8234]  sock_do_ioctl+0x11c/0x260
[  111.217611][ T8234]  sock_ioctl+0x46a/0x640
[  111.221974][ T8234]  ? __pfx_sock_ioctl+0x10/0x10
[  111.226850][ T8234]  __se_sys_ioctl+0xcd/0x140
[  111.231538][ T8234]  __x64_sys_ioctl+0x43/0x50
[  111.236141][ T8234]  x64_sys_call+0x15cc/0x2d60
[  111.241004][ T8234]  do_syscall_64+0xc9/0x1c0
[  111.245550][ T8234]  ? clear_bhb_loop+0x55/0xb0
[  111.250247][ T8234]  ? clear_bhb_loop+0x55/0xb0
[  111.255134][ T8234]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.261063][ T8234] RIP: 0033:0x7f2442a3df39
[  111.265636][ T8234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.285355][ T8234] RSP: 002b:00007f24416b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  111.293812][ T8234] RAX: ffffffffffffffda RBX: 00007f2442bf5f80 RCX: 00007f2442a3df39
[  111.301949][ T8234] RDX: 00000000200000c0 RSI: 0000000000008914 RDI: 0000000000000004
[  111.309970][ T8234] RBP: 00007f24416b7090 R08: 0000000000000000 R09: 0000000000000000
[  111.318041][ T8234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  111.326363][ T8234] R13: 0000000000000000 R14: 00007f2442bf5f80 R15: 00007ffd1f1ad9b8
[  111.334459][ T8234]  </TASK>
[  111.337982][ T8234] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  111.341426][ T5311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.357098][ T8234] syzkaller0: entered promiscuous mode
[  111.362645][ T8234] syzkaller0: entered allmulticast mode
[  111.396033][ T8240] loop3: detected capacity change from 0 to 256
[  111.427602][ T8243] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  111.436311][ T8243] validate_nla: 2 callbacks suppressed
[  111.436328][ T8243] netlink: 'syz.3.1590': attribute type 1 has an invalid length.
[  111.449921][ T8243] __nla_validate_parse: 5 callbacks suppressed
[  111.449937][ T8243] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1590'.
[  111.493830][ T8245] loop0: detected capacity change from 0 to 512
[  111.507199][ T8245] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1591: corrupted in-inode xattr: invalid ea_ino
[  111.522064][ T8245] EXT4-fs error (device loop0): ext4_orphan_get:1393: comm syz.0.1591: couldn't read orphan inode 15 (err -117)
[  111.534748][ T8245] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.580578][ T6916] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.612611][ T8257] loop3: detected capacity change from 0 to 128
[  111.677257][ T8265] loop2: detected capacity change from 0 to 512
[  111.693500][ T8265] EXT4-fs (loop2): blocks per group (95) and clusters per group (32768) inconsistent
[  111.751408][ T8279] loop2: detected capacity change from 0 to 512
[  111.759786][ T8279] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.1604: corrupted in-inode xattr: invalid ea_ino
[  111.774022][ T8279] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.1604: couldn't read orphan inode 15 (err -117)
[  111.787309][ T8279] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.839417][ T7606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.007431][ T8302] loop1: detected capacity change from 0 to 256
[  112.564068][ T8320] loop0: detected capacity change from 0 to 128
[  112.583344][ T8320] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  112.596231][ T8320] ext4 filesystem being mounted at /106/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.605383][ T8330] loop1: detected capacity change from 0 to 128
[  112.611410][ T8316] loop3: detected capacity change from 0 to 512
[  112.622569][ T8316] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.1616: corrupted in-inode xattr: invalid ea_ino
[  112.636413][ T8316] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.1616: couldn't read orphan inode 15 (err -117)
[  112.651343][ T8316] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.654976][ T6916] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  112.704387][ T5311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.745726][ T8342] loop4: detected capacity change from 0 to 512
[  112.763111][ T8344] FAULT_INJECTION: forcing a failure.
