last executing test programs:

6.592123518s ago: executing program 1 (id=3143):
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f00000005c0)='kfree\x00', r0}, 0x10)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x64240, 0x0)
syz_io_uring_setup(0xd79, &(0x7f00000035c0)={0x0, 0x0, 0x2, 0x0, 0x9d}, 0x0, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
socket$kcm(0x2, 0xa, 0x2)
r1 = socket$packet(0x11, 0x2, 0x300)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001e00)={'bond0\x00', <r2=>0x0})
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="200000001100011f000006000000000000000000", @ANYRES32=r2], 0x20}}, 0x0)

6.589733338s ago: executing program 1 (id=3145):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f00000001c0)='./file0\x00', 0x904722, &(0x7f00000003c0)={[{@jqfmt_vfsv1}, {}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@usrjquota_path={'usrjquota', 0x3d, './file0'}}, {@journal_async_commit}, {@nombcache}, {@usrjquota}]}, 0x3, 0x45e, &(0x7f0000000b80)="$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")
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000140)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x3a}}, 0x10)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x40000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, 0x0, 0x0, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
socket$inet(0xa, 0x0, 0x0)
pipe2(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
writev(0xffffffffffffffff, &(0x7f0000005140)=[{&(0x7f0000004f80)='\f\x00\x00\x00', 0x4}], 0x1)
splice(r3, 0x0, r2, 0x0, 0x1, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
sendfile(r2, r4, 0x0, 0x0)
close(r1)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=@newtaction={0x14, 0x30, 0xb}, 0x14}, 0x1, 0x0, 0x0, 0x2400c044}, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
socket(0x0, 0x6, 0x0)
ioctl$BINDER_ENABLE_ONEWAY_SPAM_DETECTION(0xffffffffffffffff, 0x40046210, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x40004, 0x0, 0x0)
r5 = open(&(0x7f0000000280)='./file1\x00', 0x2000, 0x80)
fstat(r5, &(0x7f00000004c0))
openat$cgroup_subtree(r5, &(0x7f00000001c0), 0x2, 0x0)
write$cgroup_freezer_state(r5, &(0x7f0000000000)='FROZEN\x00', 0x7)
connect$unix(0xffffffffffffffff, 0x0, 0x0)

6.396358444s ago: executing program 1 (id=3147):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f0000000080)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x3}, {0x6}]}, 0x10)
r2 = fcntl$dupfd(r0, 0x0, r1)
write$RDMA_USER_CM_CMD_DESTROY_ID(r2, &(0x7f00000001c0)={0x1, 0x10, 0xfa00, {0x0}}, 0x18)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600000, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)
r3 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
setsockopt$llc_int(r3, 0x10c, 0x6, &(0x7f0000000040), 0x4)

6.362383617s ago: executing program 1 (id=3148):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x8200, &(0x7f0000000080)={[{@max_dir_size_kb}, {@stripe}, {@grpid}, {@errors_remount}, {@noblock_validity}, {@block_validity}, {@minixdf}, {@noauto_da_alloc}]}, 0x83, 0x5fe, &(0x7f0000001040)="$eJzs3c9rHNcdAPDvzEqqZKuVXYqpTUsFPdhQrB+uqduebF/qg6GG+lBCDhaW5AivbGHJEDuGyJBDAgmEkGsIvuQfyD2YXHMLgSS3nANOCA45JMEbZnbHXla78kbWaiTP5wO7eu/NaN/76ulp3uzo7QRQWZPZUxpxOCIuJRETbdvGo7lxsrXfw+/uXM4eSTQa//s2iaRVVuz/qPV1f/aURIxGxKdnI35f21jv6q3bV+fqjaZXI6bXllemV2/dPr60PHdl4crCtdkT/zx5auZfsydntyXOIq5z5//7p7dee+kfi5/VjydxOi4OvzIfHXFsl8mYjEetENvLhyLiVJbo8nPZa4oQkpLbwdbUWr+PwxFxKCailueaJmLpzVIbBwxUoxbRACoqMf6hoop5QHFuP4jz4N3swZnmCdDG+Iea743EaH5utO9h0nZm1DzfPbAN9Wd1/HznyHvZI3q8DzG0DfX0sn43Iv7YLf4kb9uB/F2cLP400rbvy9IzETHS+lmkW6x/siO/079/vyb+9n7I4j3d+pqVn91i/WXHD0A13T/TOpCvZ7knx79sZljMf6LL/Ge8y7FrK8o+/vWe/xXH+9H8PfK0Yx6WzXkudH/J4c6Cr944906v+tvnf9kjq7+YC+6EB3cjjnTE/3o+mUse93/Spf+zXS71Wcd/Pv/mXK9tZcffuBdxtOv5z5MrWllqem15pSjruD45vbhUX5hpPnet46NPXvygV/1lx5/1f/SIf7P+z8pW+qzjwwv3lnttG39q/OnXI8nFPDXSKnl5bm3txmzESHK+tUtb+YnN21LsU7xGFv+xv3Yf/5vEn3f0ep/xr/z/6sNe2/ru/w1/VXKPGn22oZcs/vkt9v/bfdbxwws3/9xRNFYkNot/7BljAwAAAAAAgKpJ82uwSTr1OJ2mU1PNNbx/iH1p/frq2t8Wr9+8Nh9xLP9/yOG0uNI90cwnWX629f+wRf5ER/7vEXEwIt6tjeX5qcvX6/NlBw8AAAAAAAAAAAAAAAAAAAC7xP7W+v/iPtXf15rr//uydmjArQMGbpA3mAN2N+Mfqisf/1u9gyuwpzn+Q3UZ/1Bdxj9Ul/EP1WX8Q3UZ/1Bdxj9Ul/EPAAAAAM+lg3+5/2USEev/HssfmZHWtuFSWwYMmjEO1VUruwFAaR5f+rf8Hyqnr/n/j60PBxx8c4ASJN0K88lBY/PBf7/rdwIAAAAAAAAAAAAAA3D0sPX/UFVpfFx2E4CSPMP6fx8dAHucj/6H6nKODzxtFf9orw3W/wMAAAAAAAAAAADAjhnPH0k61boF6Hik6dRUxG8j4kAMJ4tL9YWZiPhdRHxRG/5Nlp8tu9EAAAAAAAAAAAAAAAAAAADwnFm9dfvqXL2+cKM98dOGkuc7UdwFdbe0pz0Ryc5XOhYRuyH2wSSG2kqSiPWs53dFw26sxq5oRpo3o+Q/TAAAAAAAAAAAAAAAAAAAUEFta4+7O/L+DrcIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHbek/v/bz2RPOV1yo4RAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANibfgkAAP//4DE4gw==")
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0x1}, 0x62)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r3)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000040)='./file2\x00', 0x101080e, &(0x7f00000001c0)=ANY=[@ANYBLOB="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", @ANYRES16, @ANYRESOCT], 0x1, 0x68a, &(0x7f00000006c0)="$eJzs3V9v29YZx/Ef5X+KOwTFNgRBkCYnyQo4WKZIcuPA8IBVoyibmyQKpDzYwIAia+wiiJxuSQYsvil8sX9A9wZ214vtYi9iwK73Kra7DSi2uwG7YcFDSpZsUY5rJWmT7ydoRZEPz3lIKnzASDwUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACQ49bL5Yqjpt/e3DL53HoYtCYsT1ub08104uaJ/UpO8p+KRV1MZ1389uHiC8n/ruty+u6yislLUftvXXh77Vuzhf76ExL6MnTaBp882394r9fbeZy9L0yIndGpm3+VNGlb+ta9th8Ffqu27hk/Cszqykr59kYjMg2/6UXbUddrGTf0Ct0gNEvuTVNZXV02Xmk72Gyv12tNrz/z7veq5fKK+dFCeqAllSJ3w282/fa6jUkWJzF3zac/TQO8WsuY3Qe9neWTkkyCKs8TVD0pqFquViuVarWycmf1zt1yefbYjHLCKQ/oWMTUP7T4mpneyRs4o0JS///pSE0V1damtmTG/nFVV6hArZzlmX79f/e2N7Hf4frfr/IXpR9kiy/J1v8r6bsrefU/JxcjY1cYt8TJmX+6P3NZK0/0TPt6qHvqqacdPZ5C20bm6llb+PVU8vhHnMqPWJentnxFCuSrpZqdY7I5Rqta0YrK+kAbaiiSUUO+mvIUaVuRuvLsJ8pVKE81dRUolNGSXN2UUUWrWtWyjDyVtK1Am2prXXXV9L84jnf1wO735QlboX5QJSdgYTioOqGlvPr/s0/Sz2lW/8vU/zdV+jlYyM5ik2KAr4A4u/4fZy5/tasvLiMAAAAAADBtjv3Xd8de7b8jKVbDb3rlV50WAAAAAACYIkfxgi7Lyb7tf0cO1/8AAAAAALxuHHuPnSNp0f6o3zm8E+p5/hFg5iWkCAAAAAAAzsje+X9lXortoBVX5Zzq+h8AAAAAAHwN/G5ojP3Z/hi7cf9r/YKkqLPg/PU/CwrnnIPO1necvVqypLaXxRz7BUC3cck5nw3Ua1/mJdl3rnfZyXrLBsEcjDv4+e5JY/074ZEE5meGG8hJwEl6XpnN3ulTXUtXuZaNM39/vyC7JO1lseE3vZIbNNcqqtXOF7reVveXjx78SgoH27n7oLdT+vDj3n2by0Ey62AvafSTkXQK43fGYS5P7XgL9p6LcVt8To1+l79vtxYd22+5v/0zqu0VhjuadAAO+/yNrqfH7PpiGru4PxhxP9n+YrL9lZI9ZCNbH845h1lUjm75uAORk0XRZnEjjbmxdCN96eeXtFNwit+dkaqltcqgsXFZVIezOHlfOP89ti8mZZHti+Uki78lDeXsi+XTZXHsiADAq7J7WIXsIObH6m6/PPRPal+q7pxc3d8fre5P/xjHdoUZaTb7bmJiL0UlZ/Qlx9ahedkT6+ylMWf0cimt7UXlnNHLZ6huSV9/OXwGUpb2sSz+H8fxWsX2+4cjVfWzZIXPcvuNmtWZZBfefrr3czsAfuKjnY92HlWryyvl98rlO1XN2c3IXmZ0NFN+swkAeI5n7JwY4byna2nEtfv/fjedGql43xz8pKCkD/WxerqvW7qqc7K/OBjb6uLQzxBupVetGrpqNRfeXrOrj8ZWdCv3qs7W0qHY6iC2/5yDo1eAh7HLL/w4AADwMl3vP8onpw6Pr//Fkfp/S0tpxNKlsdfdo7X86BOC82IrJyf//rT3BgAAbwYv/NxZ7P7WCUO/80FldbVS6zoyYeD+2IR+fd0zfrvrhe5Grb3umU4YdAM3aJpOqAW/7kUm2ux0grBrGkFoOkHkb9knv5vs0e+R16q1u74bdZpeLfKMG7S7tRmZuh+5prP5w6YfbXihXTnqeK7f8N1a1w/aJgo2Q9crGRN53lCgX/faXb/hJ5Nt0wn9Vi3cNj8Jmpstz9S9yA39TjdIG7R9uV3jtxtB2LLNlhSPf9AhAABvmCfP9h/e6/V2Hk+YONDJMdnE/JgG+b4ZAICvmMNyfYqVii8wIQAAAAAAAAAAAAAAAAAAAAAAcMzz3P93qom5cTcLSoM5vzh/ZK0/aVw7jqad2GkmCqddq39LxP7Dv08IPjeY09/9wzEHL20D//UN6S07R+mc2en3dc7ujZd34L6/m+7R3Jhk4dhFC4NjMTv9vw7JxKM/5yyK4zievPrC6D6cn7SBoxOzkh7Pn+EQjJwmGDcDeA19EQAA///ywD7m")
r4 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000268000/0x4000)=nil, 0x4000, 0x1000002, 0x4016012, r4, 0x0)

5.46837754s ago: executing program 1 (id=3171):
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r1 = open(&(0x7f0000002000)='./bus\x00', 0x14f942, 0x0) (async)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, &(0x7f0000000100)=[{{}, {0x0, 0x0, 0x1, 0x1}}], 0x8) (async, rerun: 64)
r3 = socket$can_raw(0x1d, 0x3, 0x1) (async, rerun: 64)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r4=>0x0})
bind$can_raw(r3, &(0x7f00000000c0)={0x1d, r4}, 0x10) (async, rerun: 32)
setsockopt$CAN_RAW_FILTER(r3, 0x65, 0x1, &(0x7f0000000140)=[{{}, {0x0, 0x0, 0x1}}], 0x8) (async, rerun: 32)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5cec3f00", @ANYRES16=r6, @ANYRESOCT=r0], 0x5c}, 0x1, 0x6c}, 0x0)
bind$can_raw(r2, &(0x7f0000000240)={0x1d, r4}, 0x10)
bind$can_raw(r2, &(0x7f0000000040), 0x10) (async)
r7 = open(&(0x7f0000000100)='./bus\x00', 0x14957e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x100000a, 0x4002011, r7, 0x0) (async, rerun: 32)
fallocate(r1, 0x0, 0x0, 0x1f) (rerun: 32)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
r8 = socket$can_bcm(0x1d, 0x2, 0x2)
setsockopt(r8, 0x1000, 0x5, &(0x7f00000001c0)="f0bf2c34e19795dd7e0b82fb7c9974c626fb8d1b936354623d", 0x19) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x3, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="850000004f0000005d0100000000000095000000000000003310a57fd85aded7ab9eb9a676840cfd2b0f37d510dc84695eeec5f14bccb34fe1c7b95dd2a62c961689fe8d5718a26513c516c12f94b5a9aca3cd5b520312e709cd65f7828cf6e597217f6fe24a35ebc99a3e37aeb84f937dcf"], &(0x7f0000000000)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x90) (async, rerun: 64)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x10) (async, rerun: 64)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x2f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000500)={&(0x7f0000000380)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c009cced20000"], 0x0, 0x26}, 0x20) (async)
r9 = syz_open_procfs(0x0, &(0x7f0000000280)='ns\x00')
getsockopt$sock_cred(r9, 0x1, 0x11, &(0x7f0000000080)={<r10=>0x0}, &(0x7f00000000c0)=0xc)
getpgrp(r10) (async, rerun: 32)
r11 = getpgid(0xffffffffffffffff) (rerun: 32)
kcmp$KCMP_EPOLL_TFD(r10, r11, 0x7, r3, &(0x7f0000000180)={r7, r2, 0x80000001}) (async)
socket$unix(0x1, 0x1, 0x0)
socket(0x10, 0x803, 0x0)

5.413818794s ago: executing program 1 (id=3173):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={0x44, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_DUPLEX={0x5}, @ETHTOOL_A_LINKMODES_LANES={0x8, 0x9, 0x1}, @ETHTOOL_A_LINKMODES_AUTONEG={0x5, 0x2, 0xd0}]}, 0x44}}, 0x0)

4.061475266s ago: executing program 2 (id=3191):
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$RNDADDTOENTCNT(0xffffffffffffffff, 0x40045201, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_script(r1, &(0x7f0000000140)={'#! ', './file0'}, 0xb)
splice(r3, 0x0, r4, 0x0, 0x8000f28, 0x0)
splice(r0, 0x0, r4, 0x0, 0x80, 0x100000000000000)
write$binfmt_misc(r4, 0x0, 0x4)
write(r2, 0x0, 0x0)

3.847862933s ago: executing program 2 (id=3194):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x8200, &(0x7f0000000080)={[{@max_dir_size_kb}, {@stripe}, {@grpid}, {@errors_remount}, {@noblock_validity}, {@block_validity}, {@minixdf}, {@noauto_da_alloc}]}, 0x83, 0x5fe, &(0x7f0000001040)="$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")
perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0xec, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x3}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffff8001}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
socket$l2tp6(0xa, 0x2, 0x73)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000540)='consume_skb\x00', r0}, 0x10)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x20040, 0x0)
r2 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000040)={0x8041}, 0x10)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
r3 = socket$tipc(0x1e, 0x0, 0x0)
bind$tipc(r3, 0x0, 0x0)
rt_sigprocmask(0x0, &(0x7f0000000480), 0x0, 0x8)
r4 = gettid()
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0x1}, 0x62)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r6)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000040)='./file2\x00', 0x101080e, &(0x7f00000001c0)=ANY=[@ANYBLOB="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", @ANYRES16=r4, @ANYRESOCT=r4], 0x1, 0x68a, &(0x7f00000006c0)="$eJzs3V9v29YZx/Ef5X+KOwTFNgRBkCYnyQo4WKZIcuPA8IBVoyibmyQKpDzYwIAia+wiiJxuSQYsvil8sX9A9wZ214vtYi9iwK73Kra7DSi2uwG7YcFDSpZsUY5rJWmT7ydoRZEPz3lIKnzASDwUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACQ49bL5Yqjpt/e3DL53HoYtCYsT1ub08104uaJ/UpO8p+KRV1MZ1389uHiC8n/ruty+u6yislLUftvXXh77Vuzhf76ExL6MnTaBp882394r9fbeZy9L0yIndGpm3+VNGlb+ta9th8Ffqu27hk/Cszqykr59kYjMg2/6UXbUddrGTf0Ct0gNEvuTVNZXV02Xmk72Gyv12tNrz/z7veq5fKK+dFCeqAllSJ3w282/fa6jUkWJzF3zac/TQO8WsuY3Qe9neWTkkyCKs8TVD0pqFquViuVarWycmf1zt1yefbYjHLCKQ/oWMTUP7T4mpneyRs4o0JS///pSE0V1damtmTG/nFVV6hArZzlmX79f/e2N7Hf4frfr/IXpR9kiy/J1v8r6bsrefU/JxcjY1cYt8TJmX+6P3NZK0/0TPt6qHvqqacdPZ5C20bm6llb+PVU8vhHnMqPWJentnxFCuSrpZqdY7I5Rqta0YrK+kAbaiiSUUO+mvIUaVuRuvLsJ8pVKE81dRUolNGSXN2UUUWrWtWyjDyVtK1Am2prXXXV9L84jnf1wO735QlboX5QJSdgYTioOqGlvPr/s0/Sz2lW/8vU/zdV+jlYyM5ik2KAr4A4u/4fZy5/tasvLiMAAAAAADBtjv3Xd8de7b8jKVbDb3rlV50WAAAAAACYIkfxgi7Lyb7tf0cO1/8AAAAAALxuHHuPnSNp0f6o3zm8E+p5/hFg5iWkCAAAAAAAzsje+X9lXortoBVX5Zzq+h8AAAAAAHwN/G5ojP3Z/hi7cf9r/YKkqLPg/PU/CwrnnIPO1necvVqypLaXxRz7BUC3cck5nw3Ua1/mJdl3rnfZyXrLBsEcjDv4+e5JY/074ZEE5meGG8hJwEl6XpnN3ulTXUtXuZaNM39/vyC7JO1lseE3vZIbNNcqqtXOF7reVveXjx78SgoH27n7oLdT+vDj3n2by0Ey62AvafSTkXQK43fGYS5P7XgL9p6LcVt8To1+l79vtxYd22+5v/0zqu0VhjuadAAO+/yNrqfH7PpiGru4PxhxP9n+YrL9lZI9ZCNbH845h1lUjm75uAORk0XRZnEjjbmxdCN96eeXtFNwit+dkaqltcqgsXFZVIezOHlfOP89ti8mZZHti+Uki78lDeXsi+XTZXHsiADAq7J7WIXsIObH6m6/PPRPal+q7pxc3d8fre5P/xjHdoUZaTb7bmJiL0UlZ/Qlx9ahedkT6+ylMWf0cimt7UXlnNHLZ6huSV9/OXwGUpb2sSz+H8fxWsX2+4cjVfWzZIXPcvuNmtWZZBfefrr3czsAfuKjnY92HlWryyvl98rlO1XN2c3IXmZ0NFN+swkAeI5n7JwY4byna2nEtfv/fjedGql43xz8pKCkD/WxerqvW7qqc7K/OBjb6uLQzxBupVetGrpqNRfeXrOrj8ZWdCv3qs7W0qHY6iC2/5yDo1eAh7HLL/w4AADwMl3vP8onpw6Pr//Fkfp/S0tpxNKlsdfdo7X86BOC82IrJyf//rT3BgAAbwYv/NxZ7P7WCUO/80FldbVS6zoyYeD+2IR+fd0zfrvrhe5Grb3umU4YdAM3aJpOqAW/7kUm2ux0grBrGkFoOkHkb9knv5vs0e+R16q1u74bdZpeLfKMG7S7tRmZuh+5prP5w6YfbXihXTnqeK7f8N1a1w/aJgo2Q9crGRN53lCgX/faXb/hJ5Nt0wn9Vi3cNj8Jmpstz9S9yA39TjdIG7R9uV3jtxtB2LLNlhSPf9AhAABvmCfP9h/e6/V2Hk+YONDJMdnE/JgG+b4ZAICvmMNyfYqVii8wIQAAAAAAAAAAAAAAAAAAAAAAcMzz3P93qom5cTcLSoM5vzh/ZK0/aVw7jqad2GkmCqddq39LxP7Dv08IPjeY09/9wzEHL20D//UN6S07R+mc2en3dc7ujZd34L6/m+7R3Jhk4dhFC4NjMTv9vw7JxKM/5yyK4zievPrC6D6cn7SBoxOzkh7Pn+EQjJwmGDcDeA19EQAA///ywD7m")
r7 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000268000/0x4000)=nil, 0x4000, 0x1000002, 0x4016012, r7, 0x0)
process_vm_writev(r4, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)

3.693816006s ago: executing program 2 (id=3196):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x2, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r1)
perf_event_open(&(0x7f0000000780)={0x2, 0x80, 0x98, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x5, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
syz_genetlink_get_family_id$nfc(0x0, 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file2\x00', 0x10000, &(0x7f00000008c0), 0x1, 0x546, &(0x7f0000000200)="$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")
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) (fail_nth: 14)

3.64689342s ago: executing program 2 (id=3197):
syz_mount_image$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000))
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1010d1, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0\x00', &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x2081c80, 0x0)
mount$bind(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x20000, 0x0)
move_mount(r0, &(0x7f0000008080)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x160)
r1 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
r2 = open(&(0x7f0000000000)='./bus\x00', 0x141b42, 0x0)
r3 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000980), 0x4}, 0x0, 0x0, 0xb}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0x1}, 0x62)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000bc0)={0x19, 0x10, &(0x7f0000000c80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0d93bbab4f78877d02a43b5f138b4929ac1d8a962e2a0d6d652357ebbe96c1f8d7da6e5d2c51f372212860383c807e3d391f41e3bdbb7cee058a98149616b7fadc5419d6bb9c45150cd567cb27580da0cec844caad04f8a71bea68bf95a0ff8fc461bb71687552c619b4b31b25c4a6c74da3939ae0a02e35c1258c7453960a720befd2110fb82ca44c333b8777efa97838a832006688d8284d6ee9ba43876a52beac39047e9847aae041b668308db283affa9a4513ad3914666396ce2c16f772358da47f73582694d7a67b8e974a46886a999e1732b4a6c519e4bddf13", @ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r5)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="8fcacb7907051175f37538e486dd6300800701082c00db5b686158bbcfe8875a060300000023000000000000000000000000ac1414aa"], 0xfdef)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x40042, 0x0)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000680)=ANY=[@ANYBLOB="bf16000000000000b7070000010000004870000000000000bc700000000000009500faff000000008aa1210b29017b83c8e96e6405f798585fb5030b3388b0409a814343f1ae341b74efa745a12f5c0685e5261482e31e0cacc902c97e6145ef48004d26342c94f56a39359ba56724e4535d80ffbd6848d53382c26211a2b975eb4a9d08501c000c00000000000097e50f118c4a3b05489d1d1245cb774879b0871dd61703eefe87ff070000000000008cca1a363b2b28add613658171122dc01e0a77d7c44b009fdac91fc827f5797532750d4d4639f11089feb3f25b4695c6dac2cabfa04e2c16fa741bbf5528a601b5934b867f39f7d776ac00a434949b4455b7c6c678de4d9740d8dff6169c664b55ce550fb4e686ae169d9f7abbeb08e02799374ae0081858bdf144d8c7fb67dcec5e43a0e8099e543116b1b7d144b5613845cca4388344d82de45f0c1b7d041db040fd77779123b32d14bc1c3d000000000000000000000016a1049b6f094e504c28d7daa2f61b2a7c14d2343b4308b36e6b141371c958406e212b3accb45f87aef8bd5e2181fd7826b9e5cb2f6a63f113491239dca17e4fb33e670daf1cd7a99015ae9e1ca32b4e64dc38b55d525bd10971b0898be9d6e6154dfc99b20622b604b87ba03524c2fed51056d672b1b966657de5c86ab09195fba55af17663fecf1b5c5a76cf07615c7ee54c361449e275371a8c4243b9060ecdeecfb1603b061a8a62159830049061800953f7d00c43c95068c62c2ca1ad7fea9de97216dbc9c8e36a5607608e77d1d7d72b78b4f1eab8e471fc6b4d54803ad0adc90eb850f42f44e4b48c9cc39412c0ce6c9f4b95936ec36efc8dfbc54ef29dab9be13266cc24df0c29c51b5628646b8155a1859358aa08f71fd2d9b2c4288a0d8870e8767173c65476e1a4f000c580f61d73f5be35ca1aa1"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000940), 0x10}, 0x90)
setsockopt$IPT_SO_SET_REPLACE(r7, 0x4000000000000, 0x40, &(0x7f0000000180)=@raw={'raw\x00', 0xc01, 0x3, 0x498, 0x300, 0x5002004a, 0x6, 0x0, 0x3, 0x400, 0x3c8, 0x3c8, 0x400, 0x3c8, 0x3, 0x0, {[{{@ip={@dev, @broadcast, 0x0, 0x0, 'hsr0\x00', 'bridge0\x00'}, 0x0, 0x2a0, 0x300, 0x0, {0x0, 0x3fa}, [@common=@unspec=@bpf1={{0x230}, @fd={0x2, 0x0, r8}}]}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@local, [], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}}}, {{@uncond, 0x0, 0xa0, 0x100, 0x0, {}, [@common=@inet=@udp={{0x30}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @link_local}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x4f8)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r9)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r9, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_subtree(r6, &(0x7f0000000440)=ANY=[@ANYBLOB="8fedcb5d07081175f37538e486dd6372ce22fdb989"], 0xfdef)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
recvmsg(r10, &(0x7f0000000780)={&(0x7f0000000380)=@ieee802154={0x24, @long}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000400)=""/65, 0x41}, {&(0x7f00000001c0)=""/23, 0x17}, {&(0x7f0000000280)=""/24, 0x18}, {&(0x7f0000000480)=""/124, 0x7c}, {&(0x7f0000000540)=""/111, 0x6f}], 0x5, &(0x7f0000000680)=""/229, 0xe5}, 0x2000)
sendfile(r2, r1, 0x0, 0x100800001)