[  112.763111][ T8344] name failslab, interval 1, probability 0, space 0, times 0
[  112.763148][ T8342] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1623: corrupted in-inode xattr: invalid ea_ino
[  112.775873][ T8344] CPU: 1 UID: 0 PID: 8344 Comm: syz.0.1622 Tainted: G        W          6.11.0-syzkaller-10622-gaa486552a110 #0
[  112.797869][ T8342] EXT4-fs error (device loop4): ext4_orphan_get:1393: comm syz.4.1623: couldn't read orphan inode 15 (err -117)
[  112.801439][ T8344] Tainted: [W]=WARN
[  112.801449][ T8344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  112.801465][ T8344] Call Trace:
[  112.801474][ T8344]  <TASK>
[  112.801484][ T8344]  dump_stack_lvl+0xf2/0x150
[  112.814841][ T8342] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.817201][ T8344]  dump_stack+0x15/0x20
[  112.854802][ T8344]  should_fail_ex+0x223/0x230
[  112.859597][ T8344]  ? resv_map_alloc+0x57/0x190
[  112.864446][ T8344]  should_failslab+0x8f/0xb0
[  112.869143][ T8344]  __kmalloc_cache_noprof+0x4b/0x2a0
[  112.874562][ T8344]  resv_map_alloc+0x57/0x190
[  112.879239][ T8344]  hugetlbfs_get_inode+0x6e/0x2b0
[  112.884355][ T8344]  hugetlb_file_setup+0x188/0x3c0
[  112.889478][ T8344]  ksys_mmap_pgoff+0x172/0x330
[  112.894299][ T8344]  x64_sys_call+0x1884/0x2d60
[  112.899040][ T8344]  do_syscall_64+0xc9/0x1c0
[  112.903570][ T8344]  ? clear_bhb_loop+0x55/0xb0
[  112.908295][ T8344]  ? clear_bhb_loop+0x55/0xb0
[  112.912996][ T8344]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.918999][ T8344] RIP: 0033:0x7f2442a3df39
[  112.923476][ T8344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.943453][ T8344] RSP: 002b:00007f2441696038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  112.952146][ T8344] RAX: ffffffffffffffda RBX: 00007f2442bf6058 RCX: 00007f2442a3df39
[  112.960303][ T8344] RDX: 0000000000000000 RSI: 0000000000ff5000 RDI: 0000000020000000
[  112.968308][ T8344] RBP: 00007f2441696090 R08: ffffffffffffffff R09: 0000000000000000
[  112.976380][ T8344] R10: 000200000005c831 R11: 0000000000000246 R12: 0000000000000001
[  112.984365][ T8344] R13: 0000000000000000 R14: 00007f2442bf6058 R15: 00007ffd1f1ad9b8
[  112.992360][ T8344]  </TASK>
[  113.109686][ T8370] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  113.120964][ T8370] netlink: 'syz.3.1632': attribute type 1 has an invalid length.
[  113.128925][ T8370] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1632'.
[  113.180073][ T8373] loop0: detected capacity change from 0 to 128
[  113.188282][ T8373] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  113.200834][ T8373] ext4 filesystem being mounted at /109/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.226032][ T6916] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  113.315419][ T8388] loop3: detected capacity change from 0 to 512
[  113.334835][ T8388] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.1635: corrupted in-inode xattr: invalid ea_ino
[  113.349024][ T8388] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.1635: couldn't read orphan inode 15 (err -117)
[  113.362068][ T8388] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.383373][ T8397] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  113.468379][ T8404] loop1: detected capacity change from 0 to 128
[  113.476732][ T8404] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  113.489539][ T8404] ext4 filesystem being mounted at /302/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.500809][ T7601] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.514396][ T4496] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  113.531576][ T8409] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2052 sclass=netlink_route_socket pid=8409 comm=syz.1.1647
[  113.545040][ T8409] netlink: 'syz.1.1647': attribute type 1 has an invalid length.
[  113.552903][ T8409] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1647'.
[  113.649459][ T8427] loop1: detected capacity change from 0 to 128
[  113.722188][ T8430] loop2: detected capacity change from 0 to 512
[  113.730715][ T8430] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.1656: corrupted in-inode xattr: invalid ea_ino
[  113.744545][ T8430] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.1656: couldn't read orphan inode 15 (err -117)
[  113.757238][ T8430] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.099757][ T5311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.233807][ T8439] netlink: 256 bytes leftover after parsing attributes in process `syz.3.1658'.
[  114.265281][ T8446] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2052 sclass=netlink_route_socket pid=8446 comm=syz.3.1660
[  114.278579][ T8446] netlink: 'syz.3.1660': attribute type 1 has an invalid length.
[  114.286416][ T8446] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1660'.
[  114.384406][ T8452] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1662'.