2.91742716s ago: executing program 4 (id=3204):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0x1}, 0x62)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000040)='./file2\x00', 0x101080e, &(0x7f00000001c0)=ANY=[@ANYBLOB="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", @ANYRES16, @ANYRESOCT], 0x1, 0x68a, &(0x7f00000006c0)="$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")
r3 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000268000/0x4000)=nil, 0x4000, 0x1000002, 0x4016012, r3, 0x0)

2.699850938s ago: executing program 2 (id=3208):
socket(0x15, 0x5, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000d00850000000f00000018010000646c000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
socket$unix(0x1, 0x5, 0x0)
socket$inet(0x10, 0x3, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x13, r1, 0x0)
process_vm_writev(0x0, &(0x7f0000c22000)=[{&(0x7f000034afa4)=""/1, 0x1}], 0x1, &(0x7f0000000000)=[{0x0}], 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000180), 0xfea7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
r5 = socket$rxrpc(0x21, 0x2, 0xa)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d01620000000900509072fb60cb08000300", @ANYRES16], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r8, @ANYBLOB="ff830500000700ffffff", @ANYRES32=r5], 0x4}}, 0x0)
sendfile(r7, r6, 0x0, 0x100000002)

2.587846027s ago: executing program 3 (id=3211):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x0, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xad, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$isdn(0x22, 0x3, 0x0)
bind$isdn(r1, 0x0, 0x0)
perf_event_open(&(0x7f0000001180)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
gettid()
read(0xffffffffffffffff, &(0x7f0000000200)=""/209, 0xd1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000003dc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB="4c000000020605eafffffffffffe0d000000000000000300686173683a4970000500040003000000050005000a0000000c000780050014000800000005000500020000000500010006000000"], 0x4c}}, 0x48010)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000300)={0x0, 0x0, 0x0, 'queue1\x00'})
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
mount$bind(0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000001080)={0x0, 0x0, 0x0, {0x0, 0x1}, {0x46, 0x2}})
syz_io_uring_setup(0x24f9, &(0x7f0000000080), 0x0, &(0x7f0000000140))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = syz_io_uring_setup(0x2ddd, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000180)=<r6=>0x0)
syz_io_uring_setup(0x5e2, &(0x7f0000000080), &(0x7f0000000340)=<r7=>0x0, &(0x7f0000000380))
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000005c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x10)
syz_io_uring_submit(r7, r6, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4})
io_uring_enter(r5, 0x381b, 0x0, 0x0, 0x0, 0x0)
recvfrom(r3, 0x0, 0x0, 0x0, 0x0, 0x0)
shutdown(r4, 0x0)
r9 = msgget(0x1, 0x80)
msgsnd(r9, &(0x7f0000000280)=ANY=[@ANYBLOB="0000000000000000c843f7929fe0ccfe98e4156ef6b8ba4c978f188e246071f001f03565eb48bca1b4a0d53c78b71a32139b57782c88960e7aa5d8a16f01e794fc5ab8954aea9076eb66495382b6a77af71ce480d1db541446493c45c2c1fee7dc6688c6f9"], 0x4b, 0x0)
socket(0x0, 0x0, 0x0)

2.42556296s ago: executing program 2 (id=3212):
close(0xffffffffffffffff)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, 0x0)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0042, &(0x7f0000000040)={[{}, {@resgid}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7e}}, {@noload}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40000000}}, {@nombcache}]}, 0x1, 0x480, &(0x7f00000004c0)="$eJzs3MtvVNUfAPDvvX3Q8viVH+IDBEXRSHy0tDxk4UajiQuNJrrAuKptIchADa2JEKLoAqMuDIl74tLEv8CVboy6MnGre0NiDBvQ1TV37r3QDjO1U6ad4nw+yTDn3HuHc75z5sw995w7DaBn7cn/SSI2R8SvETFSZBcfsKd4un71/NRfV89PJZFlr/2Z1I+7dvX8VPlf3HjdpmJDlpX5DU3KvfhmxGStNnOmzI/Nn3pnbO7suadOnJo8PnN85vTEkSMHD+wePDxxqCNx5nFd2/n+7K4dL75x6eWpo5fe+vHrvL6by/1VHJ20p3h3m3q004V12ZYF6aS/ixWhLXm75c01UO//I9EXwzf2jcQLH3W1csCqyrIsa3Z+Ll3IgP+wJLpdA6A7qhN9fv1bPdZo6LEu/PFscQGUx329fBR7+iMtjxlouL7tpKGIrK9IXo5VmocAAFjo23z882Sz8V8a9yw47n/lGsrWiPh/RGyLiLsiYntE3B1RP/beiLivzfIbV0huHf+kV1YU2DLl479nyrWtxeO/avQXW/vK3JZ6/APJsRO1mf3le7IvBjbk+fFFL1nsu+d/+bxx22flNHse/9ELf1+uHnn5+fPNI9Mr/Q0TdNOT85MdCT6P/8OInf3N4k+iWsZJImJHROxcYRknHv9qV6t9/x7/EjqwzpR9GfFY0f4XoiH+StJyfXL86cMTh8aGojazf6z6VNzqp58vvtqq/NuKvwPy9t/Y9PNfxJ9fIyZDEXNnz52sr9fOtV/Gxd8+nkpa7Nu+ws//YPJ6PT1Ybntvcn7+zHjEYPJSnh1etH3i5murfHV8Hv++vc37/7b65VnxTtwfEfmHeHdEPBARD5Zt91BEPBwRe5eI/4fnHnm71b7W7b/ErHwH5fFPL9H++VdenrrZ/u0n+k5+/02r8rNltf/BempfFIuTy/n+W24Fb/PtAwAAgDtCWr8HPklHb6TTdHS0uId/e2xMa7Nz808cm3339HRxr/zWGEirma6RBfOh4+XccJWfaMgfKOeNv+gbrudHp2Zr090OHnrcphb9P/d7X7drB6w6v9eC3rVU//90DesBrD3nf+hd7ff/Fnc6Ancc53/oUYPNN3+w1vUAuqL98//QqtQDWHvG/9C79H/oXfo/9KSWv41Pb+sn/3dqon99VKNpYnh9VKNKRLouqtG5xCufFF1ivdSnSvQv+49ZrDCxoemubn8zAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMY/AQAA//8ux+PM")

1.973361308s ago: executing program 4 (id=3214):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="034886dd0100000000fc000000006000000001002f00fe88a43de1a400000000000000007d01ff020000000000000000000000000001000088be"], 0xfdef)

1.804189721s ago: executing program 0 (id=3216):
ioctl$FS_IOC_GET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x400c6615, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}, 0x0)
sendmsg$kcm(r0, &(0x7f00000001c0)={0x0, 0x700, &(0x7f0000000500)=[{&(0x7f00000000c0)="2e00002010008188040f46ecdb4cb9cca7480ef410000000e3bd6efb440009000e000a000d000000ba8000001201", 0x2e}], 0x1}, 0x0)

1.803741331s ago: executing program 4 (id=3217):
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x812}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000002, &(0x7f0000000280)={[{@user_xattr}]}, 0x9, 0x537, &(0x7f0000000fc0)="$eJzs3c9vI1cdAPCvJ4mTbtNmF3qACtgFCgtarb3xtlHVC90LCFWVEIgD4rANiTcKseMQO1UTIpH+DXDgCn8CByQOSD1x4MYRiQNCKgekBSLQBgkkoxlPUm/idL2Nf0D8+UijmTfPM9/3ksy8mefJvAAm1o2IOIiIYkS8FREL+fpCPsXrnSn93KPD/ZWjw/2VQrTb3/pbIctP10XXNqln833ORcQ3vxbxvcLZuM3dvY3lWq26nafLrfpWubm7d3u9vrxWXatuVipLi0t3Xr37SmVgdb1e/8XDr66/8e1f/+rT7//u4Ms/TIs1n+d112OQOlWfOYmTmo6IN4YRbAym8nlxzOXgo0ki4mMR8bns+F+IqeyvEwC4zNrthWgvdKcBgMsuyfrACkkp7wuYjyQplTp9eC/ElaTWaLZuPWjsbK52+squxkzyYL1WvXNt9g8/yK4YZgppejHLy/KzdOVU+m5EXIuIn8w+k6VLK43a6vguewBgoj17qv3/52yn/e9Dj2/1AID/G3PjLgAAMHLafwCYPNp/AJg8fbT/+Zf9B0MvCwAwGk9x/58MsxwAwOjo/weAyaP9B4CJ8o0330yn9lH+/uvVt3d3Nhpv316tNjdK9Z2V0kpje6u01misZe/sqT9pf7VGY2vx5dh5p9yqNlvl5u7e/XpjZ7N1P3uv9/3qzEhqBQB8mGvX3/t9ISIOXnsmm6JrLAdtNVxunueByeUlfjC5jPYFk6v/e/zfDrUcwPj0vA+Y67n4uJ8+RRDPGcH/lJuf7L//3xjPcLno/4fJNfWRtpodeDmA0dP/D5Or3S6cHvO/eJIFAFxKF3jGv/2jQV2EAGP1pOeAB/L9PwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFwy8xHx/SgkpXws8PlIklIp4rmIuBozhQfrteqdiHg+rkfEzGyaXhx3oQGAC0r+UsjH/7q58NL86dxi4V/ZYP/FtPXP120vpuv/frJ+9nj4sMoH211gXEEAYMDeWW61tiv5vOtG/tHh/srxNMryPLwX/8mHIl45OtzPpk7OdExn87nsWuLKPwp5ujMW6YsRMTWA+AfvRsQnetW/kPWNXM1HPu2OH3ns50YaP3ksfpLldebpxdfHB1AWmDTv3YuI13sdf0ncyOa9j/+57Ax1cQ/vdXZ2fO47OtwvHsc/Pv9N9YifHvM3+o3x8m++fmZle6GT927Ei9OPxT85/xzHL5wT/6U+4//xU5/58VfOyWv/LOJm9I7fHavcqm+Vm7t7t9fry2vVtepmpbK0uHTn1buvVMpZH3X5uKf6rL++duv588qW1v/KOfHneta/eLLtF/qs/8///dZ3P/sh8b/0+V7xk3ihZ/yOtE38Yp/xl6/88tzhu9P4q+fU/0m//1t9xn//z3urfX4UABiB5u7exnKtVt2+0EJ6FzqI/ZxZSIs40B32WCh2Ff5PMdxYT7UwM6yf6tAXpk+uFQe75++kexxxdZKB1+JCC49GFWu85yVg+D446MddEgAAAAAAAAAAAAAA4Dyj+NelcdcRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAy+u/AQAA//9xkcaD")
lstat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020117d2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000710000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
socket$inet(0x2, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
chown(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
quotactl$Q_SETQUOTA(0xffffffff80000900, &(0x7f0000000c80)=@loop={'/dev/loop', 0x0}, r0, 0x0)

1.800679242s ago: executing program 0 (id=3218):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_PROTOCOL(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0x1, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
r2 = socket(0x2, 0x80805, 0x0)
r3 = semget$private(0x0, 0x0, 0x0)
semop(0x0, &(0x7f00000002c0)=[{0x0, 0xff}, {0x0, 0x1f}, {}], 0x3)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
write$binfmt_aout(r4, &(0x7f0000000100)=ANY=[], 0xc1)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000005, 0x13, r4, 0x0)
semop(r3, &(0x7f0000000200), 0x53)
r5 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r5, 0x10e, 0xc, &(0x7f0000000180)={0x7fff}, 0x10)
write(r5, &(0x7f0000000000)="240000001a005f0400f9f4070009040180200000000100000000000008001e0040000000", 0x24)
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f0000000080)={<r6=>0x0, 0x7ff}, &(0x7f00000000c0)=0x8)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r2, 0x84, 0xf, &(0x7f0000000200)={r6, @in6={{0xa, 0x4e20, 0xc6ac, @mcast2, 0x100}}, 0x3, 0x9, 0x8, 0xc, 0x7}, &(0x7f0000000100)=0x98)
syz_emit_ethernet(0x62, &(0x7f00000000c0)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "080108", 0x2c, 0x2f, 0x0, @remote, @private1, {[], {{0x0, 0x8906, 0x41424344, 0x41424344, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, {[@mss={0x2, 0x4}, @exp_fastopen={0xfe, 0x11, 0xf989, "dc57b76ee7e8dbb20003bc55c8"}]}}}}}}}}, 0x0)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/address_bits', 0x0, 0x0)
getdents64(r7, 0x0, 0x0)
creat(&(0x7f0000000380)='./bus\x00', 0x0)
r8 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x7800007, 0x12, r8, 0x0)
r9 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
ftruncate(r9, 0x81fd)
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r10 = open(&(0x7f0000000080)='./bus\x00', 0x145842, 0x0)
fallocate(r10, 0x3, 0x0, 0x8000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)

1.741550627s ago: executing program 0 (id=3219):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000300)='./file1\x00', 0x204050, &(0x7f0000000540), 0x1, 0x254, &(0x7f00000006c0)="$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")
creat(0x0, 0x0)
mknod$loop(0x0, 0x0, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0)
r0 = socket(0x10, 0x0, 0x0)
sendto(r0, &(0x7f0000000740), 0x0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000040), 0xffffffffffffffff)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="18010000007b00000000000000000000850000007b00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
epoll_create1(0x0)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000380))
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000040))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000004680)=@newlink={0x68, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x38, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x28, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_EGRESS_QOS={0x1c, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x7}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x27}}]}]}}}, @IFLA_LINK={0x8}, @IFLA_MASTER={0x8, 0x3}]}, 0x68}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'geneve0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000a00)=ANY=[@ANYBLOB="3c00000010000100"/20, @ANYRES32=r3, @ANYBLOB="00000000000000001c0012800b00010067656e65766500000c0002050000"], 0x3c}, 0x1, 0x2}, 0x0) (fail_nth: 7)

1.69962673s ago: executing program 3 (id=3220):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r0, &(0x7f0000000940)=[{{&(0x7f00000004c0)={0xa, 0x4e1d, 0x29000000, @mcast2}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x4e28, 0x0, @mcast1, 0x54}, 0x1c, 0x0, 0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="200000000000000029000000370000002f00000000000000c204000000070000200000000000000029000000360000007300000000000000c2040000000900001400000000000000290000000800000000000000000000001400000000000000290000003400000080000000000000001400000000000000290000000b00000000000401000000002000000000000000290000003700000008000000000000000001000401000000180000000000000029000000040000002b0000000000000014"], 0xd8}}], 0x2, 0x0)

1.619954086s ago: executing program 3 (id=3221):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00'}) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYRES64=r0, @ANYRES8=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kmem_cache_free\x00', r3}, 0x10)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r4)
r5 = socket$nl_route(0x10, 0x3, 0x0) (async)
r6 = socket(0x11, 0x80a, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000300)={'bond0\x00', <r7=>0x0})
openat$pidfd(0xffffffffffffff9c, &(0x7f0000001040), 0x0, 0x0) (async)
r8 = openat$urandom(0xffffffffffffff9c, &(0x7f0000001080), 0x0, 0x0)
dup3(r3, r2, 0x80000) (async)
r9 = socket(0x40000000002, 0x3, 0x9)
ioctl$F2FS_IOC_MOVE_RANGE(r9, 0xc020f509, &(0x7f00000000c0)={r9, 0x5, 0x48e8, 0x1ff}) (async)
r10 = socket$inet_udp(0x2, 0x2, 0x0) (async)
r11 = socket$pptp(0x18, 0x1, 0x2)
r12 = fcntl$dupfd(r11, 0x0, r10)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bind$inet6(r12, 0x0, 0x0) (async)
r13 = socket(0x8, 0xa, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r13, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0xc0) (async)
request_key(&(0x7f0000000040)='dns_resolver\x00', &(0x7f0000001ffb)={'syz', 0x1}, &(0x7f0000001fee)='R\trust\xe3c*swO\x00\x00\xee\x02\x00\x00', 0x0)
r14 = openat(r8, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fsetxattr(r14, &(0x7f00000002c0)=@known='trusted.overlay.opaque\x00', 0x0, 0x0, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="3c0000001000010073c0a7fac09a91490000007a5672fe849f85000006837ce7de", @ANYRES32=r7, @ANYBLOB="00000000000000001c00128009000100626f6e64000000000c00028008001a00e0000002"], 0x3c}}, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0) (async)
r15 = inotify_init1(0x0)
fcntl$setown(r15, 0x8, 0xffffffffffffffff)

1.619465306s ago: executing program 3 (id=3222):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)
write$cgroup_int(r0, &(0x7f0000000200), 0x43451)
r1 = socket(0x28, 0x801, 0x0)
r2 = syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000000, &(0x7f0000000240), 0x21, 0x4a6, &(0x7f0000000a40)="$eJzs3cFPG9kZAPBvBgiEkEDaHNqqbdI0bVpFscFJUJRTemlVRZGqRj31kFBwEMLGCJs00BzI/1CpkXpq/4QeKvVQKae97233tpfsYaXsbrSrsNIevJqxIYRgYDcES/j3k55m3jzj7z2sec98gF8APetcRKxFxLGIuBcRo+3rSbvEzVbJHvfyxaPp9RePppNoNu98luTt2bXY8jWZE+3nHIqIP/4u4i/Jm3HrK6vzU5VKealdLzaqi8X6yurluerUbHm2vFAqTU5Mjl+/cq10YGM9W/3P89/O3frT///3k2fvr/36b1m3RtptW8dxkFpDH9iMk+mPiFvvIlgX9LXHc6zbHeE7SSPiexFxPr//R6MvfzUBgKOs2RyN5ujWOgBw1KV5DixJC+1cwEikaaHQyuGdieG0Uqs3Lt2vLS/MtHJlYzGQ3p+rlMfbucKxGEiy+kR+/qpe2la/EhGnI+Lvg8fzemG6Vpnp5hsfAOhhJ7at/18OttZ/AOCIG+p2BwCAQ2f9B4DeY/0HgN5j/QeA3mP9B4DeY/0HgN5j/QeAnvKH27ez0lxvf/71zIOV5fnag8sz5fp8obo8XZiuLS0WZmu12fwze6p7PV+lVlucuBrLD4uNcr1RrK+s3q3Wlhcad/PP9b5bHjiUUQEAuzl99umHSUSs3Tiel9iyl4O1Go62tNsdALqmr9sdALrGbl/Qu/yMD+ywRe9rOv6J0JOD7wtwOC7+UP4fepX8P/Qu+X/oXfL/0LuazcSe/wDQY+T4Ab//BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgG9vJC9JWmjvBT4SaVooRJyMiLEYSO7PVcrjEXEqIj4YHBjM6hPd7jQA8JbST5L2/l8XRy+MbG89lnw1mB8j4q//vPOPh1ONxtJEdv3zzeuNJ+3rpW70HwDYy8Y6vbGOb3j54tH0RjnM/jz/TWtz0Szueru0WvqjPz8OxUBEDH+RtOst2fuVvgOIv/Y4In6w0/iTPDcy1t75dHv8LPbJQ42fvhY/zdtax+x78f0D6Av0mqfZ/HNzp/svjXP5cef7fyifod7exvy3/sb8l27Of30d5r9z+41x9b3fd2x7HPGj/p3iJ5vxkw7xL+wz/kc//un5Tm3Nf0VcjJ3jb41VbFQXi/WV1ctz1anZ8mx5oVSanJgcv37lWqmY56iLG5nqN31649Kp3cY/3CH+0B7j/8U+x//vr+/9+We7xP/Vz3d+/c/sEj9bE3+5z/hTw//tuH13Fn+mw/j3ev0v7TP+s49XZ/b5UADgENRXVuenKpXykhMnTpxsnnR7ZgLetVc3fbd7AgAAAAAAAAAAAAAAdHIY/07U7TECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwdH0TAAD//yyP2UE=")
r3 = open(&(0x7f0000000180)='./bus\x00', 0x16d27e, 0x0)
r4 = open(&(0x7f0000000000)='./bus\x00', 0x16d43e, 0x0)
write(r3, &(0x7f00000000c0)="bd", 0x1)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r4, 0x0)
fallocate(r3, 0x0, 0x0, 0x1000f4)
sendfile(r3, r3, 0x0, 0x8800000)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000280)={<r6=>0x0, @in={{0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x2, 0x2, 0x1000, 0x2, 0x5f, 0x8b0c, 0x80}, &(0x7f0000000140)=0x9c)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000340)={r6, 0x74, &(0x7f00000001c0)=[@in6={0xa, 0x4e22, 0xfffffb59, @dev={0xfe, 0x80, '\x00', 0x2e}, 0x10001}, @in={0x2, 0x4e24, @empty}, @in={0x2, 0x4e24, @rand_addr=0x64010100}, @in6={0xa, 0x4e21, 0x1f, @private2, 0x8001}, @in6={0xa, 0x4e20, 0xffffffff, @private2, 0x6}]}, &(0x7f0000000380)=0x10)
sendmsg$AUDIT_GET(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x10, 0x3e8, 0x400, 0x70bd26, 0x25dfdbfc, "", ["", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x4000001}, 0x20000000)
r7 = socket$pppl2tp(0x18, 0x1, 0x1)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_emit_ethernet(0x5a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa008100000086dd602555f300202100fc020000000000000000000000000000ff0200000000000000000000000000010000000006000000020004000000000000000000040190780000a851007c14f0"], 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
creat(0x0, 0x0)
syz_io_uring_setup(0x7663, &(0x7f00000003c0)={0x0, 0x9289, 0x400, 0x2, 0xfa, 0x0, r2}, &(0x7f0000000680)=<r10=>0x0, &(0x7f0000000440))
syz_io_uring_setup(0x24fa, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r11=>0x0, &(0x7f0000000140)=<r12=>0x0)
syz_io_uring_submit(r11, r12, &(0x7f0000000040)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[0xffffffffffffffff], 0x1})
r13 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r10, r12, &(0x7f0000000640)=@IORING_OP_WRITE={0x17, 0x30, 0x4004, @fd_index=0xa, 0x1, &(0x7f0000000540)="990078895a79ebc3cf1c7ac421c7ce999f724a699319e051936acaa1130bcf4cbece4572e8f85a838c084d8a74518dd5321aecf78f8eb969bb4d70d25976de890e7f7aa30430bf398022f4bab89aaf69f074c09f62145e211fb896df1be12914e5c6e12b84df84e17892beab23303b5c2b089dd076825b61cf269cfad7af310e25fc8d99cbc708d98071ba8de4cfc1d9a95b4d942466cc6060572a090cd63e0bfbf3c99cc44e50207266318045e7a907d94316c4556440f36553584b9e533ab33446464d2dfacaeb4403c9e945e876702c8c532c0330436f4875bc6ce264a53284", 0xe1, 0x2, 0x0, {0x0, r13}})
r14 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_MEDIA_SET(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYRES16=r14, @ANYBLOB="01000000000000005c"], 0x70}}, 0x0)
connect$inet6(r8, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x4}, 0x1c)
connect$pppl2tp(r7, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r8, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
writev(r7, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x180204}], 0x1)
getsockopt$bt_BT_SECURITY(r1, 0x28, 0x6, 0x0, 0x20000000)

1.57637991s ago: executing program 4 (id=3223):
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x12f243)
sendfile(r0, r0, 0x0, 0x24002de8)

1.300262963s ago: executing program 0 (id=3224):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0x1}, 0x62)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000040)='./file2\x00', 0x101080e, &(0x7f00000001c0)=ANY=[@ANYBLOB="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", @ANYRES16, @ANYRESOCT], 0x1, 0x68a, &(0x7f00000006c0)="$eJzs3V9v29YZx/Ef5X+KOwTFNgRBkCYnyQo4WKZIcuPA8IBVoyibmyQKpDzYwIAia+wiiJxuSQYsvil8sX9A9wZ214vtYi9iwK73Kra7DSi2uwG7YcFDSpZsUY5rJWmT7ydoRZEPz3lIKnzASDwUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACQ49bL5Yqjpt/e3DL53HoYtCYsT1ub08104uaJ/UpO8p+KRV1MZ1389uHiC8n/ruty+u6yislLUftvXXh77Vuzhf76ExL6MnTaBp882394r9fbeZy9L0yIndGpm3+VNGlb+ta9th8Ffqu27hk/Cszqykr59kYjMg2/6UXbUddrGTf0Ct0gNEvuTVNZXV02Xmk72Gyv12tNrz/z7veq5fKK+dFCeqAllSJ3w282/fa6jUkWJzF3zac/TQO8WsuY3Qe9neWTkkyCKs8TVD0pqFquViuVarWycmf1zt1yefbYjHLCKQ/oWMTUP7T4mpneyRs4o0JS///pSE0V1damtmTG/nFVV6hArZzlmX79f/e2N7Hf4frfr/IXpR9kiy/J1v8r6bsrefU/JxcjY1cYt8TJmX+6P3NZK0/0TPt6qHvqqacdPZ5C20bm6llb+PVU8vhHnMqPWJentnxFCuSrpZqdY7I5Rqta0YrK+kAbaiiSUUO+mvIUaVuRuvLsJ8pVKE81dRUolNGSXN2UUUWrWtWyjDyVtK1Am2prXXXV9L84jnf1wO735QlboX5QJSdgYTioOqGlvPr/s0/Sz2lW/8vU/zdV+jlYyM5ik2KAr4A4u/4fZy5/tasvLiMAAAAAADBtjv3Xd8de7b8jKVbDb3rlV50WAAAAAACYIkfxgi7Lyb7tf0cO1/8AAAAAALxuHHuPnSNp0f6o3zm8E+p5/hFg5iWkCAAAAAAAzsje+X9lXortoBVX5Zzq+h8AAAAAAHwN/G5ojP3Z/hi7cf9r/YKkqLPg/PU/CwrnnIPO1necvVqypLaXxRz7BUC3cck5nw3Ua1/mJdl3rnfZyXrLBsEcjDv4+e5JY/074ZEE5meGG8hJwEl6XpnN3ulTXUtXuZaNM39/vyC7JO1lseE3vZIbNNcqqtXOF7reVveXjx78SgoH27n7oLdT+vDj3n2by0Ey62AvafSTkXQK43fGYS5P7XgL9p6LcVt8To1+l79vtxYd22+5v/0zqu0VhjuadAAO+/yNrqfH7PpiGru4PxhxP9n+YrL9lZI9ZCNbH845h1lUjm75uAORk0XRZnEjjbmxdCN96eeXtFNwit+dkaqltcqgsXFZVIezOHlfOP89ti8mZZHti+Uki78lDeXsi+XTZXHsiADAq7J7WIXsIObH6m6/PPRPal+q7pxc3d8fre5P/xjHdoUZaTb7bmJiL0UlZ/Qlx9ahedkT6+ylMWf0cimt7UXlnNHLZ6huSV9/OXwGUpb2sSz+H8fxWsX2+4cjVfWzZIXPcvuNmtWZZBfefrr3czsAfuKjnY92HlWryyvl98rlO1XN2c3IXmZ0NFN+swkAeI5n7JwY4byna2nEtfv/fjedGql43xz8pKCkD/WxerqvW7qqc7K/OBjb6uLQzxBupVetGrpqNRfeXrOrj8ZWdCv3qs7W0qHY6iC2/5yDo1eAh7HLL/w4AADwMl3vP8onpw6Pr//Fkfp/S0tpxNKlsdfdo7X86BOC82IrJyf//rT3BgAAbwYv/NxZ7P7WCUO/80FldbVS6zoyYeD+2IR+fd0zfrvrhe5Grb3umU4YdAM3aJpOqAW/7kUm2ux0grBrGkFoOkHkb9knv5vs0e+R16q1u74bdZpeLfKMG7S7tRmZuh+5prP5w6YfbXihXTnqeK7f8N1a1w/aJgo2Q9crGRN53lCgX/faXb/hJ5Nt0wn9Vi3cNj8Jmpstz9S9yA39TjdIG7R9uV3jtxtB2LLNlhSPf9AhAABvmCfP9h/e6/V2Hk+YONDJMdnE/JgG+b4ZAICvmMNyfYqVii8wIQAAAAAAAAAAAAAAAAAAAAAAcMzz3P93qom5cTcLSoM5vzh/ZK0/aVw7jqad2GkmCqddq39LxP7Dv08IPjeY09/9wzEHL20D//UN6S07R+mc2en3dc7ujZd34L6/m+7R3Jhk4dhFC4NjMTv9vw7JxKM/5yyK4zievPrC6D6cn7SBoxOzkh7Pn+EQjJwmGDcDeA19EQAA///ywD7m")
r3 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000268000/0x4000)=nil, 0x4000, 0x1000002, 0x4016012, r3, 0x0)

1.141958986s ago: executing program 4 (id=3225):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x8200, &(0x7f0000000080)={[{@max_dir_size_kb}, {@stripe}, {@grpid}, {@errors_remount}, {@noblock_validity}, {@block_validity}, {@minixdf}, {@noauto_da_alloc}]}, 0x83, 0x5fe, &(0x7f0000001040)="$eJzs3c9rHNcdAPDvzEqqZKuVXYqpTUsFPdhQrB+uqduebF/qg6GG+lBCDhaW5AivbGHJEDuGyJBDAgmEkGsIvuQfyD2YXHMLgSS3nANOCA45JMEbZnbHXla78kbWaiTP5wO7eu/NaN/76ulp3uzo7QRQWZPZUxpxOCIuJRETbdvGo7lxsrXfw+/uXM4eSTQa//s2iaRVVuz/qPV1f/aURIxGxKdnI35f21jv6q3bV+fqjaZXI6bXllemV2/dPr60PHdl4crCtdkT/zx5auZfsydntyXOIq5z5//7p7dee+kfi5/VjydxOi4OvzIfHXFsl8mYjEetENvLhyLiVJbo8nPZa4oQkpLbwdbUWr+PwxFxKCailueaJmLpzVIbBwxUoxbRACoqMf6hoop5QHFuP4jz4N3swZnmCdDG+Iea743EaH5utO9h0nZm1DzfPbAN9Wd1/HznyHvZI3q8DzG0DfX0sn43Iv7YLf4kb9uB/F2cLP400rbvy9IzETHS+lmkW6x/siO/079/vyb+9n7I4j3d+pqVn91i/WXHD0A13T/TOpCvZ7knx79sZljMf6LL/Ge8y7FrK8o+/vWe/xXH+9H8PfK0Yx6WzXkudH/J4c6Cr944906v+tvnf9kjq7+YC+6EB3cjjnTE/3o+mUse93/Spf+zXS71Wcd/Pv/mXK9tZcffuBdxtOv5z5MrWllqem15pSjruD45vbhUX5hpPnet46NPXvygV/1lx5/1f/SIf7P+z8pW+qzjwwv3lnttG39q/OnXI8nFPDXSKnl5bm3txmzESHK+tUtb+YnN21LsU7xGFv+xv3Yf/5vEn3f0ep/xr/z/6sNe2/ru/w1/VXKPGn22oZcs/vkt9v/bfdbxwws3/9xRNFYkNot/7BljAwAAAAAAgKpJ82uwSTr1OJ2mU1PNNbx/iH1p/frq2t8Wr9+8Nh9xLP9/yOG0uNI90cwnWX629f+wRf5ER/7vEXEwIt6tjeX5qcvX6/NlBw8AAAAAAAAAAAAAAAAAAAC7xP7W+v/iPtXf15rr//uydmjArQMGbpA3mAN2N+Mfqisf/1u9gyuwpzn+Q3UZ/1Bdxj9Ul/EP1WX8Q3UZ/1Bdxj9Ul/EPAAAAAM+lg3+5/2USEev/HssfmZHWtuFSWwYMmjEO1VUruwFAaR5f+rf8Hyqnr/n/j60PBxx8c4ASJN0K88lBY/PBf7/rdwIAAAAAAAAAAAAAA3D0sPX/UFVpfFx2E4CSPMP6fx8dAHucj/6H6nKODzxtFf9orw3W/wMAAAAAAAAAAADAjhnPH0k61boF6Hik6dRUxG8j4kAMJ4tL9YWZiPhdRHxRG/5Nlp8tu9EAAAAAAAAAAAAAAAAAAADwnFm9dfvqXL2+cKM98dOGkuc7UdwFdbe0pz0Ryc5XOhYRuyH2wSSG2kqSiPWs53dFw26sxq5oRpo3o+Q/TAAAAAAAAAAAAAAAAAAAUEFta4+7O/L+DrcIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHbek/v/bz2RPOV1yo4RAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANibfgkAAP//4DE4gw==")
perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0xec, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x3}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffff8001}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
socket$l2tp6(0xa, 0x2, 0x73)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000540)='consume_skb\x00', r0}, 0x10)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x20040, 0x0)
r2 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000040)={0x8041}, 0x10)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
r3 = socket$tipc(0x1e, 0x0, 0x0)
bind$tipc(r3, 0x0, 0x0)
r4 = gettid()
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0x1}, 0x62)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r6)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000040)='./file2\x00', 0x101080e, &(0x7f00000001c0)=ANY=[@ANYBLOB="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", @ANYRES16=r4, @ANYRESOCT=r4], 0x1, 0x68a, &(0x7f00000006c0)="$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")
r7 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000268000/0x4000)=nil, 0x4000, 0x1000002, 0x4016012, r7, 0x0)
process_vm_writev(r4, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)

1.081800851s ago: executing program 3 (id=3226):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480))
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x0, 0x0, 0x0, 0x1, 0x0, 0xffffffffffffffff, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180), &(0x7f00000001c0), 0x5, r0}, 0x38)
syz_emit_ethernet(0xfdef, &(0x7f0000000180)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000080008004500fde10000000000119078000000000000000000004e22001890780400"/58], 0x0)
r1 = memfd_create(&(0x7f0000000480)='\x02\a\xc5(\xec[r\xe1:', 0x0)
pwritev(r1, &(0x7f0000000540)=[{&(0x7f0000000580)='?', 0x1}], 0x300, 0x0, 0x0)
unshare(0x4030000)
r2 = socket$inet(0x2, 0x800, 0x7db0)
r3 = fcntl$dupfd(0xffffffffffffffff, 0x406, r2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="180000d35997b74f5b850000000000000000000200000095"], &(0x7f0000000280)='GPL\x00', 0x1, 0x4d, &(0x7f00000004c0)=""/77, 0x0, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000002c0)={0x3, 0x1}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000240)=[r0, r0, r0, r0, r0, r0, r0, r0, 0xffffffffffffffff, r3], &(0x7f00000005c0)=[{0x2, 0x5, 0xd, 0xa}], 0x10, 0x20}, 0x90)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r4, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_map={0x1000000000004}})
ioctl$sock_netdev_private(r4, 0x89f4, &(0x7f0000000000))
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={0x0, 0x64}}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2}, 0x80, 0x0}, 0x0)
r5 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r5, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r5, &(0x7f0000000040)={&(0x7f0000000100)=@hci={0x1f, 0x0, 0x4}, 0xd0, &(0x7f0000000080), 0x1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, r3, 0x1, 0x0, 0x800001}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r6, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000440)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$eJzs3c9vVFsdAPDvnXZoKQMFZaFGBRFFQ5j+ABqCC2GjMYTESFy5gNoOTdMZpum0SCuLsnRvIokr/RPcuTBh5cKdO925wYUJKnkv9CVvMS/3zqUd2g7te7Qd6Hw+ye2955xhvufMcM6Ze2B6AuhZZyNiNSKORMS9iBjO85P8iButI33cq5ePp9ZePp5Kotm8878kK0/zou3PpI7lzzkYET/7ccQvk61xG8src5PVamUhT48s1uZHGssrl2YLec74xNjE6LXLV8f3rK1nan968aPZWz//y5+/8fzvq9//dVqt0m+OZ2Xt7dhLraYXo9SW1x8Rt/YjWJf0539/+PCkve1LEXEu6//D0Ze9mwDAYdZsDkdzuD0NABx26f1/KZJCOV8LKEWhUC631vBOx1ChWm8sXhyuLz2YjmwN62QUC/dnq5XRfK3wZBSTND2WXW+kxzelL0fEqYj47cDRLF2eqlenu/nBBwB62LFN8//HA635HwA45Aa7XQEA4MCZ/wGg95j/AaD3fI7537cDAeCQcP8PAL3H/A8AvWfH+f/JwdQDADgQP719Oz2aa/nvv55+uLz0g9LDS9OVxly5tjRVnqovzJdn6vWZaqU81Wzu9HzVen1+7Mp6srG8crdWX3qweHe2NjlTuVsp7nN7AICdnTrz7J9JRKxeP5od0baXg7kaDrdCtysAdE1ftysAdI3v80Dv2sU9vmUAOOS22aL3DR3/i9BTm7/Ch+rCV63/Q6+y/g+964ut//9wz+sBHDzr/9C7ms3Env8A0GOs8QPv9O//AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0KNK2ZEUytle4Kvpz0K5HHE8Ik5GMbk/W62MRsSJiPjHQHEgTY91u9IAwDsq/CfJ9/+6MHy+tLn0SPLJQHaOiF/9/s7vHk0uLi6Mpfn/X89ffJrnjx/pRgMAgHY3tma15un83HYj/+rl46nXx0FW8cXN1uaiady1/GiV9Ed/dh6MYkQMfZTk6Zb080rfHsRffRIRX9lo/6O2CKVsDaS18+nm+Gns4/sQf+P13xy/8Eb8QlaWnovZa/HlPagL9JpnN1vjZN730i6W979CnM3O2/f/wWyEenevx7+1LeNfYX3869sSP8n6/Nn19Ntr8uLKX3+yJbM53Cp7EvG1/u3iJ+vxkw7j7/ldtvFfX//muU5lzT9EXIjt47fUsmF2ZLE2P9JYXrk0W5ucqcxUHoyPT4xNjF67fHV8JFujbv3823Yx/nv94olO8dP2D3WIP7hD+7+zy/b/8dN7v/jWW+J/79vbv/+n3xI/nRO/u8v4k0M3Om7fncaf7tD+nd7/i7uM//zfK9O7fCgAcAAayytzk9VqZWGHi/Sz5k6PcfFhXsRqxHtQDRfv1UW3RyZgv210+m7XBAAAAAAAAAAAAAAA6KSxvDI3EPv7daJutxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDD67MAAAD//w/PzvM=")
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, 0x0, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$gtp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$GTP_CMD_NEWPDP(r8, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000a40)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010000000000000000000000000008000100656a1ce7245db0d0257c4a45b76e616112685bfc8fb2f296b5bbe149f191ceedd3f036545ec2a716994a0898960fd3c543d33bbdc822536358db6dd26642ef9514113858ea9779edf411abc879f2abf4f9", @ANYRES32=0x0, @ANYBLOB="0c000300000000000000000008000200000000000600060000000000"], 0x38}}, 0x0)
socket$packet(0x11, 0x0, 0x300)

824.725592ms ago: executing program 3 (id=3227):
openat$pidfd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x0, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000108500000075000000a40000002300000095"], 0x0}, 0x90)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000040)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x11)
socket$packet(0x11, 0x0, 0x300)
pipe(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
close(r3)
socket$netlink(0x10, 0x3, 0x0)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000000040)={0x0, 0x0, 0x0, {0x0, 0xa}, {0x1, 0xfffd}})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4808000010001fff3a4ee9bfd5c3a3696c40af0b", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800a00010076786c616e"], 0x3}}, 0x0)
write$binfmt_misc(r2, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r1, 0x0, r3, 0x0, 0x4ffe2, 0x0) (fail_nth: 6)
perf_event_open(0x0, 0x0, 0xffffffffffffffdd, 0xffffffffffffffff, 0x0)

121.09413ms ago: executing program 0 (id=3228):
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000080))
getpid()
socket$netlink(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f00000008c0)='./file1\x00', 0x1000000, &(0x7f0000000000)=ANY=[], 0x0, 0x7c6, &(0x7f00000011c0)="$eJzs3U9oHOfZAPBnFMmWFT4T8n34M8ZxJk4+sMFRVlKiIHJINquRPMlqV+yugs1HSUwtB2E5CXEDtQ51fGlpaSk99Zjm0Et7Kr20FFrooe2p0F57CwR6SFpa6KEloLIzu7b+y39kKw2/n7DmnZl35n3ed9fz7EiamQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIqlNVypjSdTzxsK5dHu16VZzbof1/f39at1kh3Yjku6/GB6Oo+Wio/9za/WR7reTcbycOx7D3clwrDx85JEX/ntwoL/9DgHttcGtFl69tnL5wvLy4rsPMJD74Fu/WDf7w5G4zZGdzRp5u5nPVWezNG8306nJycozZ2fa6Uxez9rn251sLq21smqn2UpP1U6nY1NTE2k2er650JidrtazdLBc+PzT45XKZPrK6HxWbbWbjWdeGW3Xzub1et6YLTbsru7Web77Rnw176SdrDqXppeWlhcn1od0aFOQ3Upj65Z8trp27vhTj3z83kd/X1oc362745Xx8bGx8fGxyeemnnu+UhnctKCyQWyq8UDftHwO7fERHO5eP/9HPfJoxEKci3TLr1pMRyuaMbfN+p5+/v+/Z/7y+x3bXZP/yyw/cPzordXHosj/J8q5E9vl/7LtAwe3iel+ffWlcTWuxUpcjguxHMuxGO/el/aSvdvXwN5GNhtZNCKPdjQjj7moFkvS3pI0pmIyJqMSr8fZmIl2pDETedQji3acj3Z0IiveUbVoRRbV6EQzWpHGqajF6UhjLKZiKiYijSxG43w0YyEaMRvTUS32cimWinGf2BDXka+98fM3//DxB8Wr1a80ttMQvx9RVPrbDpXkf+7d3h7A4R6s9vP/RsUBEQAAAPgiSIqfvnfP/4fisaI0k9ez/99lq8HuNz8gAAAAgP8QxW/+j3cnQ93SY5F0z/8r6yv9eGh/ggMAAAD2RFJcY5dExEg8Xpb6l0tV9js2AAAAYG8Uv/8/0Z2MRFwvFjj/BwAAgC+Y137aK2y8x/5H/XvstucPJr/8a7RaQ8mN+XNPJVeq3XrVKw+V2/Umq4WDEdGZOZZE74aCxb4mB1ce7s4P1rLjSf/ul58dLKefFt+PDd4MaH0cLx0qlyZJsksAt3QDONzrxc0Airn4djxR1nniYjm92F9T9nZkJq9no7Vm/YWxqFYPD3Syc5333lr6ahTd/2Zj7nASl5aWF0e//PbyxSKWG9293LjS6++m+yjuEMtqbwTisa3vbjxUXIjRa3ekbLeytv8DVw93CwN30ObX42RZ5+RIOR1Z3//hbptjo9v1fqTs39imng9ufmPtGMWTZZ0nTz1ZTraIYnynKLpjMb42it4g3NlYbBlFPBIRHzxx/dw/ftNMsondopi4xygA9sul4q4/G7PQv8p0vtrN/63W0IFYl3fKDW73KJcUrezyJJ/bz+7/XN3hiH6qrHOq/DwxeGyLvFLZ4oj+ztI7v+0d0Z/90fd/8KUTv/vJXef14X6VQ/3Co79+eCCKKA71oljprWkNJd+5mUnKrPphd/mH27bbro8n3SF86CtX3okjV6+tPL105cKbi28uvjU+PjFZebZSeS5Jei/eavGJQe4BYAsn40SZyLd9xs42T+EpPgCUufvZnc6qH4rk0Zt/UtDNiW/HclyMM8XVBhHx+NbtjhTbFJ9BiijLYLc+ax1Z84SXM7ucWx4obnTQrTu+a92RNY+XueV/v3cfXw4AeCBO7pKHt83/a87dz+xy3j2y5k8Kz8Tpsu7pfgTb53IA4P7IWp8mI51vJK1WPv/62NTUWLVzNktbzdqraSufns3SvNHJWjFYbcxm6Xyr2WnWmvVu4bV8Omun7YX5+Wark840W+l8s52fK578nvYe/d7O5qqNTl5rz9ezajtLa81Gp1rrpNN5u5bOL7xcz9tns1axcXs+q+Uzea3ayZuNtN1caNWy0TRtZ9maivl01ujkM3m32EjnW/lctXUjIuoLc1k6nbVrrXy+0yx32G8rb8w0W3PFbv98eL9HGwA+H65eW7l8YXl58d27K/zpdipv3/qwGwsDwD64laU/+a+N617cn5AAAAAAAAAAAAAAAIAN7vH6v82FQ3u7w+Gd6qxej9i8KlldXb2DJg7FLnUO9IZqjwfqgRRu7Ml+BmKrcf78FJLtV73x4ouXt9v85etHz95eE7v+TxmMiN6lru9/cuBn3y1XvXRX3Rm4863+GBF30dZqskOd/T0uAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMBW/h0AAP//xhRxug==")
mount(&(0x7f0000000000)=@loop={'/dev/loop', 0x0}, &(0x7f0000000100)='./file0\x00', &(0x7f0000000040)='iso9660\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
unlink(&(0x7f00000001c0)='./control/file0\x00')

117.4265ms ago: executing program 4 (id=3229):
r0 = socket$inet(0x2, 0x3, 0x2)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x6}, 0x48)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff})
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000500)={@ifindex, r2, 0x2f, 0x0, 0x0, @link_id}, 0x20)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
migrate_pages(0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e8500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r3}, 0x10)
r4 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r4, 0x0, 0x0)
r6 = openat$cgroup_ro(r5, &(0x7f0000000000)='cgroup.stat\x00', 0x5000000, 0x0)
readv(r6, &(0x7f00000012c0)=[{&(0x7f0000000100)=""/4096, 0x1000}], 0x1)
setsockopt$inet_msfilter(r0, 0x0, 0x29, 0x0, 0x5000)
syz_mount_image$iso9660(&(0x7f0000000080), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='check=strict,norock\x00\x00\x00\x00e,check=relaxed,check=relaxed,nojoliet,check=relaxed,block=0x0000000000000400,\x00'], 0x1, 0x52c, &(0x7f0000000580)="$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")
socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000040)={0x2, 0x4e20, @private=0xa010102}, 0x6f)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001140), r5)
getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0x14, &(0x7f0000001240)=@assoc_value, &(0x7f0000001300)=0x8)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r3, &(0x7f0000001200)={&(0x7f0000001100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000011c0)={&(0x7f0000001180)=ANY=[@ANYBLOB='\x00@t', @ANYRES16=r7, @ANYBLOB="04002dbd7000fcdbdf2514000000080010000100000005000c000100000008000700c900000008000d0000010000"], 0x34}, 0x1, 0x0, 0x0, 0x4000}, 0x4000801)
syz_emit_ethernet(0x32, &(0x7f0000001500)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000740)={@random="dd27e3e89e63", @remote, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x11, 0x0, @multicast2, @multicast1}, {0x0, 0x4e20, 0x10, 0x0, @gue={{0x2, 0x0, 0x0, 0xef, 0x0, @val=0x80}}}}}}}, 0x0)
mmap(&(0x7f0000003000/0x4000)=nil, 0x4000, 0x0, 0x11, r6, 0x2000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
syz_mount_image$tmpfs(0x0, &(0x7f0000001340)='./file0\x00', 0x1e004, 0x0, 0x3, 0x0, &(0x7f0000001380))
creat(&(0x7f0000001c80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x41)