[  114.484784][ T8456] loop4: detected capacity change from 0 to 512
[  114.494442][ T8456] EXT4-fs: Ignoring removed bh option
[  114.508610][ T8456] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  114.518722][ T7606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.540382][ T8456] EXT4-fs (loop4): 1 truncate cleaned up
[  114.556385][ T8456] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.577061][ T8463] loop1: detected capacity change from 0 to 512
[  114.597785][ T8463] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.621686][ T8463] ext4 filesystem being mounted at /309/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.785987][ T4496] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.333044][ T8489] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  115.379899][   T29] kauditd_printk_skb: 255 callbacks suppressed
[  115.379917][   T29] audit: type=1400 audit(1727320353.983:4307): avc:  denied  { setopt } for  pid=8485 comm="syz.3.1674" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  115.503882][   T29] audit: type=1400 audit(1727320354.153:4308): avc:  denied  { bind } for  pid=8490 comm="syz.2.1675" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  115.678541][ T8493] loop1: detected capacity change from 0 to 128
[  115.683221][   T29] audit: type=1400 audit(1727320354.323:4309): avc:  denied  { write } for  pid=8490 comm="syz.2.1675" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  116.759870][   T29] audit: type=1326 audit(1727320355.403:4310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8525 comm="syz.2.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94cb39df39 code=0x7ffc0000
[  116.783553][   T29] audit: type=1326 audit(1727320355.403:4311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8525 comm="syz.2.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7f94cb39df39 code=0x7ffc0000
[  116.809835][   T29] audit: type=1326 audit(1727320355.413:4312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8525 comm="syz.2.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94cb39df39 code=0x7ffc0000
[  116.833362][   T29] audit: type=1326 audit(1727320355.413:4313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8525 comm="syz.2.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=450 compat=0 ip=0x7f94cb39df39 code=0x7ffc0000
[  116.856966][   T29] audit: type=1326 audit(1727320355.413:4314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8525 comm="syz.2.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94cb39df39 code=0x7ffc0000
[  116.880929][   T29] audit: type=1326 audit(1727320355.433:4315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8525 comm="syz.2.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94cb39df39 code=0x7ffc0000
[  116.969025][ T8537] netlink: 256 bytes leftover after parsing attributes in process `syz.0.1692'.
[  117.068696][   T29] audit: type=1326 audit(1727320355.713:4316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8546 comm="syz.0.1694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2442a3df39 code=0x7ffc0000
[  117.141623][ T8555] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2052 sclass=netlink_route_socket pid=8555 comm=syz.0.1699
[  117.155392][ T8555] netlink: 'syz.0.1699': attribute type 1 has an invalid length.
[  117.163287][ T8555] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1699'.
[  117.204947][ T8561] loop1: detected capacity change from 0 to 128
[  117.245088][ T8567] loop1: detected capacity change from 0 to 128
[  117.253436][ T8567] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  117.265932][ T8567] ext4 filesystem being mounted at /321/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  117.289204][ T4496] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  117.317937][ T8574] netlink: 256 bytes leftover after parsing attributes in process `syz.1.1705'.
[  117.495866][ T8583] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2052 sclass=netlink_route_socket pid=8583 comm=syz.1.1708
[  117.509489][ T8583] netlink: 'syz.1.1708': attribute type 1 has an invalid length.
[  117.517341][ T8583] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1708'.
[  117.558808][ T8585] loop1: detected capacity change from 0 to 256
[  117.573209][ T8585] FAT-fs (loop1): Directory bread(block 64) failed
[  117.580115][ T8585] FAT-fs (loop1): Directory bread(block 65) failed
[  117.586707][ T8585] FAT-fs (loop1): Directory bread(block 66) failed
[  117.593306][ T8585] FAT-fs (loop1): Directory bread(block 67) failed
[  117.600260][ T8585] FAT-fs (loop1): Directory bread(block 68) failed
[  117.606958][ T8585] FAT-fs (loop1): Directory bread(block 69) failed
[  117.613713][ T8585] FAT-fs (loop1): Directory bread(block 70) failed
[  117.620597][ T8585] FAT-fs (loop1): Directory bread(block 71) failed
[  117.627314][ T8585] FAT-fs (loop1): Directory bread(block 72) failed
[  117.634022][ T8585] FAT-fs (loop1): Directory bread(block 73) failed
[  117.657955][ T8585] loop1: detected capacity change from 0 to 256
[  117.733692][ T8589] loop1: detected capacity change from 0 to 8192
[  118.001097][ T8608] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1719'.
[  118.140289][ T8617] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1718'.
[  118.156148][ T8627] pim6reg1: entered promiscuous mode
[  118.161874][ T8627] pim6reg1: entered allmulticast mode
[  118.184612][ T8627] xt_TCPMSS: Only works on TCP SYN packets
[  118.213062][ T8627] loop2: detected capacity change from 0 to 2048
[  118.235893][ T8635] loop0: detected capacity change from 0 to 512
[  118.263200][ T8635] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  118.290175][ T8635] ext4 filesystem being mounted at /137/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  118.312355][ T8635] EXT4-fs error (device loop0): ext4_xattr_block_get:596: inode #15: comm syz.0.1729: corrupted xattr block 19: ea_inode specified without ea_inode feature enabled
[  118.335240][ T8635] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=15
[  118.345093][ T8635] EXT4-fs error (device loop0): ext4_xattr_block_get:596: inode #15: comm syz.0.1729: corrupted xattr block 19: ea_inode specified without ea_inode feature enabled
[  118.366606][ T8635] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=15
[  118.379495][ T8635] EXT4-fs error (device loop0): ext4_xattr_block_get:596: inode #15: comm syz.0.1729: corrupted xattr block 19: ea_inode specified without ea_inode feature enabled
[  118.402396][ T8635] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=15
[  118.412341][ T8635] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.1729: bg 0: block 18: invalid block bitmap
[  118.434456][ T8635] EXT4-fs error (device loop0): ext4_acquire_dquot:6879: comm syz.0.1729: Failed to acquire dquot type 1
[  118.463024][ T6916] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.953367][ T8659] hub 2-0:1.0: USB hub found
[  118.958252][ T8659] hub 2-0:1.0: 8 ports detected
[  119.126785][ T8671] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  119.135922][ T8671] netlink: 'syz.3.1743': attribute type 1 has an invalid length.
[  119.139417][ T8617] syz.1.1718 (8617) used greatest stack depth: 7296 bytes left
[  119.143817][ T8671] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1743'.
[  119.171501][ T8673] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1744'.
[  119.233172][ T8675] syzkaller0: entered allmulticast mode
[  119.241185][ T8675] syzkaller0 (unregistering): left allmulticast mode
[  119.340662][ T8686] loop2: detected capacity change from 0 to 2048
[  119.371926][ T8686] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  119.403278][ T8686] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  119.427451][ T8686] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 34 with error 28
[  119.439811][ T8686] EXT4-fs (loop2): This should not happen!! Data will be lost
[  119.439811][ T8686] 
[  119.449858][ T8686] EXT4-fs (loop2): Total free blocks count 0
[  119.455983][ T8686] EXT4-fs (loop2): Free/Dirty block details
[  119.462121][ T8686] EXT4-fs (loop2): free_blocks=2415919104
[  119.462142][ T8686] EXT4-fs (loop2): dirty_blocks=64
[  119.462158][ T8686] EXT4-fs (loop2): Block reservation details
[  119.462172][ T8686] EXT4-fs (loop2): i_reserved_data_blocks=4
[  119.546602][ T8704] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  119.555643][ T8704] netlink: 'syz.0.1755': attribute type 1 has an invalid length.
[  119.563519][ T8704] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1755'.
[  119.577374][ T8707] loop3: detected capacity change from 0 to 2048
[  119.591448][ T8707] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  119.603804][   T57] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 1 with error 28
[  119.620323][ T8707] Driver unsupported XDP return value 0 on prog  (id 889) dev N/A, expect packet loss!
[  119.635031][ T8707] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  119.650055][ T8707] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 129 with error 28
[  119.662455][ T8707] EXT4-fs (loop3): This should not happen!! Data will be lost
[  119.662455][ T8707] 
[  119.672139][ T8707] EXT4-fs (loop3): Total free blocks count 0
[  119.678294][ T8707] EXT4-fs (loop3): Free/Dirty block details
[  119.684395][ T8707] EXT4-fs (loop3): free_blocks=2415919104
[  119.690404][ T8707] EXT4-fs (loop3): dirty_blocks=144
[  119.695817][ T8707] EXT4-fs (loop3): Block reservation details
[  119.701832][ T8707] EXT4-fs (loop3): i_reserved_data_blocks=9
[  119.730633][ T8723] loop3: detected capacity change from 0 to 512
[  119.737400][ T8723] EXT4-fs: Ignoring removed oldalloc option
[  119.743489][ T8723] EXT4-fs: Invalid want_extra_isize 0
[  119.867679][ T8726] xt_CT: No such helper "netbios-ns"
[  120.318318][ T8744] FAULT_INJECTION: forcing a failure.