0s ago: executing program 0 (id=3230):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x0, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xad, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$isdn(0x22, 0x3, 0x0)
bind$isdn(r1, 0x0, 0x0)
perf_event_open(&(0x7f0000001180)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
gettid()
read(0xffffffffffffffff, &(0x7f0000000200)=""/209, 0xd1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000003dc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB="4c000000020605eafffffffffffe0d000000000000000300686173683a4970000500040003000000050005000a0000000c000780050014000800000005000500020000000500010006000000"], 0x4c}}, 0x48010)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000300)={0x0, 0x0, 0x0, 'queue1\x00'})
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
mount$bind(0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000001080)={0x0, 0x0, 0x0, {0x0, 0x1}, {0x46, 0x2}})
syz_io_uring_setup(0x24f9, &(0x7f0000000080), 0x0, &(0x7f0000000140))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = syz_io_uring_setup(0x2ddd, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000180)=<r6=>0x0)
syz_io_uring_setup(0x5e2, &(0x7f0000000080), &(0x7f0000000340)=<r7=>0x0, &(0x7f0000000380))
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000005c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x10)
syz_io_uring_submit(r7, r6, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4})
io_uring_enter(r5, 0x381b, 0x0, 0x0, 0x0, 0x0)
recvfrom(r3, 0x0, 0x0, 0x0, 0x0, 0x0)
shutdown(r4, 0x0)
r9 = msgget(0x1, 0x80)
msgsnd(r9, &(0x7f0000000280)=ANY=[@ANYBLOB="0000000000000000c843f7929fe0ccfe98e4156ef6b8ba4c978f188e246071f001f03565eb48bca1b4a0d53c78b71a32139b57782c88960e7aa5d8a16f01e794fc5ab8954aea9076eb66495382b6a77af71ce480d1db541446493c45c2c1fee7dc6688c6f9"], 0x4b, 0x0)
socket(0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

r_sectors = 2 limit=0
[  203.075948][T12745] FAULT_INJECTION: forcing a failure.
[  203.075948][T12745] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  203.089141][T12745] CPU: 0 UID: 0 PID: 12745 Comm: syz.2.2783 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  203.099551][T12745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  203.109599][T12745] Call Trace:
[  203.112873][T12745]  <TASK>
[  203.115893][T12745]  dump_stack_lvl+0xf2/0x150
[  203.120478][T12745]  dump_stack+0x15/0x20
[  203.124627][T12745]  should_fail_ex+0x229/0x230
[  203.129335][T12745]  should_fail+0xb/0x10
[  203.133548][T12745]  should_fail_usercopy+0x1a/0x20
[  203.139527][T12745]  _copy_from_user+0x1e/0xd0
[  203.144125][T12745]  restore_sigcontext+0x64/0x220
[  203.147672][T12726] EXT4-fs error (device loop4): ext4_get_inode_loc:4574: inode #12: block 36: comm syz.4.2773: unable to read itable block
[  203.149079][T12745]  __do_sys_rt_sigreturn+0xc5/0x150
[  203.165466][T12726] Buffer I/O error on dev loop4, logical block 1, lost sync page write
[  203.166975][T12745]  x64_sys_call+0x2b44/0x2e00
[  203.179966][T12745]  do_syscall_64+0xc9/0x1c0
[  203.184733][T12745]  ? clear_bhb_loop+0x55/0xb0
[  203.189277][T12726] EXT4-fs (loop4): I/O error while writing superblock
[  203.189388][T12745]  ? clear_bhb_loop+0x55/0xb0
[  203.196197][T12726] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5810: IO failure
[  203.200762][T12745]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.215426][T12745] RIP: 0033:0x7f1e09cd1909
[  203.219864][T12745] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[  203.229185][T12726] Buffer I/O error on dev loop4, logical block 1, lost sync page write
[  203.239454][T12745] RSP: 002b:00007f1e08fb6ac0 EFLAGS: 00000202 ORIG_RAX: 000000000000000f
[  203.256199][T12745] RAX: ffffffffffffffda RBX: 00007f1e09ec5f60 RCX: 00007f1e09cd1909
[  203.264226][T12745] RDX: 00007f1e08fb6ac0 RSI: 00007f1e08fb6bf0 RDI: 0000000000000021
[  203.272214][T12745] RBP: 00007f1e08fb70a0 R08: 0000000000000000 R09: 0000000000000000
[  203.273861][T12726] EXT4-fs (loop4): I/O error while writing superblock
[  203.280247][T12745] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002
[  203.280261][T12745] R13: 000000000000000b R14: 00007f1e09ec5f60 R15: 00007ffff85c5d18
[  203.287021][T12726] EXT4-fs error (device loop4): ext4_truncate:4241: inode #12: comm syz.4.2773: mark_inode_dirty error
[  203.294955][T12745]  </TASK>
[  203.320125][T12726] Buffer I/O error on dev loop4, logical block 1, lost sync page write
[  203.328427][T12726] EXT4-fs (loop4): I/O error while writing superblock
[  203.336737][T12726] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 12 starting block 20)
[  203.347887][T12726] Buffer I/O error on device loop4, logical block 20
[  203.360275][T12754] FAULT_INJECTION: forcing a failure.
[  203.360275][T12754] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  203.361501][T12751] loop1: detected capacity change from 0 to 512
[  203.373423][T12754] CPU: 0 UID: 0 PID: 12754 Comm: syz.3.2787 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  203.389905][T12754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  203.399943][T12754] Call Trace:
[  203.403280][T12754]  <TASK>
[  203.406215][T12754]  dump_stack_lvl+0xf2/0x150
[  203.410796][T12754]  dump_stack+0x15/0x20
[  203.414969][T12754]  should_fail_ex+0x229/0x230
[  203.419726][T12754]  should_fail+0xb/0x10
[  203.423872][T12754]  should_fail_usercopy+0x1a/0x20
[  203.428963][T12754]  _copy_from_iter+0xd3/0xb00
[  203.433632][T12754]  ? rep_movs_alternative+0x4a/0x70
[  203.438821][T12754]  ? _copy_from_iter+0x161/0xb00
[  203.443749][T12754]  copy_page_from_iter+0x14f/0x280
[  203.448886][T12754]  skb_copy_datagram_from_iter+0x203/0x440
[  203.454821][T12754]  tun_get_user+0xb90/0x24b0
[  203.459400][T12754]  ? do_send_sig_info+0xb9/0xf0
[  203.464309][T12754]  ? group_send_sig_info+0x6d/0x90
[  203.469410][T12754]  ? ref_tracker_alloc+0x1f5/0x2f0
[  203.474523][T12754]  ? selinux_file_permission+0x22c/0x360
[  203.480161][T12754]  tun_chr_write_iter+0x18e/0x240
[  203.485172][T12754]  vfs_write+0x78f/0x900
[  203.489432][T12754]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  203.494964][T12754]  ksys_write+0xeb/0x1b0
[  203.499208][T12754]  __x64_sys_write+0x42/0x50
[  203.503819][T12754]  x64_sys_call+0x2a40/0x2e00
[  203.508542][T12754]  do_syscall_64+0xc9/0x1c0
[  203.513035][T12754]  ? clear_bhb_loop+0x55/0xb0
[  203.517697][T12754]  ? clear_bhb_loop+0x55/0xb0
[  203.522359][T12754]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.528325][T12754] RIP: 0033:0x7f3a19134a9f
[  203.532733][T12754] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[  203.552353][T12754] RSP: 002b:00007f3a183b7010 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  203.560816][T12754] RAX: ffffffffffffffda RBX: 00007f3a192c5f60 RCX: 00007f3a19134a9f
[  203.568788][T12754] RDX: 000000000000fdef RSI: 0000000020000c00 RDI: 00000000000000c8
[  203.576746][T12754] RBP: 00007f3a183b70a0 R08: 0000000000000000 R09: 0000000000000000
[  203.584772][T12754] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000002
[  203.592815][T12754] R13: 000000000000000b R14: 00007f3a192c5f60 R15: 00007fff1e940168
[  203.600773][T12754]  </TASK>
[  203.608728][T12726] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 12 starting block 63)
[  203.620099][T12726] Buffer I/O error on device loop4, logical block 63
[  203.628274][T12726] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 12 starting block 33)
[  203.639673][T12726] Buffer I/O error on device loop4, logical block 33
[  203.646343][T12726] Buffer I/O error on device loop4, logical block 34
[  203.653623][T12726] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 12 starting block 61)
[  203.664932][T12726] Buffer I/O error on device loop4, logical block 61
[  203.671598][T12726] Buffer I/O error on device loop4, logical block 62
[  203.678979][T12726] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 12 starting block 21)
[  203.700117][T12726] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 12 starting block 37)
[  203.711763][T12726] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 12 starting block 40)
[  203.742483][T12759] loop1: detected capacity change from 0 to 256
[  203.744095][T10805] EXT4-fs error (device loop4): ext4_get_inode_loc:4574: inode #2: block 35: comm syz-executor: unable to read itable block
[  203.751643][T12759] msdos: Unknown parameter 'ÿÿÿÿ'
[  203.762038][T10805] Buffer I/O error on dev loop4, logical block 1, lost sync page write
[  203.767936][T12761] loop0: detected capacity change from 0 to 128
[  203.775212][T10805] EXT4-fs (loop4): I/O error while writing superblock
[  203.788838][T10805] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5810: IO failure
[  203.790233][T12761] netlink: 88 bytes leftover after parsing attributes in process `syz.0.2790'.
[  203.800905][T10805] Buffer I/O error on dev loop4, logical block 1, lost sync page write
[  203.814940][T10805] EXT4-fs (loop4): I/O error while writing superblock
[  203.815326][T12763] loop3: detected capacity change from 0 to 512
[  203.821691][T10805] EXT4-fs error (device loop4): ext4_dirty_inode:6014: inode #2: comm syz-executor: mark_inode_dirty error
[  203.821739][T10805] Buffer I/O error on dev loop4, logical block 1, lost sync page write
[  203.821754][T10805] EXT4-fs (loop4): I/O error while writing superblock
[  203.855642][ T8667] EXT4-fs error (device loop4): __ext4_get_inode_loc_noinmem:4559: inode #13: block 36: comm kworker/u8:16: unable to read itable block
[  203.870081][ T8667] Buffer I/O error on dev loop4, logical block 1, lost sync page write
[  203.872287][T12759] netlink: 'syz.1.2789': attribute type 1 has an invalid length.
[  203.878380][ T8667] EXT4-fs (loop4): I/O error while writing superblock
[  203.878429][ T8667] EXT4-fs error (device loop4): __ext4_get_inode_loc_noinmem:4559: inode #2: block 35: comm kworker/u8:16: unable to read itable block
[  203.878491][ T8667] Buffer I/O error on dev loop4, logical block 1, lost sync page write
[  203.886301][T12759] netlink: 'syz.1.2789': attribute type 2 has an invalid length.
[  203.893400][ T8667] EXT4-fs (loop4): I/O error while writing superblock
[  203.937088][T10805] Buffer I/O error on dev loop4, logical block 1, lost sync page write
[  203.938062][T12763] ext4 filesystem being mounted at /28/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  203.990591][T12773] 9pnet_fd: Insufficient options for proto=fd
[  204.055829][T12786] loop0: detected capacity change from 0 to 1024
[  204.063581][T12786] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  204.084350][T12786] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  204.093252][T12786] EXT4-fs (loop0): orphan cleanup on readonly fs
[  204.101167][T12786] EXT4-fs error (device loop0): __ext4_get_inode_loc:4436: comm syz.0.2799: Invalid inode table block 0 in block_group 0
[  204.116132][T12786] EXT4-fs (loop0): Remounting filesystem read-only
[  204.122669][T12786] __quota_error: 1 callbacks suppressed
[  204.122680][T12786] Quota error (device loop0): write_blk: dquota write failed
[  204.135724][T12786] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  204.160426][T12786] EXT4-fs (loop0): 1 truncate cleaned up
[  204.176236][T12786] SELinux: (dev loop0, type ext4) getxattr errno 5
[  204.218513][T12786] loop0: detected capacity change from 0 to 164
[  204.419623][T12777] chnl_net:caif_netlink_parms(): no params data found
[  204.466682][T12820] loop3: detected capacity change from 0 to 512
[  204.485655][T12777] bridge0: port 1(bridge_slave_0) entered blocking state
[  204.492724][T12777] bridge0: port 1(bridge_slave_0) entered disabled state
[  204.501624][T12823] 9pnet_fd: Insufficient options for proto=fd
[  204.511375][T12820] ext4 filesystem being mounted at /32/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  204.525806][T12777] bridge_slave_0: entered allmulticast mode
[  204.533870][T12777] bridge_slave_0: entered promiscuous mode
[  204.563348][T12777] bridge0: port 2(bridge_slave_1) entered blocking state
[  204.570532][T12777] bridge0: port 2(bridge_slave_1) entered disabled state
[  204.588129][T12777] bridge_slave_1: entered allmulticast mode
[  204.596010][T12777] bridge_slave_1: entered promiscuous mode
[  204.626722][T12829] 9pnet_fd: Insufficient options for proto=fd
[  204.642426][T12777] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  204.662974][T12777] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  204.703930][T12777] team0: Port device team_slave_0 added
[  204.710918][T12777] team0: Port device team_slave_1 added
[  204.738084][T12841] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=274 sclass=netlink_route_socket pid=12841 comm=syz.2.2814
[  204.758286][T12777] batman_adv: batadv0: Adding interface: batadv_slave_0
[  204.765331][T12777] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  204.771510][T12841] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  204.791288][T12777] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  204.793791][T12777] batman_adv: batadv0: Adding interface: batadv_slave_1
[  204.816073][T12777] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  204.842039][T12777] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  204.857087][T12841] vhci_hcd: default hub control req: 0000 v0000 i0000 l124
[  204.886296][T12777] hsr_slave_0: entered promiscuous mode
[  204.891261][T12839] FAULT_INJECTION: forcing a failure.
[  204.891261][T12839] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  204.905135][T12839] CPU: 1 UID: 0 PID: 12839 Comm: syz.3.2813 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  204.915540][T12839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  204.925588][T12839] Call Trace:
[  204.928852][T12839]  <TASK>
[  204.931771][T12839]  dump_stack_lvl+0xf2/0x150
[  204.936366][T12839]  dump_stack+0x15/0x20
[  204.940510][T12839]  should_fail_ex+0x229/0x230
[  204.945189][T12839]  should_fail_alloc_page+0xfd/0x110
[  204.950477][T12839]  __alloc_pages_noprof+0x109/0x360
[  204.955682][T12839]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  204.961057][T12839]  alloc_pages_noprof+0xe1/0x100
[  204.966002][T12839]  __pmd_alloc+0x4b/0x3c0
[  204.970334][T12839]  copy_page_range+0x3676/0x38c0
[  204.975258][T12839]  ? mod_objcg_state+0x2ea/0x4f0
[  204.980208][T12839]  ? mas_wr_walk_descend+0x359/0x410
[  204.985503][T12839]  ? mas_wr_end_piv+0x15f/0x480
[  204.990356][T12839]  ? mas_wr_store_entry+0x250/0x390
[  204.995556][T12839]  copy_mm+0x973/0x10e0
[  204.999709][T12839]  copy_process+0xee1/0x1f90
[  205.004289][T12839]  kernel_clone+0x167/0x5e0
[  205.008781][T12839]  __se_sys_clone3+0x1b5/0x1f0
[  205.013557][T12839]  __x64_sys_clone3+0x31/0x40
[  205.018223][T12839]  x64_sys_call+0x11e9/0x2e00
[  205.022891][T12839]  do_syscall_64+0xc9/0x1c0
[  205.027379][T12839]  ? clear_bhb_loop+0x55/0xb0
[  205.032039][T12839]  ? clear_bhb_loop+0x55/0xb0
[  205.036699][T12839]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.042585][T12839] RIP: 0033:0x7f3a19135f19
[  205.046982][T12839] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.066576][T12839] RSP: 002b:00007f3a183b6f18 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  205.074973][T12839] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f3a19135f19
[  205.082927][T12839] RDX: 00007f3a183b6f30 RSI: 0000000000000058 RDI: 00007f3a183b6f30
[  205.090883][T12839] RBP: 00007f3a183b70a0 R08: 0000000000000000 R09: 0000000000000058
[  205.098837][T12839] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  205.106797][T12839] R13: 000000000000000b R14: 00007f3a192c5f60 R15: 00007fff1e940168
[  205.114758][T12839]  </TASK>
[  205.119403][T12777] hsr_slave_1: entered promiscuous mode
[  205.126209][T12777] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  205.134066][T12777] Cannot create hsr debugfs directory
[  205.191797][T12843] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2815'.
[  205.222606][T12843] hub 6-0:1.0: USB hub found
[  205.227666][T12843] hub 6-0:1.0: 8 ports detected
[  205.245818][T12858] loop0: detected capacity change from 0 to 512
[  205.275954][T12858] ext4 filesystem being mounted at /42/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  205.290891][T12777] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.305704][T12870] 9pnet_fd: Insufficient options for proto=fd
[  205.305850][T12864] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2820'.
[  205.362054][T12875] loop3: detected capacity change from 0 to 2048
[  205.370133][T12777] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.374580][T12881] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=274 sclass=netlink_route_socket pid=12881 comm=syz.0.2825
[  205.397153][T12881] loop0: detected capacity change from 0 to 128
[  205.405414][T12881] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  205.412802][T12881] vhci_hcd: default hub control req: 0000 v0000 i0000 l124
[  205.443195][T12890] loop0: detected capacity change from 0 to 1024
[  205.450400][T12890] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  205.464573][T12777] bond0: (slave netdevsim1): Releasing backup interface
[  205.465862][T12890] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  205.479658][T12890] EXT4-fs (loop0): orphan cleanup on readonly fs
[  205.481542][T12777] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.488677][T12890] EXT4-fs error (device loop0): __ext4_get_inode_loc:4436: comm syz.0.2828: Invalid inode table block 0 in block_group 0
[  205.509138][T12890] EXT4-fs (loop0): Remounting filesystem read-only
[  205.515684][T12890] Quota error (device loop0): write_blk: dquota write failed
[  205.523053][T12890] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  205.533248][T12890] EXT4-fs (loop0): 1 truncate cleaned up
[  205.539288][T12890] SELinux: (dev loop0, type ext4) getxattr errno 5
[  205.551058][T12777] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.566732][T12890] loop0: detected capacity change from 0 to 164
[  205.631253][T12777] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  205.639977][T12777] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  205.649082][T12777] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  205.658332][T12777] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  205.703034][T12777] 8021q: adding VLAN 0 to HW filter on device bond0
[  205.718642][T12777] 8021q: adding VLAN 0 to HW filter on device team0
[  205.728657][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[  205.735720][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[  205.752382][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[  205.759585][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[  205.777282][T12777] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  205.787740][T12777] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  205.851639][T12777] 8021q: adding VLAN 0 to HW filter on device batadv0
[  205.982672][T12777] veth0_vlan: entered promiscuous mode
[  205.991991][T12777] veth1_vlan: entered promiscuous mode
[  206.013616][T12777] veth0_macvtap: entered promiscuous mode
[  206.023300][T12777] veth1_macvtap: entered promiscuous mode
[  206.037385][T12777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  206.047916][T12777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  206.057884][T12777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  206.068340][T12777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  206.078265][T12777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  206.088783][T12777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  206.098645][T12777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  206.109134][T12777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  206.118986][T12777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  206.129461][T12777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  206.139441][T12777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  206.149996][T12777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  206.162234][T12777] batman_adv: batadv0: Interface activated: batadv_slave_0
[  206.170566][T12777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  206.181083][T12777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  206.191047][T12777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  206.201602][T12777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  206.211501][T12777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  206.221922][T12777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  206.231872][T12777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  206.242298][T12777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  206.252268][T12777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  206.262724][T12777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  206.272636][T12777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  206.283081][T12777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  206.295393][T12777] batman_adv: batadv0: Interface activated: batadv_slave_1
[  206.309277][T12777] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  206.318032][T12777] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  206.326893][T12777] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  206.335716][T12777] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  206.349675][   T29] audit: type=1400 audit(2000000024.009:5271): avc:  denied  { append } for  pid=12920 comm="syz.1.2832" name="pfkey" dev="proc" ino=4026532766 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  206.416196][T12929] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2833'.
[  206.427638][T12927] 9pnet_fd: Insufficient options for proto=fd
[  206.452777][T12932] loop0: detected capacity change from 0 to 512
[  206.475715][T12936] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=274 sclass=netlink_route_socket pid=12936 comm=syz.1.2837
[  206.492631][T12936] loop1: detected capacity change from 0 to 128
[  206.506458][T12932] ext4 filesystem being mounted at /46/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  206.523118][T12936] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  206.539616][T12936] vhci_hcd: default hub control req: 0000 v0000 i0000 l124
[  206.573297][T12957] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2843'.
[  206.575068][T12950] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2841'.
[  206.600402][T12957] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2843'.
[  206.627076][   T29] audit: type=1400 audit(2000000024.289:5272): avc:  denied  { create } for  pid=12959 comm="syz.2.2846" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_dnrt_socket permissive=1
[  206.649136][T12967] 9pnet_fd: Insufficient options for proto=fd
[  206.650217][   T29] audit: type=1400 audit(2000000024.309:5273): avc:  denied  { setattr } for  pid=12959 comm="syz.2.2846" name="[io_uring]" dev="anon_inodefs" ino=46267 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  206.693378][T12973] loop0: detected capacity change from 0 to 512
[  206.693816][T12974] loop3: detected capacity change from 0 to 1024
[  206.707441][T12973] ext3: Unknown parameter 'dont_hash'
[  206.707794][T12974] EXT4-fs: quotafile must be on filesystem root
[  206.732817][   T29] audit: type=1400 audit(2000000024.389:5274): avc:  denied  { connect } for  pid=12972 comm="syz.3.2850" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  206.771829][T12983] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=274 sclass=netlink_route_socket pid=12983 comm=syz.3.2854
[  206.786883][T12983] loop3: detected capacity change from 0 to 128
[  206.794370][T12981] FAULT_INJECTION: forcing a failure.
[  206.794370][T12981] name failslab, interval 1, probability 0, space 0, times 0
[  206.795043][T12983] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  206.806979][T12981] CPU: 1 UID: 0 PID: 12981 Comm: syz.1.2853 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  206.816012][T12983] vhci_hcd: default hub control req: 0000 v0000 i0000 l124
[  206.824631][T12981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  206.841859][T12981] Call Trace:
[  206.845186][T12981]  <TASK>
[  206.848166][T12981]  dump_stack_lvl+0xf2/0x150
[  206.852767][T12981]  dump_stack+0x15/0x20
[  206.856925][T12981]  should_fail_ex+0x229/0x230
[  206.861702][T12981]  ? security_file_alloc+0x32/0xe0
[  206.866947][T12981]  should_failslab+0x8f/0xb0
[  206.871543][T12981]  kmem_cache_alloc_noprof+0x4c/0x290
[  206.876914][T12981]  security_file_alloc+0x32/0xe0
[  206.881892][T12981]  alloc_empty_file+0x121/0x310
[  206.886745][T12981]  alloc_file_pseudo+0xc3/0x140
[  206.891590][T12981]  __shmem_file_setup+0x1bb/0x1f0
[  206.896624][T12981]  shmem_file_setup+0x3b/0x50
[  206.901297][T12981]  __se_sys_memfd_create+0x31d/0x600
[  206.906603][T12981]  __x64_sys_memfd_create+0x31/0x40
[  206.911798][T12981]  x64_sys_call+0x1163/0x2e00
[  206.916468][T12981]  do_syscall_64+0xc9/0x1c0
[  206.920957][T12981]  ? clear_bhb_loop+0x55/0xb0
[  206.925628][T12981]  ? clear_bhb_loop+0x55/0xb0
[  206.930335][T12981]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.936228][T12981] RIP: 0033:0x7fb72d665f19
[  206.940632][T12981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  206.960332][T12981] RSP: 002b:00007fb72c8e6e28 EFLAGS: 00000206 ORIG_RAX: 000000000000013f
[  206.968732][T12981] RAX: ffffffffffffffda RBX: 000000000000046d RCX: 00007fb72d665f19
[  206.976699][T12981] RDX: 00007fb72c8e6f00 RSI: 0000000000000000 RDI: 00007fb72d6d3d36
[  206.984724][T12981] RBP: 0000000020000f00 R08: 00007fb72c8e6bc7 R09: 00007fb72c8e6e50
[  206.992689][T12981] R10: 000000000000000a R11: 0000000000000206 R12: 0000000020000340
[  207.000659][T12981] R13: 00007fb72c8e6f00 R14: 00007fb72c8e6ec0 R15: 00000000200000c0
[  207.008744][T12981]  </TASK>
[  207.028690][T12992] loop3: detected capacity change from 0 to 512
[  207.048709][T12992] ext4 filesystem being mounted at /46/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  207.048920][T12998] loop1: detected capacity change from 0 to 512
[  207.062957][   T29] audit: type=1400 audit(2000000024.719:5275): avc:  denied  { ioctl } for  pid=12999 comm="syz.2.2859" path="socket:[45821]" dev="sockfs" ino=45821 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  207.110204][T13003] loop0: detected capacity change from 0 to 128
[  207.123165][T13003] ext4 filesystem being mounted at /49/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  207.157464][T12998] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2858'.
[  207.169543][T12998] syz_tun: entered promiscuous mode
[  207.175263][T12998] macvtap1: entered promiscuous mode
[  207.180908][T12998] macvtap1: entered allmulticast mode
[  207.186369][T12998] syz_tun: entered allmulticast mode
[  207.200485][T13003] netlink: 'syz.0.2860': attribute type 1 has an invalid length.
[  207.211465][T13009] 9pnet_fd: Insufficient options for proto=fd
[  207.252375][T13022] loop3: detected capacity change from 0 to 512
[  207.267893][T13022] ext4 filesystem being mounted at /49/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  207.289815][T13028] loop0: detected capacity change from 0 to 1024
[  207.297183][T13031] syz.2.2865[13031] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  207.297233][T13031] syz.2.2865[13031] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  207.303408][T13028] EXT4-fs: quotafile must be on filesystem root
[  207.325244][T13022] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0
[  207.336700][T13022] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.2866: Failed to acquire dquot type 0
[  207.341696][T13031] FAULT_INJECTION: forcing a failure.
[  207.341696][T13031] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  207.360882][T13031] CPU: 1 UID: 0 PID: 13031 Comm: syz.2.2865 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  207.371352][T13031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  207.381455][T13031] Call Trace:
[  207.384844][T13031]  <TASK>
[  207.387751][T13031]  dump_stack_lvl+0xf2/0x150
[  207.392369][T13031]  dump_stack+0x15/0x20
[  207.396543][T13031]  should_fail_ex+0x229/0x230
[  207.401259][T13031]  should_fail+0xb/0x10
[  207.405456][T13031]  should_fail_usercopy+0x1a/0x20
[  207.410460][T13031]  copy_to_user_nofault+0x7a/0x110
[  207.415687][T13031]  bpf_probe_write_user+0x80/0xc0
[  207.420687][T13031]  ? __pfx_bpf_probe_write_user+0x10/0x10
[  207.426459][T13031]  ___bpf_prog_run+0x9ab/0x46c0
[  207.431367][T13031]  __bpf_prog_run32+0x74/0xa0
[  207.436031][T13031]  ? kvm_sched_clock_read+0x11/0x20
[  207.441280][T13031]  bpf_trace_run4+0x1a1/0x1e0
[  207.446015][T13031]  __traceiter_sched_switch+0x3b/0x60
[  207.451362][T13031]  __schedule+0x86a/0x950
[  207.455733][T13031]  ? selinux_capable+0x1f2/0x260
[  207.460697][T13031]  schedule+0x55/0xc0
[  207.464652][T13031]  schedule_preempt_disabled+0x10/0x20
[  207.470158][T13031]  __mutex_lock+0x36d/0x8e0
[  207.474639][T13031]  __mutex_lock_slowpath+0xa/0x10
[  207.479665][T13031]  mutex_lock+0x2d/0x40
[  207.483953][T13031]  rtnetlink_rcv_msg+0x5e3/0x710
[  207.488913][T13031]  ? ref_tracker_free+0x3a5/0x410
[  207.494018][T13031]  ? __dev_queue_xmit+0x161/0x1fe0
[  207.499108][T13031]  netlink_rcv_skb+0x12c/0x230
[  207.503864][T13031]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  207.509376][T13031]  rtnetlink_rcv+0x1c/0x30
[  207.513797][T13031]  netlink_unicast+0x593/0x670
[  207.518622][T13031]  netlink_sendmsg+0x5cc/0x6e0
[  207.523424][T13031]  ? __pfx_netlink_sendmsg+0x10/0x10
[  207.528688][T13031]  __sock_sendmsg+0x140/0x180
[  207.533357][T13031]  ____sys_sendmsg+0x312/0x410
[  207.538102][T13031]  __sys_sendmsg+0x1e9/0x280
[  207.542674][T13031]  __x64_sys_sendmsg+0x46/0x50
[  207.547420][T13031]  x64_sys_call+0x26f8/0x2e00
[  207.552075][T13031]  do_syscall_64+0xc9/0x1c0
[  207.556552][T13031]  ? clear_bhb_loop+0x55/0xb0
[  207.561204][T13031]  ? clear_bhb_loop+0x55/0xb0
[  207.565860][T13031]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.571734][T13031] RIP: 0033:0x7f1e09d35f19
[  207.576124][T13031] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.595741][T13031] RSP: 002b:00007f1e08f96048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  207.604127][T13031] RAX: ffffffffffffffda RBX: 00007f1e09ec6038 RCX: 00007f1e09d35f19
[  207.612160][T13031] RDX: 0000000000000000 RSI: 00000000200037c0 RDI: 0000000000000008
[  207.620104][T13031] RBP: 00007f1e08f960a0 R08: 0000000000000000 R09: 0000000000000000
[  207.628071][T13031] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  207.636020][T13031] R13: 000000000000006e R14: 00007f1e09ec6038 R15: 00007ffff85c5d18
[  207.643967][T13031]  </TASK>
[  207.660118][T13028] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2868'.
[  207.683155][T13039] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2870'.
[  207.719552][T13051] loop3: detected capacity change from 0 to 128
[  207.727432][T13047] loop0: detected capacity change from 0 to 2048
[  207.765328][T13047] Alternate GPT is invalid, using primary GPT.
[  207.771747][T13047]  loop0: p1 p2 p3
[  207.825262][T13068] loop0: detected capacity change from 0 to 256
[  207.909818][T13078] loop1: detected capacity change from 0 to 512
[  207.985256][T13088] loop0: detected capacity change from 0 to 1024
[  207.992749][T13088] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  208.004906][T13088] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  208.012973][T13088] EXT4-fs (loop0): orphan cleanup on readonly fs
[  208.020459][T13088] EXT4-fs error (device loop0): __ext4_get_inode_loc:4436: comm syz.0.2882: Invalid inode table block 0 in block_group 0
[  208.036560][T13088] EXT4-fs (loop0): Remounting filesystem read-only
[  208.040279][T13072] chnl_net:caif_netlink_parms(): no params data found
[  208.043177][T13088] EXT4-fs (loop0): 1 truncate cleaned up
[  208.055982][T13088] SELinux: (dev loop0, type ext4) getxattr errno 5
[  208.073291][T13088] loop0: detected capacity change from 0 to 164
[  208.091250][T13088] bio_check_eod: 50526 callbacks suppressed
[  208.091266][T13088] syz.0.2882: attempt to access beyond end of device
[  208.091266][T13088] loop0: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  208.103810][T13098] random: crng reseeded on system resumption
[  208.112455][T13088] syz.0.2882: attempt to access beyond end of device