[  120.318318][ T8744] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  120.331608][ T8744] CPU: 1 UID: 0 PID: 8744 Comm: syz.1.1768 Tainted: G        W          6.11.0-syzkaller-10622-gaa486552a110 #0
[  120.343632][ T8744] Tainted: [W]=WARN
[  120.347463][ T8744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  120.357593][ T8744] Call Trace:
[  120.360899][ T8744]  <TASK>
[  120.363839][ T8744]  dump_stack_lvl+0xf2/0x150
[  120.368453][ T8744]  dump_stack+0x15/0x20
[  120.372685][ T8744]  should_fail_ex+0x223/0x230
[  120.377386][ T8744]  should_fail+0xb/0x10
[  120.381563][ T8744]  should_fail_usercopy+0x1a/0x20
[  120.386667][ T8744]  _copy_to_user+0x1e/0xa0
[  120.391099][ T8744]  simple_read_from_buffer+0xa0/0x110
[  120.396721][ T8744]  proc_fail_nth_read+0xf9/0x140
[  120.401779][ T8744]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  120.407409][ T8744]  vfs_read+0x195/0x720
[  120.411618][ T8744]  ? __rcu_read_unlock+0x4e/0x70
[  120.416644][ T8744]  ? __fget_files+0x1d4/0x210
[  120.421409][ T8744]  ksys_read+0xeb/0x1b0
[  120.425588][ T8744]  __x64_sys_read+0x42/0x50
[  120.430124][ T8744]  x64_sys_call+0x27d3/0x2d60
[  120.434828][ T8744]  do_syscall_64+0xc9/0x1c0
[  120.439423][ T8744]  ? clear_bhb_loop+0x55/0xb0
[  120.444111][ T8744]  ? clear_bhb_loop+0x55/0xb0
[  120.448819][ T8744]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.454837][ T8744] RIP: 0033:0x7f9278f2c97c
[  120.459260][ T8744] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  120.478883][ T8744] RSP: 002b:00007f9277ba7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  120.487508][ T8744] RAX: ffffffffffffffda RBX: 00007f92790e5f80 RCX: 00007f9278f2c97c
[  120.495500][ T8744] RDX: 000000000000000f RSI: 00007f9277ba70a0 RDI: 0000000000000004
[  120.503482][ T8744] RBP: 00007f9277ba7090 R08: 0000000000000000 R09: 0000000000000000
[  120.511523][ T8744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  120.519576][ T8744] R13: 0000000000000000 R14: 00007f92790e5f80 R15: 00007fff789984e8
[  120.527583][ T8744]  </TASK>
[  120.579330][ T8754] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1772'.