[  208.112455][T13088] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  208.131266][T13088] syz.0.2882: attempt to access beyond end of device
[  208.131266][T13088] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  208.145096][T13088] syz.0.2882: attempt to access beyond end of device
[  208.145096][T13088] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  208.148689][T13098] Unrecognized hibernate image header format!
[  208.158530][T13088] syz.0.2882: attempt to access beyond end of device
[  208.158530][T13088] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  208.164585][T13098] PM: hibernation: Image mismatch: architecture specific data
[  208.186074][T13088] syz.0.2882: attempt to access beyond end of device
[  208.186074][T13088] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  208.186711][T13072] bridge0: port 1(bridge_slave_0) entered blocking state
[  208.199496][T13088] syz.0.2882: attempt to access beyond end of device
[  208.199496][T13088] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  208.206581][T13072] bridge0: port 1(bridge_slave_0) entered disabled state
[  208.227176][T13088] syz.0.2882: attempt to access beyond end of device
[  208.227176][T13088] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  208.229413][T13072] bridge_slave_0: entered allmulticast mode
[  208.241047][T13088] syz.0.2882: attempt to access beyond end of device
[  208.241047][T13088] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  208.248894][T13072] bridge_slave_0: entered promiscuous mode
[  208.260314][T13088] syz.0.2882: attempt to access beyond end of device
[  208.260314][T13088] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  208.269385][T13072] bridge0: port 2(bridge_slave_1) entered blocking state
[  208.287058][T13072] bridge0: port 2(bridge_slave_1) entered disabled state
[  208.295749][T13072] bridge_slave_1: entered allmulticast mode
[  208.302294][T13072] bridge_slave_1: entered promiscuous mode
[  208.345212][T13072] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  208.366987][T13072] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  208.403776][T13072] team0: Port device team_slave_0 added
[  208.420241][T13072] team0: Port device team_slave_1 added
[  208.454467][T13072] batman_adv: batadv0: Adding interface: batadv_slave_0
[  208.461427][T13072] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  208.487353][T13072] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  208.505720][T13072] batman_adv: batadv0: Adding interface: batadv_slave_1
[  208.512766][T13072] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  208.539208][T13072] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  208.598908][T13072] hsr_slave_0: entered promiscuous mode
[  208.614838][T13072] hsr_slave_1: entered promiscuous mode
[  208.620816][T13072] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  208.634013][T13072] Cannot create hsr debugfs directory
[  208.670563][ T6547] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  208.749797][T13118] FAULT_INJECTION: forcing a failure.
[  208.749797][T13118] name failslab, interval 1, probability 0, space 0, times 0
[  208.762518][T13118] CPU: 1 UID: 0 PID: 13118 Comm: syz.2.2891 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  208.772933][T13118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  208.782991][T13118] Call Trace:
[  208.786262][T13118]  <TASK>
[  208.789191][T13118]  dump_stack_lvl+0xf2/0x150
[  208.793838][T13118]  dump_stack+0x15/0x20
[  208.798049][T13118]  should_fail_ex+0x229/0x230
[  208.802722][T13118]  ? anon_vma_fork+0x12c/0x2d0
[  208.807529][T13118]  should_failslab+0x8f/0xb0
[  208.812124][T13118]  kmem_cache_alloc_noprof+0x4c/0x290
[  208.817549][T13118]  anon_vma_fork+0x12c/0x2d0
[  208.822164][T13118]  copy_mm+0x680/0x10e0
[  208.826327][T13118]  copy_process+0xee1/0x1f90
[  208.830916][T13118]  kernel_clone+0x167/0x5e0
[  208.835414][T13118]  ? vfs_write+0x5a5/0x900
[  208.839836][T13118]  __x64_sys_clone+0xe8/0x120
[  208.844504][T13118]  x64_sys_call+0x2dc4/0x2e00
[  208.849250][T13118]  do_syscall_64+0xc9/0x1c0
[  208.853744][T13118]  ? clear_bhb_loop+0x55/0xb0
[  208.858436][T13118]  ? clear_bhb_loop+0x55/0xb0
[  208.863106][T13118]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.868997][T13118] RIP: 0033:0x7f1e09d35f19
[  208.873441][T13118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.893097][T13118] RSP: 002b:00007f1e08f95ff8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  208.901505][T13118] RAX: ffffffffffffffda RBX: 00007f1e09ec6038 RCX: 00007f1e09d35f19
[  208.909466][T13118] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000021104000
[  208.917433][T13118] RBP: 00007f1e08f960a0 R08: 0000000000000000 R09: 0000000000000000
[  208.925391][T13118] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[  208.933350][T13118] R13: 000000000000006e R14: 00007f1e09ec6038 R15: 00007ffff85c5d18
[  208.941307][T13118]  </TASK>
[  208.960374][ T6547] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  208.980990][T13122] loop1: detected capacity change from 0 to 512
[  208.993803][T13122] loop1: detected capacity change from 0 to 256
[  209.068010][T13128] 9pnet_fd: Insufficient options for proto=fd
[  209.107702][ T6547] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.156996][T13135] __nla_validate_parse: 3 callbacks suppressed
[  209.157012][T13135] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2898'.
[  209.175077][T13135] loop0: detected capacity change from 0 to 128
[  209.188348][ T6547] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.327786][T13140] loop0: detected capacity change from 0 to 512
[  209.348510][T13140] ext4 filesystem being mounted at /61/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  209.420834][T13144] __quota_error: 20 callbacks suppressed
[  209.420875][T13144] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0
[  209.436961][T13144] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[  209.446372][T13144] EXT4-fs error (device loop0): ext4_acquire_dquot:6848: comm syz.0.2900: Failed to acquire dquot type 0
[  209.473819][ T6547] bridge_slave_1: left allmulticast mode
[  209.479523][ T6547] bridge_slave_1: left promiscuous mode
[  209.485252][ T6547] bridge0: port 2(bridge_slave_1) entered disabled state
[  209.493442][ T6547] bridge_slave_0: left allmulticast mode
[  209.499158][ T6547] bridge_slave_0: left promiscuous mode
[  209.504869][ T6547] bridge0: port 1(bridge_slave_0) entered disabled state
[  209.596737][ T6547] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  209.607039][ T6547] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  209.618009][ T6547] bond0 (unregistering): Released all slaves
[  209.738533][ T6547] hsr_slave_0: left promiscuous mode
[  209.744631][ T6547] hsr_slave_1: left promiscuous mode
[  209.750375][ T6547] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  209.757822][ T6547] batman_adv: batadv0: Removing interface: batadv_slave_0
[  209.765553][ T6547] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  209.772948][ T6547] batman_adv: batadv0: Removing interface: batadv_slave_1
[  209.782668][ T6547] veth1_macvtap: left promiscuous mode
[  209.788288][ T6547] veth0_macvtap: left promiscuous mode
[  209.793822][ T6547] veth1_vlan: left promiscuous mode
[  209.799125][ T6547] veth0_vlan: left promiscuous mode
[  209.886790][ T6547] team0 (unregistering): Port device team_slave_1 removed
[  209.897587][ T6547] team0 (unregistering): Port device team_slave_0 removed
[  209.950931][T13165] 9pnet_fd: Insufficient options for proto=fd
[  210.026153][T13176] loop1: detected capacity change from 0 to 512
[  210.038687][T13072] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  210.048012][T13072] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  210.057159][T13072] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  210.067580][T13072] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  210.097382][   T29] audit: type=1400 audit(2000000027.759:5293): avc:  denied  { listen } for  pid=13179 comm="syz.1.2911" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  210.105590][T13072] 8021q: adding VLAN 0 to HW filter on device bond0
[  210.129569][T13072] 8021q: adding VLAN 0 to HW filter on device team0
[  210.138926][ T3163] bridge0: port 1(bridge_slave_0) entered blocking state
[  210.146040][ T3163] bridge0: port 1(bridge_slave_0) entered forwarding state
[  210.157922][ T3170] bridge0: port 2(bridge_slave_1) entered blocking state
[  210.165045][ T3170] bridge0: port 2(bridge_slave_1) entered forwarding state
[  210.183270][T13072] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  210.193664][T13072] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  210.221665][T13190] loop1: detected capacity change from 0 to 1024
[  210.237536][T13190] loop1: detected capacity change from 0 to 164
[  210.277167][T13072] 8021q: adding VLAN 0 to HW filter on device batadv0
[  210.353680][T13072] veth0_vlan: entered promiscuous mode
[  210.365254][T13072] veth1_vlan: entered promiscuous mode
[  210.382567][T13072] veth0_macvtap: entered promiscuous mode
[  210.395420][T13072] veth1_macvtap: entered promiscuous mode
[  210.408450][T13072] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  210.419149][T13072] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  210.429123][T13072] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  210.439696][T13072] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  210.449589][T13072] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  210.460055][T13072] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  210.469937][T13072] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  210.480417][T13072] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  210.490358][T13072] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  210.500854][T13072] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  210.510688][T13072] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  210.521111][T13072] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  210.535900][T13072] batman_adv: batadv0: Interface activated: batadv_slave_0
[  210.548786][T13072] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  210.559484][T13072] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  210.569381][T13072] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  210.579854][T13072] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  210.589831][T13072] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  210.600269][T13072] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  210.610111][T13072] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  210.620532][T13072] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  210.630362][T13072] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  210.640818][T13072] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  210.650692][T13072] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  210.661125][T13072] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  210.676086][T13072] batman_adv: batadv0: Interface activated: batadv_slave_1
[  210.685270][T13203] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=17940 sclass=netlink_route_socket pid=13203 comm=syz.0.2915
[  210.687725][T13072] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  210.707038][T13072] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  210.715812][T13072] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  210.724586][T13072] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  210.743096][T13205] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2916'.
[  210.786059][T13208] 9pnet_fd: Insufficient options for proto=fd
[  210.828413][T13214] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=274 sclass=netlink_route_socket pid=13214 comm=syz.3.2918
[  210.843647][T13214] loop3: detected capacity change from 0 to 128
[  210.865968][T13214] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  210.873382][T13214] vhci_hcd: default hub control req: 0000 v0000 i0000 l124
[  210.917745][T13223] loop3: detected capacity change from 0 to 512
[  210.938207][T13223] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  210.978598][T13223] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0
[  210.989216][T13223] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  210.998777][T13223] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.2920: Failed to acquire dquot type 0
[  211.231942][T13253] syz.3.2928 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  211.264008][T13257] loop3: detected capacity change from 0 to 1024
[  211.270583][T13257] EXT4-fs: Ignoring removed orlov option
[  211.276950][T13257] EXT4-fs: Ignoring removed nomblk_io_submit option
[  211.351728][T13268] loop3: detected capacity change from 0 to 512
[  211.365419][T13268] ext4 filesystem being mounted at /8/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  211.379199][T13268] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0
[  211.389657][T13268] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  211.399108][T13268] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.2934: Failed to acquire dquot type 0
[  211.434774][T13274] loop0: detected capacity change from 0 to 512
[  211.441319][T13274] ext2: Bad value for 'commit'
[  211.449205][   T29] audit: type=1326 audit(2000000029.109:5294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13273 comm="syz.0.2936" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa557665f19 code=0x0
[  211.529216][T13276] loop3: detected capacity change from 0 to 1024
[  211.536464][T13276] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  211.547409][T13276] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  211.555908][T13276] EXT4-fs (loop3): orphan cleanup on readonly fs
[  211.562758][T13276] EXT4-fs error (device loop3): __ext4_get_inode_loc:4436: comm syz.3.2937: Invalid inode table block 0 in block_group 0
[  211.575565][T13276] EXT4-fs (loop3): Remounting filesystem read-only
[  211.582149][T13276] Quota error (device loop3): write_blk: dquota write failed
[  211.589614][T13276] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  211.599652][T13276] EXT4-fs (loop3): 1 truncate cleaned up
[  211.605772][T13276] SELinux: (dev loop3, type ext4) getxattr errno 5
[  211.618199][T13276] loop3: detected capacity change from 0 to 164
[  212.007982][T13292] netlink: 'syz.1.2940': attribute type 7 has an invalid length.
[  212.204469][T13310] loop1: detected capacity change from 0 to 512
[  212.239154][T13324] FAULT_INJECTION: forcing a failure.
[  212.239154][T13324] name failslab, interval 1, probability 0, space 0, times 0
[  212.251830][T13324] CPU: 1 UID: 0 PID: 13324 Comm: syz.1.2943 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  212.262304][T13324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  212.272369][T13324] Call Trace:
[  212.275643][T13324]  <TASK>
[  212.278567][T13324]  dump_stack_lvl+0xf2/0x150
[  212.283154][T13324]  dump_stack+0x15/0x20
[  212.287368][T13324]  should_fail_ex+0x229/0x230
[  212.292130][T13324]  ? anon_vma_fork+0x12c/0x2d0
[  212.296906][T13324]  should_failslab+0x8f/0xb0
[  212.301517][T13324]  kmem_cache_alloc_noprof+0x4c/0x290
[  212.306977][T13324]  anon_vma_fork+0x12c/0x2d0
[  212.311576][T13324]  copy_mm+0x680/0x10e0
[  212.315741][T13324]  copy_process+0xee1/0x1f90
[  212.320333][T13324]  kernel_clone+0x167/0x5e0
[  212.324904][T13324]  ? vfs_write+0x5a5/0x900
[  212.329386][T13324]  __x64_sys_clone+0xe8/0x120
[  212.334138][T13324]  x64_sys_call+0x2dc4/0x2e00
[  212.338849][T13324]  do_syscall_64+0xc9/0x1c0
[  212.343348][T13324]  ? clear_bhb_loop+0x55/0xb0
[  212.348107][T13324]  ? clear_bhb_loop+0x55/0xb0
[  212.352865][T13324]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.358854][T13324] RIP: 0033:0x7fb72d665f19
[  212.363272][T13324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  212.382893][T13324] RSP: 002b:00007fb72c8e6ff8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  212.391289][T13324] RAX: ffffffffffffffda RBX: 00007fb72d7f5f60 RCX: 00007fb72d665f19
[  212.399310][T13324] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  212.407265][T13324] RBP: 00007fb72c8e70a0 R08: 0000000000000000 R09: 0000000000000000
[  212.415237][T13324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  212.423190][T13324] R13: 000000000000000b R14: 00007fb72d7f5f60 R15: 00007ffd9344b368
[  212.431148][T13324]  </TASK>
[  212.541608][T13342] loop3: detected capacity change from 0 to 128
[  212.567411][T13342] vfat: Unknown parameter '`'
[  213.046248][T13431] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2954'.
[  213.055249][T13432] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2954'.
[  213.117362][T13429] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2953'.
[  213.175891][T13439] 9pnet_fd: Insufficient options for proto=fd
[  213.353444][T13469] loop4: detected capacity change from 0 to 512
[  213.361353][T13469] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.2965: casefold flag without casefold feature
[  213.405586][T13469] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.2965: couldn't read orphan inode 15 (err -117)
[  213.448363][T13475] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2966'.
[  213.496194][T13494] 9pnet_fd: Insufficient options for proto=fd
[  213.555391][T13504] loop1: detected capacity change from 0 to 512
[  213.634796][T13512] tipc: Started in network mode
[  213.639702][T13512] tipc: Node identity ac1414aa, cluster identity 4711
[  213.657485][T13515] loop1: detected capacity change from 0 to 128
[  213.667706][T13512] tipc: Enabled bearer <udp:syz2>, priority 10
[  213.682995][T13515] loop1: detected capacity change from 0 to 512
[  213.696679][T13515] EXT4-fs: Ignoring removed nobh option
[  213.702817][T13515] ext4: Unknown parameter 'lazytime"uid'
[  213.732150][T13522] FAULT_INJECTION: forcing a failure.
[  213.732150][T13522] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  213.745278][T13522] CPU: 1 UID: 0 PID: 13522 Comm: syz.2.2980 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  213.755709][T13522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  213.765812][T13522] Call Trace:
[  213.769079][T13522]  <TASK>
[  213.771990][T13522]  dump_stack_lvl+0xf2/0x150
[  213.776558][T13522]  dump_stack+0x15/0x20
[  213.780690][T13522]  should_fail_ex+0x229/0x230
[  213.785429][T13522]  should_fail+0xb/0x10
[  213.789582][T13522]  should_fail_usercopy+0x1a/0x20
[  213.794671][T13522]  _copy_to_iter+0x246/0xaf0
[  213.799275][T13522]  ? __virt_addr_valid+0x1ed/0x250
[  213.804377][T13522]  ? __check_object_size+0x35b/0x510
[  213.809654][T13522]  ? __pfx_simple_copy_to_iter+0x10/0x10
[  213.815344][T13522]  __skb_datagram_iter+0xce/0x5c0
[  213.820362][T13522]  skb_copy_datagram_iter+0x41/0x130
[  213.825710][T13522]  netlink_recvmsg+0x1a4/0x780
[  213.830466][T13522]  ? __pfx_netlink_recvmsg+0x10/0x10
[  213.835742][T13522]  sock_recvmsg+0x13f/0x170
[  213.840234][T13522]  ____sys_recvmsg+0xf9/0x280
[  213.844910][T13522]  do_recvmmsg+0x2eb/0x720
[  213.849371][T13522]  __x64_sys_recvmmsg+0xf9/0x170
[  213.854372][T13522]  x64_sys_call+0x1b8b/0x2e00
[  213.859153][T13522]  do_syscall_64+0xc9/0x1c0
[  213.863678][T13522]  ? clear_bhb_loop+0x55/0xb0
[  213.868340][T13522]  ? clear_bhb_loop+0x55/0xb0
[  213.873048][T13522]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.878963][T13522] RIP: 0033:0x7f1e09d35f19
[  213.883361][T13522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  213.902954][T13522] RSP: 002b:00007f1e08fb7048 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  213.911420][T13522] RAX: ffffffffffffffda RBX: 00007f1e09ec5f60 RCX: 00007f1e09d35f19
[  213.919414][T13522] RDX: 04000000000003b4 RSI: 00000000200037c0 RDI: 0000000000000003
[  213.927370][T13522] RBP: 00007f1e08fb70a0 R08: 0000000020003700 R09: 0000000000000000
[  213.935421][T13522] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  213.943374][T13522] R13: 000000000000000b R14: 00007f1e09ec5f60 R15: 00007ffff85c5d18
[  213.951334][T13522]  </TASK>
[  213.955650][    C1] eth0: bad gso: type: 1, size: 1408
[  213.980174][T13529] FAULT_INJECTION: forcing a failure.
[  213.980174][T13529] name failslab, interval 1, probability 0, space 0, times 0
[  213.992856][T13529] CPU: 0 UID: 0 PID: 13529 Comm: syz.3.2983 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  214.003306][T13529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  214.013452][T13529] Call Trace:
[  214.016721][T13529]  <TASK>
[  214.019711][T13529]  dump_stack_lvl+0xf2/0x150
[  214.024318][T13529]  dump_stack+0x15/0x20
[  214.028457][T13529]  should_fail_ex+0x229/0x230
[  214.033158][T13529]  ? __anon_vma_prepare+0xcf/0x310
[  214.038258][T13529]  should_failslab+0x8f/0xb0
[  214.042843][T13529]  kmem_cache_alloc_noprof+0x4c/0x290
[  214.048242][T13529]  __anon_vma_prepare+0xcf/0x310
[  214.053191][T13529]  ? do_wp_page+0xfb8/0x22c0
[  214.057778][T13529]  do_wp_page+0xfc0/0x22c0
[  214.062222][T13529]  ? __rcu_read_lock+0x36/0x50
[  214.066975][T13529]  ? __rcu_read_lock+0x36/0x50
[  214.071726][T13529]  handle_mm_fault+0xd8b/0x28c0
[  214.076601][T13529]  exc_page_fault+0x3b9/0x650
[  214.081272][T13529]  asm_exc_page_fault+0x26/0x30
[  214.086180][T13529] RIP: 0033:0x7f111823b523
[  214.090590][T13529] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  214.110182][T13529] RSP: 002b:00007f11175f64b0 EFLAGS: 00010202
[  214.116273][T13529] RAX: 0000000000000400 RBX: 00007f11175f6550 RCX: 00007f110f1b6000
[  214.124346][T13529] RDX: 00007f11175f66f0 RSI: 0000000000000000 RDI: 00007f11175f65f0
[  214.132347][T13529] RBP: 00000000000000f9 R08: 000000000000000a R09: 00000000000003ab
[  214.140301][T13529] R10: 00000000000003c4 R11: 00007f11175f6550 R12: 0000000000000001
[  214.148321][T13529] R13: 00007f11183f5fa0 R14: 0000000000000020 R15: 00007f11175f65f0
[  214.156280][T13529]  </TASK>
[  214.159323][T13529] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  214.168911][T13535] 9pnet_fd: Insufficient options for proto=fd
[  214.183904][T13529] loop3: detected capacity change from 0 to 512
[  214.210723][T13529] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  214.223614][T13529] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #15: comm syz.3.2983: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 24833, max 4(4), depth 0(0)
[  214.243477][T13529] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.2983: couldn't read orphan inode 15 (err -117)
[  214.256081][T13529] ext2 filesystem being mounted at /17/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  214.290727][T13545] loop0: detected capacity change from 0 to 512
[  214.305563][T13545] ext4 filesystem being mounted at /72/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  214.345000][T13545] EXT4-fs error (device loop0): ext4_acquire_dquot:6848: comm syz.0.2987: Failed to acquire dquot type 0
[  214.406929][T13562] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2992'.
[  214.456101][T13565] FAULT_INJECTION: forcing a failure.
[  214.456101][T13565] name failslab, interval 1, probability 0, space 0, times 0
[  214.468785][T13565] CPU: 1 UID: 0 PID: 13565 Comm: syz.4.2993 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  214.479315][T13565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  214.489359][T13565] Call Trace:
[  214.492625][T13565]  <TASK>
[  214.495545][T13565]  dump_stack_lvl+0xf2/0x150
[  214.500125][T13565]  dump_stack+0x15/0x20
[  214.504268][T13565]  should_fail_ex+0x229/0x230
[  214.508942][T13565]  ? proc_alloc_inode+0x34/0x90
[  214.513830][T13565]  should_failslab+0x8f/0xb0
[  214.518421][T13565]  kmem_cache_alloc_lru_noprof+0x51/0x2a0
[  214.524164][T13565]  ? __d_lookup_rcu+0x25b/0x2a0
[  214.529065][T13565]  proc_alloc_inode+0x34/0x90
[  214.533754][T13565]  ? __pfx_proc_alloc_inode+0x10/0x10
[  214.539122][T13565]  alloc_inode+0x3c/0x160
[  214.543528][T13565]  new_inode+0x1e/0x100
[  214.547743][T13565]  proc_pid_make_inode+0x1d/0xd0
[  214.552670][T13565]  proc_pident_instantiate+0x44/0x180
[  214.558029][T13565]  proc_pident_lookup+0x112/0x180
[  214.563040][T13565]  proc_tgid_base_lookup+0x2b/0x40
[  214.568213][T13565]  __lookup_slow+0x184/0x250
[  214.572839][T13565]  lookup_slow+0x3c/0x60
[  214.577150][T13565]  link_path_walk+0x69e/0x820
[  214.581816][T13565]  path_openat+0x1aa/0x1f10
[  214.586363][T13565]  do_filp_open+0xf7/0x200
[  214.590861][T13565]  ? __pfx_kfree_link+0x10/0x10
[  214.595783][T13565]  do_sys_openat2+0xab/0x120
[  214.600390][T13565]  __x64_sys_openat+0xf3/0x120
[  214.605186][T13565]  x64_sys_call+0x1ac/0x2e00
[  214.609770][T13565]  do_syscall_64+0xc9/0x1c0
[  214.614264][T13565]  ? clear_bhb_loop+0x55/0xb0
[  214.618929][T13565]  ? clear_bhb_loop+0x55/0xb0
[  214.623598][T13565]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.629538][T13565] RIP: 0033:0x7fe4b1724950
[  214.633995][T13565] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 79 8d 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 cc 8d 02 00 8b 44
[  214.653625][T13565] RSP: 002b:00007fe4b09a6f20 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  214.662083][T13565] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fe4b1724950
[  214.670829][T13565] RDX: 0000000000000002 RSI: 00007fe4b09a6fb0 RDI: 00000000ffffff9c
[  214.678789][T13565] RBP: 00007fe4b09a6fb0 R08: 0000000000000000 R09: 0000000000000000
[  214.686751][T13565] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  214.694740][T13565] R13: 000000000000000b R14: 00007fe4b18b5f60 R15: 00007ffe5f9d57b8
[  214.702710][T13565]  </TASK>
[  214.710196][   T24] tipc: Node number set to 2886997162
[  214.744384][T13573] loop0: detected capacity change from 0 to 128
[  214.768575][T13575] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2996'.
[  214.780327][T13575] netlink: 18 bytes leftover after parsing attributes in process `syz.4.2996'.
[  214.793645][T13575] bridge0: entered promiscuous mode
[  214.802667][T13575] bridge0: left promiscuous mode
[  214.809464][T13578] 9pnet_fd: Insufficient options for proto=fd
[  214.832479][T13581] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2996'.
[  214.841413][T13581] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2996'.
[  214.891980][T13581] loop4: detected capacity change from 0 to 8192
[  214.911475][T13575] FAT-fs (loop4): error, clusters badly computed (2 != 1)
[  214.918628][T13575] FAT-fs (loop4): Filesystem has been set read-only
[  214.933098][T13585] FAULT_INJECTION: forcing a failure.
[  214.933098][T13585] name failslab, interval 1, probability 0, space 0, times 0
[  214.945810][T13585] CPU: 1 UID: 0 PID: 13585 Comm: syz.0.2999 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  214.956420][T13585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  214.966461][T13585] Call Trace:
[  214.969727][T13585]  <TASK>
[  214.972647][T13585]  dump_stack_lvl+0xf2/0x150
[  214.977277][T13585]  dump_stack+0x15/0x20
[  214.981421][T13585]  should_fail_ex+0x229/0x230
[  214.986209][T13585]  ? __kernfs_new_node+0x6a/0x380
[  214.991230][T13585]  should_failslab+0x8f/0xb0
[  214.995855][T13585]  kmem_cache_alloc_noprof+0x4c/0x290
[  215.001316][T13585]  __kernfs_new_node+0x6a/0x380
[  215.006156][T13585]  ? rb_insert_color+0x284/0x290
[  215.011154][T13585]  ? up_write+0x30/0xf0
[  215.015393][T13585]  ? kernfs_activate+0x256/0x270
[  215.020400][T13585]  kernfs_new_node+0xc8/0x140
[  215.025067][T13585]  __kernfs_create_file+0x49/0x180
[  215.030290][T13585]  ? __pfx_slab_attr_store+0x10/0x10
[  215.035578][T13585]  sysfs_add_file_mode_ns+0x136/0x1c0
[  215.041024][T13585]  internal_create_group+0x464/0x9b0
[  215.046301][T13585]  sysfs_create_group+0x1f/0x30
[  215.051194][T13585]  sysfs_slab_add+0x157/0x290
[  215.055918][T13585]  __kmem_cache_create+0x45e/0x5f0
[  215.061019][T13585]  ? kmem_cache_alloc_noprof+0x10c/0x290
[  215.066641][T13585]  kmem_cache_create_usercopy+0x150/0x2c0
[  215.072398][T13585]  p9_client_create+0x81c/0xa80
[  215.077243][T13585]  v9fs_session_init+0xf9/0xda0
[  215.082080][T13585]  ? ___slab_alloc+0x2b7/0x980
[  215.086836][T13585]  ? __rcu_read_unlock+0x4e/0x70
[  215.091759][T13585]  ? v9fs_mount+0x53/0x560
[  215.096193][T13585]  ? v9fs_mount+0x53/0x560
[  215.100774][T13585]  v9fs_mount+0x69/0x560
[  215.105010][T13585]  ? __pfx_v9fs_mount+0x10/0x10
[  215.109892][T13585]  legacy_get_tree+0x77/0xd0
[  215.114476][T13585]  vfs_get_tree+0x56/0x1d0
[  215.118877][T13585]  do_new_mount+0x227/0x690
[  215.123414][T13585]  path_mount+0x49b/0xb30
[  215.127828][T13585]  __se_sys_mount+0x27c/0x2d0
[  215.132501][T13585]  __x64_sys_mount+0x67/0x80
[  215.137111][T13585]  x64_sys_call+0xd11/0x2e00
[  215.141698][T13585]  do_syscall_64+0xc9/0x1c0
[  215.146189][T13585]  ? clear_bhb_loop+0x55/0xb0
[  215.150853][T13585]  ? clear_bhb_loop+0x55/0xb0
[  215.155538][T13585]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.161458][T13585] RIP: 0033:0x7fa557665f19
[  215.165859][T13585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  215.185547][T13585] RSP: 002b:00007fa5568e7048 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  215.193944][T13585] RAX: ffffffffffffffda RBX: 00007fa5577f5f60 RCX: 00007fa557665f19
[  215.201907][T13585] RDX: 00000000200000c0 RSI: 0000000020000080 RDI: 0000000000000000
[  215.209865][T13585] RBP: 00007fa5568e70a0 R08: 00000000200004c0 R09: 0000000000000000
[  215.217823][T13585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  215.225782][T13585] R13: 000000000000000b R14: 00007fa5577f5f60 R15: 00007ffe494d3598
[  215.233747][T13585]  </TASK>
[  215.254128][T13585] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[  215.262056][T13585] CPU: 0 UID: 0 PID: 13585 Comm: syz.0.2999 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  215.272569][T13585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  215.282612][T13585] Call Trace:
[  215.285876][T13585]  <TASK>
[  215.288793][T13585]  dump_stack_lvl+0xf2/0x150
[  215.293374][T13585]  dump_stack+0x15/0x20
[  215.297518][T13585]  kmem_cache_create_usercopy+0x239/0x2c0
[  215.303271][T13585]  p9_client_create+0x81c/0xa80
[  215.308189][T13585]  v9fs_session_init+0xf9/0xda0
[  215.313030][T13585]  ? ___slab_alloc+0x2b7/0x980
[  215.317794][T13585]  ? __rcu_read_unlock+0x4e/0x70
[  215.322806][T13585]  ? v9fs_mount+0x53/0x560
[  215.327233][T13585]  ? v9fs_mount+0x53/0x560
[  215.331640][T13585]  v9fs_mount+0x69/0x560
[  215.335872][T13585]  ? __pfx_v9fs_mount+0x10/0x10
[  215.340726][T13585]  legacy_get_tree+0x77/0xd0
[  215.345331][T13585]  vfs_get_tree+0x56/0x1d0
[  215.349871][T13585]  do_new_mount+0x227/0x690
[  215.354403][T13585]  path_mount+0x49b/0xb30
[  215.358820][T13585]  __se_sys_mount+0x27c/0x2d0
[  215.363567][T13585]  __x64_sys_mount+0x67/0x80
[  215.368164][T13585]  x64_sys_call+0xd11/0x2e00
[  215.372815][T13585]  do_syscall_64+0xc9/0x1c0
[  215.377357][T13585]  ? clear_bhb_loop+0x55/0xb0
[  215.382048][T13585]  ? clear_bhb_loop+0x55/0xb0
[  215.386746][T13585]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.392637][T13585] RIP: 0033:0x7fa557665f19
[  215.397154][T13585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  215.416852][T13585] RSP: 002b:00007fa5568e7048 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  215.425266][T13585] RAX: ffffffffffffffda RBX: 00007fa5577f5f60 RCX: 00007fa557665f19
[  215.433333][T13585] RDX: 00000000200000c0 RSI: 0000000020000080 RDI: 0000000000000000
[  215.441365][T13585] RBP: 00007fa5568e70a0 R08: 00000000200004c0 R09: 0000000000000000
[  215.449323][T13585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  215.457285][T13585] R13: 000000000000000b R14: 00007fa5577f5f60 R15: 00007ffe494d3598
[  215.465274][T13585]  </TASK>
[  215.495414][T13587] ref_ctr going negative. vaddr: 0x20000082, curr val: -20573, delta: 1
[  215.503779][T13587] ref_ctr increment failed for inode: 0x7e offset: 0x0 ref_ctr_offset: 0x82 of mm: 0xffff888103f7a4c0
[  215.531074][T13598] loop0: detected capacity change from 0 to 1024
[  215.558864][   T29] kauditd_printk_skb: 9 callbacks suppressed
[  215.558878][   T29] audit: type=1400 audit(2000000033.219:5302): avc:  denied  { name_connect } for  pid=13603 comm="syz.2.3006" dest=6 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1
[  215.588177][T13606] netlink: 14 bytes leftover after parsing attributes in process `syz.2.3006'.
[  215.603518][   T29] audit: type=1400 audit(2000000033.259:5303): avc:  denied  { append } for  pid=13597 comm="syz.0.3003" name="file1" dev="loop0" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  215.610484][T13598] geneve2: entered allmulticast mode
[  215.637038][T13615] netlink: 8364 bytes leftover after parsing attributes in process `syz.2.3008'.
[  215.637684][T13613] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3007'.
[  215.667081][T13613] loop3: detected capacity change from 0 to 1024
[  215.683251][T13617] 9pnet_fd: Insufficient options for proto=fd
[  215.744109][T13622] netlink: 'syz.3.3010': attribute type 12 has an invalid length.
[  215.892337][T13646] loop0: detected capacity change from 0 to 1024
[  215.899820][T13646] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  215.912312][T13646] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  215.920866][T13646] EXT4-fs (loop0): orphan cleanup on readonly fs
[  215.928937][T13646] EXT4-fs error (device loop0): __ext4_get_inode_loc:4436: comm syz.0.3019: Invalid inode table block 0 in block_group 0
[  215.941729][T13646] EXT4-fs (loop0): Remounting filesystem read-only
[  215.948841][T13646] Quota error (device loop0): write_blk: dquota write failed
[  215.956537][T13646] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  215.970234][T13646] EXT4-fs (loop0): 1 truncate cleaned up
[  215.977469][T13646] SELinux: (dev loop0, type ext4) getxattr errno 5
[  215.985196][T13650] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3020'.
[  216.009285][T13652] 9pnet_fd: Insufficient options for proto=fd
[  216.010346][T13646] loop0: detected capacity change from 0 to 164
[  216.037392][T13646] bio_check_eod: 49451 callbacks suppressed
[  216.037405][T13646] syz.0.3019: attempt to access beyond end of device
[  216.037405][T13646] loop0: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  216.057482][T13646] syz.0.3019: attempt to access beyond end of device
[  216.057482][T13646] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  216.072650][T13646] syz.0.3019: attempt to access beyond end of device
[  216.072650][T13646] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  216.087988][T13646] syz.0.3019: attempt to access beyond end of device
[  216.087988][T13646] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  216.101920][T13646] syz.0.3019: attempt to access beyond end of device
[  216.101920][T13646] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  216.119469][T13646] syz.0.3019: attempt to access beyond end of device
[  216.119469][T13646] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  216.133167][T13646] syz.0.3019: attempt to access beyond end of device
[  216.133167][T13646] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  216.149496][T13646] syz.0.3019: attempt to access beyond end of device
[  216.149496][T13646] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  216.163335][T13646] syz.0.3019: attempt to access beyond end of device
[  216.163335][T13646] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  216.178510][T13646] syz.0.3019: attempt to access beyond end of device
[  216.178510][T13646] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  216.286805][T13669] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3027'.
[  216.322613][T13674] loop3: detected capacity change from 0 to 512
[  216.345181][T13674] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.3029: corrupted in-inode xattr: e_name out of bounds
[  216.381668][T13680] FAULT_INJECTION: forcing a failure.
[  216.381668][T13680] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  216.394815][T13680] CPU: 0 UID: 0 PID: 13680 Comm: syz.2.3031 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  216.405223][T13680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  216.415272][T13680] Call Trace:
[  216.418536][T13680]  <TASK>
[  216.421507][T13680]  dump_stack_lvl+0xf2/0x150
[  216.426090][T13680]  dump_stack+0x15/0x20
[  216.430237][T13680]  should_fail_ex+0x229/0x230
[  216.434956][T13680]  should_fail+0xb/0x10
[  216.439133][T13680]  should_fail_usercopy+0x1a/0x20
[  216.444186][T13680]  _copy_to_user+0x1e/0xa0
[  216.448652][T13680]  simple_read_from_buffer+0xa0/0x110
[  216.454078][T13680]  proc_fail_nth_read+0xfc/0x140
[  216.459102][T13680]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  216.464698][T13680]  vfs_read+0x1a2/0x6e0
[  216.468853][T13680]  ? __rcu_read_unlock+0x4e/0x70
[  216.473776][T13680]  ? __fget_files+0x1da/0x210
[  216.478440][T13680]  ksys_read+0xeb/0x1b0
[  216.482657][T13680]  __x64_sys_read+0x42/0x50
[  216.487227][T13680]  x64_sys_call+0x2a36/0x2e00
[  216.491894][T13680]  do_syscall_64+0xc9/0x1c0
[  216.496459][T13680]  ? clear_bhb_loop+0x55/0xb0
[  216.501148][T13680]  ? clear_bhb_loop+0x55/0xb0
[  216.505810][T13680]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.511797][T13680] RIP: 0033:0x7f1e09d349fc
[  216.516200][T13680] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  216.535875][T13680] RSP: 002b:00007f1e08fb7040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  216.544418][T13680] RAX: ffffffffffffffda RBX: 00007f1e09ec5f60 RCX: 00007f1e09d349fc
[  216.552432][T13680] RDX: 000000000000000f RSI: 00007f1e08fb70b0 RDI: 0000000000000004
[  216.560412][T13680] RBP: 00007f1e08fb70a0 R08: 0000000000000000 R09: 0000000000000000
[  216.568389][T13680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  216.576358][T13680] R13: 000000000000000b R14: 00007f1e09ec5f60 R15: 00007ffff85c5d18
[  216.584321][T13680]  </TASK>
[  216.599448][T13674] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.3029: couldn't read orphan inode 15 (err -117)
[  216.634068][T13674] EXT4-fs error (device loop3): ext4_add_entry:2435: inode #2: comm syz.3.3029: Directory hole found for htree leaf block 0
[  216.660686][T13684] 9pnet_fd: Insufficient options for proto=fd
[  216.681133][T13674] EXT4-fs error (device loop3): ext4_add_entry:2435: inode #2: comm syz.3.3029: Directory hole found for htree leaf block 0
[  216.691424][   T29] audit: type=1400 audit(2000000034.339:5304): avc:  denied  { map } for  pid=13673 comm="syz.3.3029" path="socket:[48681]" dev="sockfs" ino=48681 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  216.718448][   T29] audit: type=1400 audit(2000000034.339:5305): avc:  denied  { accept } for  pid=13673 comm="syz.3.3029" path="socket:[48681]" dev="sockfs" ino=48681 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  216.755563][T13690] loop1: detected capacity change from 0 to 512
[  216.826451][T13698] loop3: detected capacity change from 0 to 128
[  216.845398][T13698] ext4 filesystem being mounted at /28/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  216.936478][T13709] loop3: detected capacity change from 0 to 512
[  216.958920][T13709] ext4 filesystem being mounted at /29/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  216.997322][T13725] loop0: detected capacity change from 0 to 512
[  217.007921][T13709] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0
[  217.015212][T13725] ext4 filesystem being mounted at /86/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  217.018302][T13709] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  217.038082][T13709] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.3041: Failed to acquire dquot type 0
[  217.073804][T13740] loop3: detected capacity change from 0 to 512
[  217.081414][T13740] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.3047: corrupted in-inode xattr: e_name out of bounds
[  217.096350][T13740] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.3047: couldn't read orphan inode 15 (err -117)
[  217.113574][T13740] EXT4-fs error (device loop3): ext4_add_entry:2435: inode #2: comm syz.3.3047: Directory hole found for htree leaf block 0
[  217.132347][T13740] EXT4-fs error (device loop3): ext4_add_entry:2435: inode #2: comm syz.3.3047: Directory hole found for htree leaf block 0
[  217.158852][   T29] audit: type=1400 audit(2000000034.819:5306): avc:  denied  { getopt } for  pid=13743 comm="syz.3.3048" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  217.407710][T13753] 9pnet_fd: Insufficient options for proto=fd
[  217.509995][T13757] loop1: detected capacity change from 0 to 1024
[  217.548419][T13757] loop1: detected capacity change from 0 to 164
[  217.940356][T13765] loop4: detected capacity change from 0 to 512
[  217.957853][   T29] audit: type=1326 audit(2000000035.621:5307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13768 comm="syz.2.3057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e09d35f19 code=0x7ffc0000
[  218.020065][T13765] ext4 filesystem being mounted at /22/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  218.109219][T13765] EXT4-fs error (device loop4): ext4_acquire_dquot:6848: comm syz.4.3056: Failed to acquire dquot type 0
[  218.140767][T13784] 9pnet_fd: Insufficient options for proto=fd
[  218.169552][T13788] FAULT_INJECTION: forcing a failure.
[  218.169552][T13788] name failslab, interval 1, probability 0, space 0, times 0
[  218.182213][T13788] CPU: 0 UID: 0 PID: 13788 Comm: syz.4.3062 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  218.192627][T13788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  218.192638][T13788] Call Trace:
[  218.192644][T13788]  <TASK>
[  218.192650][T13788]  dump_stack_lvl+0xf2/0x150
[  218.192670][T13788]  dump_stack+0x15/0x20
[  218.192696][T13788]  should_fail_ex+0x229/0x230
[  218.192718][T13788]  ? __alloc_skb+0x10b/0x310
[  218.192739][T13788]  should_failslab+0x8f/0xb0
[  218.192782][T13788]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  218.237309][T13788]  __alloc_skb+0x10b/0x310
[  218.237406][T13788]  netlink_alloc_large_skb+0xad/0xe0
[  218.237425][T13788]  netlink_sendmsg+0x3b4/0x6e0
[  218.237525][T13788]  ? __pfx_netlink_sendmsg+0x10/0x10
[  218.237670][T13788]  __sock_sendmsg+0x140/0x180
[  218.237687][T13788]  ____sys_sendmsg+0x312/0x410
[  218.237711][T13788]  __sys_sendmsg+0x1e9/0x280
[  218.237739][T13788]  __x64_sys_sendmsg+0x46/0x50
[  218.237824][T13788]  x64_sys_call+0x26f8/0x2e00
[  218.237845][T13788]  do_syscall_64+0xc9/0x1c0
[  218.237860][T13788]  ? clear_bhb_loop+0x55/0xb0
[  218.237929][T13788]  ? clear_bhb_loop+0x55/0xb0
[  218.237944][T13788]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.237981][T13788] RIP: 0033:0x7fe4b1725f19
[  218.237993][T13788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  218.238008][T13788] RSP: 002b:00007fe4b09a7048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  218.238023][T13788] RAX: ffffffffffffffda RBX: 00007fe4b18b5f60 RCX: 00007fe4b1725f19
[  218.238034][T13788] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000004
[  218.238044][T13788] RBP: 00007fe4b09a70a0 R08: 0000000000000000 R09: 0000000000000000
[  218.238055][T13788] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  218.238098][T13788] R13: 000000000000000b R14: 00007fe4b18b5f60 R15: 00007ffe5f9d57b8
[  218.238111][T13788]  </TASK>
[  218.333958][    C0] Adjusting tsc more than 11% (6672083 vs 8464014)
[  218.467099][T13805] loop3: detected capacity change from 0 to 256
[  218.473732][T13805] msdos: Unknown parameter 'ÿÿÿÿ'
[  218.504690][T13809] bond1 (unregistering): Released all slaves
[  218.530951][T13814] loop3: detected capacity change from 0 to 512
[  218.538746][T13814] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.3072: corrupted in-inode xattr: e_name out of bounds
[  218.553346][T13814] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.3072: couldn't read orphan inode 15 (err -117)
[  218.583172][T13814] EXT4-fs error (device loop3): ext4_add_entry:2435: inode #2: comm syz.3.3072: Directory hole found for htree leaf block 0
[  218.601535][T13814] EXT4-fs error (device loop3): ext4_add_entry:2435: inode #2: comm syz.3.3072: Directory hole found for htree leaf block 0
[  218.662639][T13829] 9pnet_fd: Insufficient options for proto=fd
[  219.055501][T13853] netlink: 'syz.2.3084': attribute type 4 has an invalid length.
[  219.063340][T13853] netlink: 'syz.2.3084': attribute type 4 has an invalid length.
[  219.251489][T13871] 9pnet_fd: Insufficient options for proto=fd
[  219.273773][T13880] FAULT_INJECTION: forcing a failure.
[  219.273773][T13880] name failslab, interval 1, probability 0, space 0, times 0
[  219.286466][T13880] CPU: 0 UID: 0 PID: 13880 Comm: syz.4.3093 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  219.296887][T13880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  219.307008][T13880] Call Trace:
[  219.310364][T13880]  <TASK>
[  219.313278][T13880]  dump_stack_lvl+0xf2/0x150
[  219.317905][T13880]  dump_stack+0x15/0x20
[  219.322044][T13880]  should_fail_ex+0x229/0x230
[  219.326742][T13880]  ? kstrdup_const+0x3e/0x50
[  219.331359][T13880]  should_failslab+0x8f/0xb0
[  219.336004][T13880]  __kmalloc_node_track_caller_noprof+0xa6/0x380
[  219.342320][T13880]  kstrdup+0x3a/0x80
[  219.346228][T13880]  kstrdup_const+0x3e/0x50
[  219.350626][T13880]  __kernfs_new_node+0x41/0x380
[  219.355533][T13880]  ? make_kgid+0x115/0x310
[  219.359990][T13880]  ? net_ns_get_ownership+0xae/0xd0
[  219.365173][T13880]  ? __pfx_net_get_ownership+0x10/0x10
[  219.370627][T13880]  kernfs_create_dir_ns+0xc8/0x1b0
[  219.375771][T13880]  sysfs_create_dir_ns+0xd7/0x1e0
[  219.380782][T13880]  kobject_add_internal+0x49e/0x7a0
[  219.386024][T13880]  kobject_add+0xdc/0x160
[  219.390418][T13880]  ? kobject_get+0x99/0xd0
[  219.394858][T13880]  ? kobject_put+0x107/0x180
[  219.399484][T13880]  ? device_add+0x2fa/0x790
[  219.404036][T13880]  device_add+0x309/0x790
[  219.408468][T13880]  netdev_register_kobject+0x100/0x230
[  219.414009][T13880]  register_netdevice+0x910/0xe30
[  219.419040][T13880]  hsr_dev_finalize+0x3bf/0x5a0
[  219.423884][T13880]  hsr_newlink+0x535/0x5e0
[  219.428318][T13880]  ? __pfx_hsr_newlink+0x10/0x10
[  219.433252][T13880]  rtnl_newlink+0xeff/0x1690
[  219.437947][T13880]  ? security_capable+0x64/0x80
[  219.442783][T13880]  ? ns_capable+0x7d/0xb0
[  219.447160][T13880]  ? __pfx_rtnl_newlink+0x10/0x10
[  219.452177][T13880]  rtnetlink_rcv_msg+0x6aa/0x710
[  219.457240][T13880]  ? ref_tracker_free+0x3a5/0x410
[  219.462951][T13880]  ? __dev_queue_xmit+0x161/0x1fe0
[  219.468198][T13880]  netlink_rcv_skb+0x12c/0x230
[  219.472952][T13880]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  219.478469][T13880]  rtnetlink_rcv+0x1c/0x30
[  219.482918][T13880]  netlink_unicast+0x593/0x670
[  219.487671][T13880]  netlink_sendmsg+0x5cc/0x6e0
[  219.492426][T13880]  ? __pfx_netlink_sendmsg+0x10/0x10
[  219.497793][T13880]  __sock_sendmsg+0x140/0x180
[  219.502465][T13880]  ____sys_sendmsg+0x312/0x410
[  219.507268][T13880]  __sys_sendmsg+0x1e9/0x280
[  219.511916][T13880]  __x64_sys_sendmsg+0x46/0x50
[  219.516670][T13880]  x64_sys_call+0x26f8/0x2e00
[  219.521392][T13880]  do_syscall_64+0xc9/0x1c0
[  219.525893][T13880]  ? clear_bhb_loop+0x55/0xb0
[  219.530561][T13880]  ? clear_bhb_loop+0x55/0xb0
[  219.535231][T13880]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.541138][T13880] RIP: 0033:0x7fe4b1725f19
[  219.545536][T13880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  219.565191][T13880] RSP: 002b:00007fe4b09a7048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  219.573689][T13880] RAX: ffffffffffffffda RBX: 00007fe4b18b5f60 RCX: 00007fe4b1725f19
[  219.581646][T13880] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  219.589668][T13880] RBP: 00007fe4b09a70a0 R08: 0000000000000000 R09: 0000000000000000
[  219.597702][T13880] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  219.605658][T13880] R13: 000000000000000b R14: 00007fe4b18b5f60 R15: 00007ffe5f9d57b8
[  219.613637][T13880]  </TASK>
[  219.616710][T13880] kobject: kobject_add_internal failed for hsr1 (error: -12 parent: net)
[  219.619637][T13873] loop0: detected capacity change from 0 to 512
[  219.633569][T13873] EXT4-fs: Ignoring removed mblk_io_submit option
[  219.640311][T13873] EXT4-fs: quotafile must be on filesystem root
[  219.662455][T13887] loop4: detected capacity change from 0 to 512
[  219.680760][T13887] ext4 filesystem being mounted at /26/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  219.692059][T13887] FAULT_INJECTION: forcing a failure.
[  219.692059][T13887] name failslab, interval 1, probability 0, space 0, times 0
[  219.704703][T13887] CPU: 0 UID: 0 PID: 13887 Comm: syz.4.3094 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  219.715189][T13887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  219.725234][T13887] Call Trace:
[  219.728498][T13887]  <TASK>
[  219.731414][T13887]  dump_stack_lvl+0xf2/0x150
[  219.736005][T13887]  dump_stack+0x15/0x20
[  219.740148][T13887]  should_fail_ex+0x229/0x230
[  219.744890][T13887]  ? __alloc_skb+0x10b/0x310
[  219.749468][T13887]  should_failslab+0x8f/0xb0
[  219.754054][T13887]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  219.759865][T13887]  __alloc_skb+0x10b/0x310
[  219.764270][T13887]  xfrm_alloc_compat+0x13d/0xe00
[  219.769252][T13887]  ? try_module_get+0xae/0x1a0
[  219.774005][T13887]  ? __pfx_xfrm_alloc_compat+0x10/0x10
[  219.779494][T13887]  xfrm_send_policy_notify+0x1181/0x1240
[  219.785118][T13887]  ? __pfx_xfrm_send_policy_notify+0x10/0x10
[  219.791088][T13887]  km_policy_notify+0x66/0xb0
[  219.795766][T13887]  pfkey_spdadd+0x8bf/0x900
[  219.800296][T13887]  pfkey_sendmsg+0x6f9/0x970
[  219.804948][T13887]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  219.810105][T13887]  __sock_sendmsg+0x140/0x180
[  219.814830][T13887]  ____sys_sendmsg+0x312/0x410
[  219.819586][T13887]  __sys_sendmmsg+0x269/0x500
[  219.824296][T13887]  __x64_sys_sendmmsg+0x57/0x70
[  219.829163][T13887]  x64_sys_call+0x2b4e/0x2e00
[  219.833830][T13887]  do_syscall_64+0xc9/0x1c0
[  219.838337][T13887]  ? clear_bhb_loop+0x55/0xb0
[  219.843009][T13887]  ? clear_bhb_loop+0x55/0xb0
[  219.848185][T13887]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.854132][T13887] RIP: 0033:0x7fe4b1725f19
[  219.858534][T13887] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  219.878154][T13887] RSP: 002b:00007fe4b09a7048 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  219.886551][T13887] RAX: ffffffffffffffda RBX: 00007fe4b18b5f60 RCX: 00007fe4b1725f19
[  219.894585][T13887] RDX: 00000000000002c8 RSI: 00000000200000c0 RDI: 0000000000000005
[  219.902549][T13887] RBP: 00007fe4b09a70a0 R08: 0000000000000000 R09: 0000000000000000
[  219.910587][T13887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  219.918642][T13887] R13: 000000000000000b R14: 00007fe4b18b5f60 R15: 00007ffe5f9d57b8
[  219.926645][T13887]  </TASK>
[  219.950805][T13899] loop4: detected capacity change from 0 to 512
[  219.966155][T13899] ext4 filesystem being mounted at /27/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  219.981298][T13905] netlink: 'syz.1.3100': attribute type 10 has an invalid length.
[  220.013509][T13910] __nla_validate_parse: 7 callbacks suppressed
[  220.013525][T13910] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3102'.
[  220.016583][T13899] EXT4-fs error (device loop4): ext4_acquire_dquot:6848: comm syz.4.3097: Failed to acquire dquot type 0
[  220.045017][T13914] netlink: 'syz.2.3103': attribute type 7 has an invalid length.
[  220.104071][T13927] FAULT_INJECTION: forcing a failure.
[  220.104071][T13927] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  220.117366][T13927] CPU: 0 UID: 0 PID: 13927 Comm: syz.0.3108 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  220.127834][T13927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  220.137890][T13927] Call Trace:
[  220.141154][T13927]  <TASK>
[  220.144072][T13927]  dump_stack_lvl+0xf2/0x150
[  220.148652][T13927]  dump_stack+0x15/0x20
[  220.152878][T13927]  should_fail_ex+0x229/0x230
[  220.157590][T13927]  should_fail_alloc_page+0xfd/0x110
[  220.162940][T13927]  __alloc_pages_noprof+0x109/0x360
[  220.168157][T13927]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  220.173519][T13927]  folio_alloc_mpol_noprof+0x36/0x70
[  220.178825][T13927]  shmem_get_folio_gfp+0x3eb/0xd80
[  220.184007][T13927]  shmem_write_begin+0xa0/0x1c0
[  220.188983][T13927]  generic_perform_write+0x1b4/0x580
[  220.194306][T13927]  shmem_file_write_iter+0xc8/0xf0
[  220.199425][T13927]  vfs_write+0x78f/0x900
[  220.203704][T13927]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  220.209506][T13927]  ksys_write+0xeb/0x1b0
[  220.213761][T13927]  __x64_sys_write+0x42/0x50
[  220.218467][T13927]  x64_sys_call+0x2a40/0x2e00
[  220.223215][T13927]  do_syscall_64+0xc9/0x1c0
[  220.227704][T13927]  ? clear_bhb_loop+0x55/0xb0
[  220.232381][T13927]  ? clear_bhb_loop+0x55/0xb0
[  220.237172][T13927]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.243059][T13927] RIP: 0033:0x7fa557664a9f
[  220.247535][T13927] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[  220.267217][T13927] RSP: 002b:00007fa5568e6e00 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  220.275712][T13927] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fa557664a9f
[  220.283746][T13927] RDX: 0000000000040000 RSI: 00007fa54e4c7000 RDI: 0000000000000004
[  220.291746][T13927] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000047a
[  220.299768][T13927] R10: 00000000200004c2 R11: 0000000000000293 R12: 0000000000000004
[  220.307741][T13927] R13: 00007fa5568e6f00 R14: 00007fa5568e6ec0 R15: 00007fa54e4c7000
[  220.315702][T13927]  </TASK>
[  220.342707][T13930] 9pnet_fd: Insufficient options for proto=fd
[  220.418511][T13932] loop0: detected capacity change from 0 to 128
[  220.427211][T13932] ext4 filesystem being mounted at /96/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  220.428816][T13940] block device autoloading is deprecated and will be removed.
[  220.517779][T13947] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3115'.
[  220.541118][T13949] FAULT_INJECTION: forcing a failure.
[  220.541118][T13949] name failslab, interval 1, probability 0, space 0, times 0
[  220.552491][T13950] loop4: detected capacity change from 0 to 512
[  220.553883][T13949] CPU: 0 UID: 0 PID: 13949 Comm: syz.2.3116 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  220.570425][T13949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  220.576258][T13950] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  220.580550][T13949] Call Trace:
[  220.580561][T13949]  <TASK>
[  220.580568][T13949]  dump_stack_lvl+0xf2/0x150
[  220.591868][T13950] EXT4-fs (loop4): failed to initialize system zone (-117)
[  220.593518][T13949]  dump_stack+0x15/0x20
[  220.596803][T13950] EXT4-fs (loop4): mount failed
[  220.601097][T13949]  should_fail_ex+0x229/0x230
[  220.601138][T13949]  ? __kernfs_new_node+0x6a/0x380
[  220.626950][T13949]  should_failslab+0x8f/0xb0
[  220.631601][T13949]  kmem_cache_alloc_noprof+0x4c/0x290
[  220.636964][T13949]  ? kstrdup+0x55/0x80
[  220.641019][T13949]  __kernfs_new_node+0x6a/0x380
[  220.645980][T13949]  ? rb_insert_color+0x6a/0x290
[  220.650817][T13949]  ? up_write+0x30/0xf0
[  220.655089][T13949]  ? kernfs_activate+0x256/0x270
[  220.660015][T13949]  kernfs_new_node+0xc8/0x140
[  220.664684][T13949]  kernfs_create_link+0x6c/0x120
[  220.669674][T13949]  sysfs_do_create_link_sd+0x6b/0xf0
[  220.674953][T13949]  sysfs_create_link+0x51/0x70
[  220.679716][T13949]  device_add_class_symlinks+0x159/0x1e0
[  220.685462][T13949]  device_add+0x36c/0x790
[  220.689788][T13949]  netdev_register_kobject+0x100/0x230
[  220.695321][T13949]  register_netdevice+0x910/0xe30
[  220.700382][T13949]  ip6gre_newlink_common+0x25d/0x2e0
[  220.705663][T13949]  ip6erspan_newlink+0x293/0x550
[  220.710679][T13949]  ? __pfx_ip6erspan_newlink+0x10/0x10
[  220.716136][T13949]  rtnl_newlink+0xeff/0x1690
[  220.720738][T13949]  ? __list_del_entry_valid_or_report+0x5f/0xf0
[  220.726969][T13949]  ? _raw_spin_unlock+0x26/0x50
[  220.731923][T13949]  ? __mutex_lock+0x221/0x8e0
[  220.736602][T13949]  ? __pfx_rtnl_newlink+0x10/0x10
[  220.741678][T13949]  rtnetlink_rcv_msg+0x6aa/0x710
[  220.746610][T13949]  ? ref_tracker_free+0x3a5/0x410
[  220.751632][T13949]  ? __dev_queue_xmit+0x161/0x1fe0
[  220.756861][T13949]  netlink_rcv_skb+0x12c/0x230
[  220.761717][T13949]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  220.767242][T13949]  rtnetlink_rcv+0x1c/0x30
[  220.771650][T13949]  netlink_unicast+0x593/0x670
[  220.776407][T13949]  netlink_sendmsg+0x5cc/0x6e0
[  220.781196][T13949]  ? __pfx_netlink_sendmsg+0x10/0x10
[  220.786586][T13949]  __sock_sendmsg+0x140/0x180
[  220.791251][T13949]  ____sys_sendmsg+0x312/0x410
[  220.796041][T13949]  __sys_sendmsg+0x1e9/0x280
[  220.800688][T13949]  __x64_sys_sendmsg+0x46/0x50
[  220.805505][T13949]  x64_sys_call+0x26f8/0x2e00
[  220.810186][T13949]  do_syscall_64+0xc9/0x1c0
[  220.814678][T13949]  ? clear_bhb_loop+0x55/0xb0
[  220.819371][T13949]  ? clear_bhb_loop+0x55/0xb0
[  220.824056][T13949]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.829968][T13949] RIP: 0033:0x7f1e09d35f19
[  220.834368][T13949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  220.853997][T13949] RSP: 002b:00007f1e08fb7048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  220.862401][T13949] RAX: ffffffffffffffda RBX: 00007f1e09ec5f60 RCX: 00007f1e09d35f19
[  220.870369][T13949] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  220.878407][T13949] RBP: 00007f1e08fb70a0 R08: 0000000000000000 R09: 0000000000000000
[  220.886415][T13949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  220.894375][T13949] R13: 000000000000000b R14: 00007f1e09ec5f60 R15: 00007ffff85c5d18
[  220.902426][T13949]  </TASK>
[  220.961729][   T29] kauditd_printk_skb: 15 callbacks suppressed
[  220.961804][   T29] audit: type=1400 audit(2000000038.347:5319): avc:  denied  { shutdown } for  pid=13946 comm="syz.0.3115" laddr=::1 lport=255 faddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  221.012419][T13968] loop0: detected capacity change from 0 to 512
[  221.105238][T13979] loop1: detected capacity change from 0 to 1024
[  221.113122][T13968] EXT4-fs mount: 62 callbacks suppressed
[  221.113136][T13968] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  221.131411][T13968] ext4 filesystem being mounted at /99/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  221.137266][T13977] 9pnet_fd: Insufficient options for proto=fd
[  221.151604][T13979] loop1: detected capacity change from 0 to 164
[  221.219598][T13982] loop3: detected capacity change from 0 to 512
[  221.277036][T13985] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0
[  221.287636][T13985] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[  221.297083][T13985] EXT4-fs error (device loop0): ext4_acquire_dquot:6848: comm syz.0.3118: Failed to acquire dquot type 0
[  221.331930][T13982] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  221.340389][T13982] EXT4-fs (loop3): 1 truncate cleaned up
[  221.346749][T13982] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  221.362670][T13982] hub 9-0:1.0: USB hub found
[  221.367510][T13982] hub 9-0:1.0: 8 ports detected
[  221.380076][T13982] EXT4-fs error (device loop3): ext4_add_entry:2435: inode #2: comm syz.3.3119: Directory hole found for htree leaf block 0
[  221.394262][T13982] EXT4-fs error (device loop3): ext4_add_entry:2435: inode #2: comm syz.3.3119: Directory hole found for htree leaf block 0
[  221.410698][T13979] bio_check_eod: 24734 callbacks suppressed
[  221.410713][T13979] syz.1.3121: attempt to access beyond end of device
[  221.410713][T13979] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[  221.505288][T13979] syz.1.3121: attempt to access beyond end of device
[  221.505288][T13979] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[  221.527282][T13979] syz.1.3121: attempt to access beyond end of device
[  221.527282][T13979] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[  221.542539][T13979] syz.1.3121: attempt to access beyond end of device
[  221.542539][T13979] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[  221.556575][T13979] syz.1.3121: attempt to access beyond end of device
[  221.556575][T13979] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[  221.572076][T13979] syz.1.3121: attempt to access beyond end of device
[  221.572076][T13979] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[  221.573393][T11808] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.587596][T13979] syz.1.3121: attempt to access beyond end of device
[  221.587596][T13979] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[  221.618997][T13979] syz.1.3121: attempt to access beyond end of device
[  221.618997][T13979] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[  221.632656][T13979] syz.1.3121: attempt to access beyond end of device