[  120.603092][   T29] kauditd_printk_skb: 225 callbacks suppressed
[  120.603112][   T29] audit: type=1326 audit(1727320359.253:4540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8757 comm="syz.3.1774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d1e82df39 code=0x7ffc0000
[  120.635064][   T29] audit: type=1326 audit(1727320359.253:4541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8757 comm="syz.3.1774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d1e82df39 code=0x7ffc0000
[  120.658594][   T29] audit: type=1326 audit(1727320359.253:4542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8757 comm="syz.3.1774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7f7d1e82df39 code=0x7ffc0000
[  120.665067][ T8763] loop3: detected capacity change from 0 to 512
[  120.682364][   T29] audit: type=1326 audit(1727320359.253:4543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8757 comm="syz.3.1774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d1e82df39 code=0x7ffc0000
[  120.712586][   T29] audit: type=1326 audit(1727320359.253:4544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8757 comm="syz.3.1774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=450 compat=0 ip=0x7f7d1e82df39 code=0x7ffc0000
[  120.713995][ T8763] EXT4-fs (loop3): couldn't mount as ext2 due to feature incompatibilities
[  120.736052][   T29] audit: type=1326 audit(1727320359.253:4545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8757 comm="syz.3.1774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d1e82df39 code=0x7ffc0000
[  120.779355][   T29] audit: type=1400 audit(1727320359.423:4546): avc:  denied  { read } for  pid=8762 comm="syz.3.1776" name="event0" dev="devtmpfs" ino=218 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  120.802753][   T29] audit: type=1400 audit(1727320359.423:4547): avc:  denied  { open } for  pid=8762 comm="syz.3.1776" path="/dev/input/event0" dev="devtmpfs" ino=218 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  120.827174][   T29] audit: type=1400 audit(1727320359.423:4548): avc:  denied  { ioctl } for  pid=8762 comm="syz.3.1776" path="/dev/input/event0" dev="devtmpfs" ino=218 ioctlcmd=0x4590 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  120.863093][   T29] audit: type=1400 audit(1727320359.513:4549): avc:  denied  { setopt } for  pid=8762 comm="syz.3.1776" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  120.931467][ T8773] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  120.957168][ T8774] loop3: detected capacity change from 0 to 512
[  120.965686][ T8774] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.1777: corrupted in-inode xattr: invalid ea_ino
[  120.979959][ T8774] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.1777: couldn't read orphan inode 15 (err -117)
[  120.994580][ T8776] loop1: detected capacity change from 0 to 256
[  121.007386][ T8776] FAT-fs (loop1): Directory bread(block 64) failed
[  121.014218][ T8776] FAT-fs (loop1): Directory bread(block 65) failed
[  121.020962][ T8776] FAT-fs (loop1): Directory bread(block 66) failed
[  121.027583][ T8776] FAT-fs (loop1): Directory bread(block 67) failed
[  121.034418][ T8776] FAT-fs (loop1): Directory bread(block 68) failed
[  121.041212][ T8776] FAT-fs (loop1): Directory bread(block 69) failed
[  121.047879][ T8776] FAT-fs (loop1): Directory bread(block 70) failed
[  121.054640][ T8776] FAT-fs (loop1): Directory bread(block 71) failed
[  121.061266][ T8776] FAT-fs (loop1): Directory bread(block 72) failed
[  121.067884][ T8776] FAT-fs (loop1): Directory bread(block 73) failed
[  121.087020][ T8776] Process accounting resumed
[  121.091945][ T8776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 899)
[  121.100599][ T8776] FAT-fs (loop1): Filesystem has been set read-only
[  121.126496][ T8781] loop1: detected capacity change from 0 to 128
[  121.134709][ T8781] ext4 filesystem being mounted at /349/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.147703][ T8753] ==================================================================
[  121.155793][ T8753] BUG: KCSAN: assert: race in dequeue_entities+0x6df/0x760
[  121.163021][ T8753] 
[  121.165344][ T8753] race at unknown origin, with assert no writes to 0xffff888102f3b1e8 of 4 bytes by task 8753 on cpu 0:
[  121.176457][ T8753]  dequeue_entities+0x6df/0x760
[  121.181403][ T8753]  pick_next_task_fair+0x7d/0x410
[  121.186430][ T8753]  __schedule+0x284/0x940
[  121.190763][ T8753]  schedule+0x55/0xc0
[  121.194833][ T8753]  do_nanosleep+0xa3/0x300
[  121.199283][ T8753]  hrtimer_nanosleep+0xc4/0x1c0
[  121.204142][ T8753]  common_nsleep+0x68/0x90
[  121.208734][ T8753]  __se_sys_clock_nanosleep+0x20a/0x240
[  121.214285][ T8753]  __x64_sys_clock_nanosleep+0x55/0x70
[  121.219750][ T8753]  x64_sys_call+0x253f/0x2d60
[  121.224459][ T8753]  do_syscall_64+0xc9/0x1c0
[  121.229003][ T8753]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.234902][ T8753] 
[  121.237219][ T8753] value changed: 0x00000000 -> 0x00000001
[  121.242929][ T8753] 
[  121.245264][ T8753] Reported by Kernel Concurrency Sanitizer on:
[  121.251421][ T8753] CPU: 0 UID: 0 PID: 8753 Comm: syz.2.1772 Tainted: G        W          6.11.0-syzkaller-10622-gaa486552a110 #0
[  121.263312][ T8753] Tainted: [W]=WARN
[  121.267198][ T8753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  121.277261][ T8753] ==================================================================