[  221.632656][T13979] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[  221.646177][T13979] syz.1.3121: attempt to access beyond end of device
[  221.646177][T13979] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[  221.754655][T13999] openvswitch: netlink: ufid size 62 bytes exceeds the range (1, 16)
[  221.762770][T13999] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  221.863117][T14013] loop0: detected capacity change from 0 to 512
[  221.869694][T14013] ext2: Unknown parameter 'noacl'
[  221.933817][T13072] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.959701][T14019] loop3: detected capacity change from 0 to 512
[  221.993850][T14019] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.010922][T14019] ext4 filesystem being mounted at /46/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  222.024549][T14028] 9pnet_fd: Insufficient options for proto=fd
[  222.054916][T14019] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0
[  222.065286][T14019] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  222.074749][T14019] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.3134: Failed to acquire dquot type 0
[  222.093467][T13072] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.150033][T14044] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3141'.
[  222.182112][   T29] audit: type=1400 audit(2000000039.471:5320): avc:  denied  { map } for  pid=14043 comm="syz.2.3141" path="/dev/bus/usb/008/001" dev="devtmpfs" ino=143 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  222.183980][T14046] loop3: detected capacity change from 0 to 4096
[  222.222439][T14046] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.248078][T14056] loop1: detected capacity change from 0 to 512
[  222.280554][   T29] audit: type=1400 audit(2000000039.575:5321): avc:  denied  { ioctl } for  pid=14045 comm="syz.3.3142" path="socket:[49716]" dev="sockfs" ino=49716 ioctlcmd=0x9411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  222.311583][T13072] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.386205][T14064] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3146'.
[  222.395125][T14064] netlink: 'syz.3.3146': attribute type 18 has an invalid length.
[  222.405371][T14064] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  222.414089][T14064] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  222.422861][T14064] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  222.431544][T14064] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  222.441721][T14064] vxlan0: entered promiscuous mode
[  222.458552][   T29] audit: type=1400 audit(2000000039.745:5322): avc:  denied  { setopt } for  pid=14068 comm="syz.1.3147" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  222.491010][T14071] loop1: detected capacity change from 0 to 1024
[  222.527038][T14071] loop1: detected capacity change from 0 to 164
[  222.537407][T14075] 9pnet_fd: Insufficient options for proto=fd
[  222.808411][T14104] FAULT_INJECTION: forcing a failure.
[  222.808411][T14104] name failslab, interval 1, probability 0, space 0, times 0
[  222.821225][T14104] CPU: 0 UID: 0 PID: 14104 Comm: syz.0.3158 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  222.831646][T14104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  222.841701][T14104] Call Trace:
[  222.844974][T14104]  <TASK>
[  222.847962][T14104]  dump_stack_lvl+0xf2/0x150
[  222.852703][T14104]  dump_stack+0x15/0x20
[  222.856978][T14104]  should_fail_ex+0x229/0x230
[  222.861668][T14104]  ? vm_area_dup+0x98/0x130
[  222.866223][T14104]  should_failslab+0x8f/0xb0
[  222.870866][T14104]  kmem_cache_alloc_noprof+0x4c/0x290
[  222.876344][T14104]  vm_area_dup+0x98/0x130
[  222.880740][T14104]  copy_mm+0x60b/0x10e0
[  222.884902][T14104]  copy_process+0xee1/0x1f90
[  222.889552][T14104]  kernel_clone+0x167/0x5e0
[  222.894096][T14104]  __se_sys_clone3+0x1b5/0x1f0
[  222.898894][T14104]  __x64_sys_clone3+0x31/0x40
[  222.903573][T14104]  x64_sys_call+0x11e9/0x2e00
[  222.908274][T14104]  do_syscall_64+0xc9/0x1c0
[  222.912783][T14104]  ? clear_bhb_loop+0x55/0xb0
[  222.917453][T14104]  ? clear_bhb_loop+0x55/0xb0
[  222.922181][T14104]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.928117][T14104] RIP: 0033:0x7fa557665f19
[  222.932589][T14104] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  222.952271][T14104] RSP: 002b:00007fa5568e6f18 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  222.960680][T14104] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fa557665f19
[  222.968652][T14104] RDX: 00007fa5568e6f30 RSI: 0000000000000058 RDI: 00007fa5568e6f30
[  222.976685][T14104] RBP: 00007fa5568e70a0 R08: 0000000000000000 R09: 0000000000000058
[  222.984664][T14104] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  222.992670][T14104] R13: 000000000000000b R14: 00007fa5577f5f60 R15: 00007ffe494d3598
[  223.000723][T14104]  </TASK>
[  223.022418][T14107] loop0: detected capacity change from 0 to 512
[  223.031891][T14107] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz.0.3159: iget: bad extended attribute block 1
[  223.046919][T14107] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.3159: couldn't read orphan inode 15 (err -117)
[  223.060110][T14107] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  223.094060][T11808] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.112525][T14114] loop4: detected capacity change from 0 to 512
[  223.158401][T14114] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  223.175174][T14114] ext4 filesystem being mounted at /39/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  223.209792][T14118] 9pnet_fd: Insufficient options for proto=fd
[  223.259525][T14132] Quota error (device loop4): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0
[  223.269917][T14132] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  223.279403][T14132] EXT4-fs error (device loop4): ext4_acquire_dquot:6848: comm syz.4.3163: Failed to acquire dquot type 0
[  223.293806][T14125] netlink: 'syz.2.3165': attribute type 298 has an invalid length.
[  223.345170][T12777] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.401141][T14152] loop0: detected capacity change from 0 to 512
[  223.408999][T14152] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz.0.3172: iget: bad extended attribute block 1
[  223.423451][T14152] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.3172: couldn't read orphan inode 15 (err -117)
[  223.436265][T14152] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  223.457751][T11808] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.492995][T14158] loop0: detected capacity change from 0 to 128
[  223.545898][    C1] eth0: bad gso: type: 1, size: 1408
[  223.575078][T14164] loop0: detected capacity change from 0 to 2048
[  223.594040][T14164] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  223.619088][T14170] loop3: detected capacity change from 0 to 512
[  223.631534][T14164] dccp_v6_rcv: dropped packet with invalid checksum
[  223.653004][T14170] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  223.682683][T14170] ext4 filesystem being mounted at /55/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  223.740564][T14170] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.3179: Failed to acquire dquot type 0
[  223.771801][T13072] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.835583][T14176] loop3: detected capacity change from 0 to 2048
[  223.880729][T14176] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  223.925946][T13072] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.976803][T14180] 9pnet_fd: Insufficient options for proto=fd
[  224.067574][T14184] loop3: detected capacity change from 0 to 164
[  224.334169][T14192] loop4: detected capacity change from 0 to 512
[  224.356787][T14192] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.3185: iget: bad extended attribute block 1
[  224.398462][T14192] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.3185: couldn't read orphan inode 15 (err -117)
[  224.456362][T14192] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  224.587536][T12777] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.953079][T14214] can0: slcan on pts1.
[  225.011133][T14214] can0 (unregistered): slcan off pts1.
[  225.609089][T11808] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.632546][T14229] usb usb5: usbfs: process 14229 (syz.0.3198) did not claim interface 0 before use
[  225.642593][T14229] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3198'.
[  225.676636][T14233] loop0: detected capacity change from 0 to 512
[  225.684468][T14233] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz.0.3200: iget: bad extended attribute block 1
[  225.697137][T14233] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.3200: couldn't read orphan inode 15 (err -117)
[  225.709476][T14233] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  225.731843][T11808] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.754431][T14236] loop0: detected capacity change from 0 to 128
[  225.824066][T14238] loop0: detected capacity change from 0 to 512
[  225.833721][T14240] loop3: detected capacity change from 0 to 1024
[  225.842958][T14240] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.861084][T14240] syzkaller1: entered promiscuous mode
[  225.866690][T14240] syzkaller1: entered allmulticast mode
[  225.874751][T14238] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.874781][T14240] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3203'.
[  225.905942][T14238] ext4 filesystem being mounted at /115/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  225.958819][T14238] EXT4-fs error (device loop0): ext4_acquire_dquot:6848: comm syz.0.3202: Failed to acquire dquot type 0
[  225.975913][T14248] loop4: detected capacity change from 0 to 164
[  225.988014][T13072] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.003143][T11808] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.107563][T14251] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3205'.
[  226.131553][T14255] loop0: detected capacity change from 0 to 1024
[  226.168980][T14255] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  226.200043][T14255] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  226.230281][T14255] EXT4-fs (loop0): orphan cleanup on readonly fs
[  226.249930][T14255] EXT4-fs error (device loop0): __ext4_get_inode_loc:4436: comm syz.0.3207: Invalid inode table block 0 in block_group 0
[  226.273585][T14262] netlink: 56 bytes leftover after parsing attributes in process `syz.3.3211'.
[  226.294368][T14255] EXT4-fs (loop0): Remounting filesystem read-only
[  226.300934][T14255] __quota_error: 24 callbacks suppressed
[  226.300947][T14255] Quota error (device loop0): write_blk: dquota write failed
[  226.314049][T14255] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  226.346544][T14255] EXT4-fs (loop0): 1 truncate cleaned up
[  226.357072][T14255] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  226.382972][T14255] SELinux: (dev loop0, type ext4) getxattr errno 5
[  226.399142][T14255] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.451610][T14255] loop0: detected capacity change from 0 to 164
[  226.591914][T14248] bio_check_eod: 58530 callbacks suppressed
[  226.591929][T14248] syz.4.3204: attempt to access beyond end of device
[  226.591929][T14248] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  226.593902][T14255] syz.0.3207: attempt to access beyond end of device
[  226.593902][T14255] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  226.608282][T14248] syz.4.3204: attempt to access beyond end of device
[  226.608282][T14248] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  226.626168][T14255] syz.0.3207: attempt to access beyond end of device
[  226.626168][T14255] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  226.653139][T14255] syz.0.3207: attempt to access beyond end of device
[  226.653139][T14255] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  226.685661][T14248] syz.4.3204: attempt to access beyond end of device
[  226.685661][T14248] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  226.705389][T14255] syz.0.3207: attempt to access beyond end of device
[  226.705389][T14255] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  226.734410][T14248] syz.4.3204: attempt to access beyond end of device
[  226.734410][T14248] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  226.749247][T14255] syz.0.3207: attempt to access beyond end of device
[  226.749247][T14255] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  226.775038][T14248] syz.4.3204: attempt to access beyond end of device
[  226.775038][T14248] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  226.892387][T14266] chnl_net:caif_netlink_parms(): no params data found
[  226.978396][T14266] bridge0: port 1(bridge_slave_0) entered blocking state
[  226.985508][T14266] bridge0: port 1(bridge_slave_0) entered disabled state
[  227.006633][T14266] bridge_slave_0: entered allmulticast mode
[  227.020120][T14266] bridge_slave_0: entered promiscuous mode
[  227.037348][T14288] loop4: detected capacity change from 0 to 512
[  227.047590][T14266] bridge0: port 2(bridge_slave_1) entered blocking state
[  227.054730][T14266] bridge0: port 2(bridge_slave_1) entered disabled state
[  227.066423][T14266] bridge_slave_1: entered allmulticast mode
[  227.077632][T14266] bridge_slave_1: entered promiscuous mode
[  227.087299][T14288] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  227.108895][T14288] ext4 filesystem being mounted at /48/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  227.130915][T14294] loop0: detected capacity change from 0 to 128
[  227.155006][T14266] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  227.175026][T14266] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  227.188916][T14294] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  227.213899][T14294] ext4 filesystem being mounted at /121/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  227.225637][T14288] Quota error (device loop4): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0
[  227.236018][T14288] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  227.245457][T14288] EXT4-fs error (device loop4): ext4_acquire_dquot:6848: comm syz.4.3217: Failed to acquire dquot type 0
[  227.265373][T14307] loop3: detected capacity change from 0 to 512
[  227.274907][T14266] team0: Port device team_slave_0 added
[  227.282644][T14294] FAULT_INJECTION: forcing a failure.
[  227.282644][T14294] name failslab, interval 1, probability 0, space 0, times 0
[  227.295363][T14294] CPU: 0 UID: 0 PID: 14294 Comm: syz.0.3219 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  227.305781][T14294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  227.315906][T14294] Call Trace:
[  227.319177][T14294]  <TASK>
[  227.322130][T14294]  dump_stack_lvl+0xf2/0x150
[  227.326809][T14294]  dump_stack+0x15/0x20
[  227.331039][T14294]  should_fail_ex+0x229/0x230
[  227.335722][T14294]  ? __alloc_skb+0x10b/0x310
[  227.340329][T14294]  should_failslab+0x8f/0xb0
[  227.344969][T14294]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  227.350783][T14294]  ? __rtnl_unlock+0x99/0xb0
[  227.355380][T14294]  __alloc_skb+0x10b/0x310
[  227.355562][T14266] team0: Port device team_slave_1 added
[  227.359793][T14294]  netlink_ack+0xef/0x4f0
[  227.369633][T14294]  ? __dev_queue_xmit+0x161/0x1fe0
[  227.374748][T14294]  netlink_rcv_skb+0x19c/0x230
[  227.379572][T14294]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  227.385129][T14294]  rtnetlink_rcv+0x1c/0x30
[  227.389551][T14294]  netlink_unicast+0x593/0x670
[  227.394350][T14294]  netlink_sendmsg+0x5cc/0x6e0
[  227.399140][T14294]  ? __pfx_netlink_sendmsg+0x10/0x10
[  227.404427][T14294]  __sock_sendmsg+0x140/0x180
[  227.409155][T14294]  ____sys_sendmsg+0x312/0x410
[  227.413987][T14294]  __sys_sendmsg+0x1e9/0x280
[  227.418587][T14294]  __x64_sys_sendmsg+0x46/0x50
[  227.423414][T14294]  x64_sys_call+0x26f8/0x2e00
[  227.428099][T14294]  do_syscall_64+0xc9/0x1c0
[  227.432688][T14294]  ? clear_bhb_loop+0x55/0xb0
[  227.437362][T14294]  ? clear_bhb_loop+0x55/0xb0
[  227.442066][T14294]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.447971][T14294] RIP: 0033:0x7fa557665f19
[  227.452429][T14294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  227.472048][T14294] RSP: 002b:00007fa5568e7048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  227.480685][T14294] RAX: ffffffffffffffda RBX: 00007fa5577f5f60 RCX: 00007fa557665f19
[  227.488732][T14294] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000009
[  227.496705][T14294] RBP: 00007fa5568e70a0 R08: 0000000000000000 R09: 0000000000000000
[  227.504669][T14294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  227.505243][T12777] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.512649][T14294] R13: 000000000000000b R14: 00007fa5577f5f60 R15: 00007ffe494d3598
[  227.512670][T14294]  </TASK>
[  227.536027][T14307] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  227.549263][T14307] ext4 filesystem being mounted at /67/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  227.565606][T14266] batman_adv: batadv0: Adding interface: batadv_slave_0
[  227.572546][T14266] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  227.598547][T14266] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  227.599503][T11808] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  227.628381][T14311] loop0: detected capacity change from 0 to 164
[  227.632031][T14307] dccp_invalid_packet: P.type (RESPONSE) not Data || [Data]Ack, while P.X == 0
[  227.659347][T14266] batman_adv: batadv0: Adding interface: batadv_slave_1
[  227.666311][T14266] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  227.692342][T14266] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  227.721045][T14315] loop4: detected capacity change from 0 to 1024
[  227.739906][T14315] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  227.770163][T14315] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  227.778371][T13072] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.788394][T14315] EXT4-fs (loop4): orphan cleanup on readonly fs
[  227.808706][T14315] EXT4-fs error (device loop4): __ext4_get_inode_loc:4436: comm syz.4.3225: Invalid inode table block 0 in block_group 0
[  227.846784][T14266] hsr_slave_0: entered promiscuous mode
[  227.848822][T14315] EXT4-fs (loop4): Remounting filesystem read-only
[  227.854387][T14319] loop3: detected capacity change from 0 to 512
[  227.858901][T14315] Quota error (device loop4): write_blk: dquota write failed
[  227.872594][T14315] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  227.889393][T14266] hsr_slave_1: entered promiscuous mode
[  227.905975][T14266] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  227.917310][T14266] Cannot create hsr debugfs directory
[  227.929296][T14315] EXT4-fs (loop4): 1 truncate cleaned up
[  227.940051][T14319] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  227.965693][T14315] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  227.980124][T14319] ext4 filesystem being mounted at /68/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  227.992968][T14319] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3226'.
[  228.002860][T14315] SELinux: (dev loop4, type ext4) getxattr errno 5
[  228.009630][T14315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.031033][T13072] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.087038][T14266] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  228.118232][T14315] loop4: detected capacity change from 0 to 164
[  228.153472][T14266] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  228.176079][T14325] netlink: 2036 bytes leftover after parsing attributes in process `syz.3.3227'.
[  228.185311][T14325] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3227'.
[  228.194285][T14325] FAULT_INJECTION: forcing a failure.
[  228.194285][T14325] name failslab, interval 1, probability 0, space 0, times 0
[  228.206859][T14325] CPU: 0 UID: 0 PID: 14325 Comm: syz.3.3227 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  228.217271][T14325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  228.227371][T14325] Call Trace:
[  228.230702][T14325]  <TASK>
[  228.233628][T14325]  dump_stack_lvl+0xf2/0x150
[  228.238231][T14325]  dump_stack+0x15/0x20
[  228.242392][T14325]  should_fail_ex+0x229/0x230
[  228.247113][T14325]  ? __sigqueue_alloc+0xf6/0x180
[  228.252108][T14325]  should_failslab+0x8f/0xb0
[  228.256711][T14325]  kmem_cache_alloc_noprof+0x4c/0x290
[  228.262081][T14325]  __sigqueue_alloc+0xf6/0x180
[  228.266874][T14325]  __send_signal_locked+0x139/0x700
[  228.272220][T14325]  send_signal_locked+0x28f/0x3a0
[  228.277233][T14325]  do_send_sig_info+0x9f/0xf0
[  228.281897][T14325]  group_send_sig_info+0x6d/0x90
[  228.286931][T14325]  bpf_send_signal_common+0x1a5/0x230
[  228.292303][T14325]  ? __pfx_bpf_send_signal_thread+0x10/0x10
[  228.298182][T14325]  bpf_send_signal_thread+0x16/0x20
[  228.303423][T14325]  ___bpf_prog_run+0x9ab/0x46c0
[  228.308271][T14325]  __bpf_prog_run32+0x74/0xa0
[  228.313083][T14325]  ? __rcu_read_lock+0x36/0x50
[  228.317831][T14325]  bpf_trace_run1+0xe7/0x1b0
[  228.322413][T14325]  __bpf_trace_netlink_extack+0x1d/0x30
[  228.328012][T14325]  do_trace_netlink_extack+0x92/0xf0
[  228.333282][T14325]  __nla_validate_parse+0x174f/0x1e30
[  228.338726][T14325]  ? should_fail_ex+0xd7/0x230
[  228.343479][T14325]  __nla_parse+0x40/0x60
[  228.347725][T14325]  rtnl_newlink+0x3fd/0x1690
[  228.352383][T14325]  ? rtnl_newlink+0x7a1/0x1690
[  228.357161][T14325]  ? xfd_validate_state+0x46/0xf0
[  228.362291][T14325]  ? __list_del_entry_valid_or_report+0x5f/0xf0
[  228.368648][T14325]  ? _raw_spin_unlock+0x26/0x50
[  228.373494][T14325]  ? __mutex_lock+0x221/0x8e0
[  228.378159][T14325]  ? __pfx_rtnl_newlink+0x10/0x10
[  228.383207][T14325]  rtnetlink_rcv_msg+0x6aa/0x710
[  228.388138][T14325]  ? ref_tracker_free+0x3a5/0x410
[  228.393152][T14325]  ? __dev_queue_xmit+0x161/0x1fe0
[  228.398278][T14325]  ? should_fail_ex+0xd7/0x230
[  228.403034][T14325]  netlink_rcv_skb+0x12c/0x230
[  228.407858][T14325]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  228.413311][T14325]  rtnetlink_rcv+0x1c/0x30
[  228.417722][T14325]  netlink_unicast+0x593/0x670
[  228.422519][T14325]  netlink_sendmsg+0x5cc/0x6e0
[  228.427276][T14325]  ? __pfx_netlink_sendmsg+0x10/0x10
[  228.432594][T14325]  __sock_sendmsg+0x140/0x180
[  228.437335][T14325]  sock_sendmsg+0x96/0xe0
[  228.441652][T14325]  splice_to_socket+0x657/0x9d0
[  228.446500][T14325]  ? __pfx_splice_to_socket+0x10/0x10
[  228.451946][T14325]  do_splice+0x99b/0x1150
[  228.456311][T14325]  ? get_pid_task+0x8e/0xc0
[  228.460866][T14325]  ? proc_fail_nth_write+0x12d/0x160
[  228.466230][T14325]  ? __fget_files+0x1da/0x210
[  228.470924][T14325]  __se_sys_splice+0x24c/0x390
[  228.475681][T14325]  __x64_sys_splice+0x78/0x90
[  228.480412][T14325]  x64_sys_call+0xf5b/0x2e00
[  228.484994][T14325]  do_syscall_64+0xc9/0x1c0
[  228.489524][T14325]  ? clear_bhb_loop+0x55/0xb0
[  228.494191][T14325]  ? clear_bhb_loop+0x55/0xb0
[  228.498851][T14325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.504760][T14325] RIP: 0033:0x7f1118375f19
[  228.509157][T14325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  228.528829][T14325] RSP: 002b:00007f11175d6048 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  228.537226][T14325] RAX: ffffffffffffffda RBX: 00007f1118506038 RCX: 00007f1118375f19
[  228.545182][T14325] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000006
[  228.553180][T14325] RBP: 00007f11175d60a0 R08: 000000000004ffe2 R09: 0000000000000000
[  228.561134][T14325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  228.569141][T14325] R13: 000000000000006e R14: 00007f1118506038 R15: 00007fff0ee695d8
[  228.577130][T14325]  </TASK>
[  228.619223][T14266] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  228.689045][T14266] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  228.750158][T14329] loop0: detected capacity change from 0 to 764
[  228.764485][T14329] rock: directory entry would overflow storage
[  228.770728][T14329] rock: sig=0x4654, size=5, remaining=4
[  228.785903][T14329] loop0: Can't mount, would change RO state
[  228.785992][   T29] ==================================================================
[  228.799883][   T29] BUG: KCSAN: data-race in data_alloc / prb_reserve
[  228.806491][   T29] 
[  228.808806][   T29] write to 0xffffffff86280198 of 8 bytes by task 14329 on cpu 1:
[  228.816515][   T29]  data_alloc+0x291/0x2c0
[  228.820843][   T29]  prb_reserve+0x85e/0xb60
[  228.825253][   T29]  vprintk_store+0x53f/0x810
[  228.829834][   T29]  vprintk_emit+0x10c/0x5e0
[  228.834341][   T29]  vprintk_default+0x26/0x30
[  228.838926][   T29]  vprintk+0x75/0x80
[  228.842818][   T29]  _printk+0x7a/0xa0
[  228.846706][   T29]  logfc+0x2d1/0x2e0
[  228.850598][   T29]  get_tree_bdev+0x23b/0x2e0
[  228.855188][   T29]  isofs_get_tree+0x1c/0x30
[  228.859691][   T29]  vfs_get_tree+0x56/0x1d0
[  228.864096][   T29]  do_new_mount+0x227/0x690
[  228.868595][   T29]  path_mount+0x49b/0xb30
[  228.872924][   T29]  __se_sys_mount+0x27c/0x2d0
[  228.877603][   T29]  __x64_sys_mount+0x67/0x80
[  228.882200][   T29]  x64_sys_call+0xd11/0x2e00
[  228.886791][   T29]  do_syscall_64+0xc9/0x1c0
[  228.891292][   T29]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.897197][   T29] 
[  228.899526][   T29] read to 0xffffffff86280198 of 8 bytes by task 29 on cpu 0:
[  228.906883][   T29]  prb_reserve+0x235/0xb60
[  228.911310][   T29]  vprintk_store+0x53f/0x810
[  228.915895][   T29]  vprintk_emit+0x10c/0x5e0
[  228.920394][   T29]  vprintk_default+0x26/0x30
[  228.924980][   T29]  vprintk+0x75/0x80
[  228.928862][   T29]  _printk+0x7a/0xa0
[  228.932743][   T29]  kauditd_hold_skb+0x1a3/0x1b0
[  228.937580][   T29]  kauditd_send_queue+0x288/0x2e0
[  228.942592][   T29]  kauditd_thread+0x42a/0x650
[  228.947255][   T29]  kthread+0x1d1/0x210
[  228.951313][   T29]  ret_from_fork+0x4b/0x60
[  228.955713][   T29]  ret_from_fork_asm+0x1a/0x30
[  228.960464][   T29] 
[  228.962768][   T29] value changed: 0x0000000000027968 -> 0x00000000000c5f00
[  228.969850][   T29] 
[  228.972151][   T29] Reported by Kernel Concurrency Sanitizer on:
[  228.978278][   T29] CPU: 0 UID: 0 PID: 29 Comm: kauditd Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  228.988152][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  228.998193][   T29] ==================================================================
[  228.785881][   T29] audit: type=1400 audit(2000000045.928:5343): avc:  denied  { mounton } for  pid=14327 comm="syz.0.3228" path="/123/file0" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="u:object_r:app_data_file:s0:c512,c768"
[  229.065399][T14335] netlink: 56 bytes leftover after parsing attributes in process `syz.0.3230'.
[  229.079270][T14266] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  229.088216][T14266] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  229.104570][T14266] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  229.119496][T14266] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  229.165423][T14266] 8021q: adding VLAN 0 to HW filter on device bond0
[  229.188298][T14266] 8021q: adding VLAN 0 to HW filter on device team0
[  229.198850][ T3160] bridge0: port 1(bridge_slave_0) entered blocking state
[  229.205947][ T3160] bridge0: port 1(bridge_slave_0) entered forwarding state
[  229.229631][ T3160] bridge0: port 2(bridge_slave_1) entered blocking state
[  229.236701][ T3160] bridge0: port 2(bridge_slave_1) entered forwarding state
[  229.314496][T14266] 8021q: adding VLAN 0 to HW filter on device batadv0
[  229.402727][T14266] veth0_vlan: entered promiscuous mode
[  229.414771][T14266] veth1_vlan: entered promiscuous mode
[  229.440454][T14266] veth0_macvtap: entered promiscuous mode
[  229.449337][T14266] veth1_macvtap: entered promiscuous mode
[  229.465824][T14266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  229.476297][T14266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.486115][T14266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  229.496551][T14266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.506455][T14266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  229.516986][T14266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.526830][T14266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  229.537249][T14266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.547086][T14266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  229.557550][T14266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.567362][T14266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  229.577855][T14266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.587676][T14266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  229.598126][T14266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.610261][T14266] batman_adv: batadv0: Interface activated: batadv_slave_0
[  229.624936][T14266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  229.635502][T14266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.645336][T14266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  229.655754][T14266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.665722][T14266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  229.676153][T14266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.686120][T14266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  229.696547][T14266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.706401][T14266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  229.716850][T14266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.726671][T14266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  229.737149][T14266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.747050][T14266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  229.757511][T14266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.771167][T14266] batman_adv: batadv0: Interface activated: batadv_slave_1
[  229.785009][T14266] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  229.793775][T14266] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  229.802568][T14266] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  229.811317][T14266] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0