last executing test programs:

3.386315574s ago: executing program 4 (id=1301):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000040), 0x3, 0x5eb, &(0x7f0000000c00)="$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")
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000002a40), 0x0, 0x0)
r1 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
timer_settime(0x0, 0x0, 0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
fallocate(r1, 0x0, 0x0, 0x1000f4)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
socket(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = socket(0x10, 0x3, 0x0)
ioctl$LOOP_SET_BLOCK_SIZE(0xffffffffffffffff, 0x4c09, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x58, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x62, 0x2, @TCA_SFB_PARMS={0x28}}}]}, 0x58}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r8=>0x0})
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@bridge_dellink={0x34, 0x13, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r8}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0xa, 0x0, 0x1, [{0x8}]}}]}]}, 0x34}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)

3.187332991s ago: executing program 4 (id=1308):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x3, &(0x7f0000000000)=@framed, &(0x7f00000000c0)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='tlb_flush\x00', r0}, 0x10)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082000000", @ANYRES32, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$nl_xfrm(0x10, 0x3, 0x6)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="0000000000009500"/24], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x0, 0x0, 0x0, &(0x7f00000002c0), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newsa={0xf0, 0x1a, 0x713, 0x0, 0x0, {{@in6=@private1, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x0, 0x0, 0x4e20, 0x0, 0xa}, {@in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x33}, @in=@multicast2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, {0x0, 0x0, 0x0, 0x10000000005}, {}, 0x0, 0x0, 0xa, 0x2}}, 0xf0}, 0x1, 0x0, 0x0, 0x8020}, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000100)={0x1f, 0xffff}, 0x6)
recvmmsg(r2, &(0x7f0000000740)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
setsockopt$SO_TIMESTAMP(r2, 0x1, 0x3f, &(0x7f0000000080)=0x376b, 0x4)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_REG(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000480)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000001a0000000700210061610000050092000000000034002280040000801c000080080002000800000008000400ffff0000080002009400000004000080040000800400008004"], 0x58}}, 0x0)
setsockopt$sock_int(r2, 0x1, 0x29, &(0x7f0000000040)=0x1f, 0x4)
write$binfmt_misc(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="4600030007"], 0xd)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x5, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x18a8ee6dcac6c72e, 0x0, 0x0, 0x8, 0xfffffffffffffe00, 0x3}, 0x0, 0x0, r2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
r5 = socket(0x40000000015, 0x5, 0x0)
getsockopt(r5, 0x200000000114, 0x2711, &(0x7f0000000580)=""/102393, &(0x7f0000000040)=0x18ff9)

2.670977553s ago: executing program 1 (id=1324):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000600)={'batadv_slave_1\x00', <r1=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000c00)={0x6, 0x3, &(0x7f00000008c0)=@framed, &(0x7f0000000a40)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', r1}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r1}, 0x90)
r2 = socket(0x18, 0x0, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r3=>0x0}, &(0x7f0000cab000)=0xa)
setresuid(r3, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8e}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
ioprio_set$pid(0x1, 0x0, 0x0)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet6(r4, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000200), 0x200001, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
close(r5)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r6, 0x0)
socket$inet6_sctp(0xa, 0x0, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0xd, &(0x7f0000000000)=@assoc_value, &(0x7f0000000100)=0x8)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e22, @remote}, 0x10)
socket$netlink(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r7, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)={0x14, r8, 0xa4fbfd4840e03a43}, 0x14}}, 0x0)

2.58164808s ago: executing program 1 (id=1325):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000900)={[{@noblock_validity}, {}, {@sb={'sb', 0x3d, 0x3}}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
r0 = socket$packet(0x11, 0x0, 0x300)
syz_open_dev$usbfs(0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)
socket$inet_udplite(0x2, 0x2, 0x88)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x0, 0x0, 0x0, 0x4)
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
r1 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'sit0\x00'})
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="580000006800000200000000ffffffff020000000000000006000700040000000c000880050005000000000008000500", @ANYRES16=r0, @ANYBLOB="1400020002220000a80000000100c022a0785518d08bcf99dc490000ac00000006000700"], 0x58}}, 0x4000)
open(&(0x7f0000000000)='./file1\x00', 0x109042, 0x0)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x200002, &(0x7f0000000000)={[{@noblock_validity}, {@dioread_nolock}, {@noinit_itable}, {@minixdf}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [], 0x2c}, 0x84, 0x452, &(0x7f0000000480)="$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")
r2 = gettid()
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r3, &(0x7f0000000240)=""/203, 0xcb)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r3, 0x4040534e, &(0x7f0000000080)={0x335})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000600)={0x0, 0x0, 0x0, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r3, 0xc04c5349, &(0x7f0000000500))
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r3, 0x80045300, 0x0)
tkill(r2, 0x7)
creat(&(0x7f0000000000)='./bus\x00', 0x0)
mount(&(0x7f00000002c0)=@loop={'/dev/loop', 0x0}, &(0x7f0000000380)='./bus\x00', 0x0, 0x100100f, 0x0)

1.919914454s ago: executing program 4 (id=1339):
perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x200000, &(0x7f0000002880)={[{@user_xattr}, {@nombcache}, {@journal_dev={'journal_dev', 0x3d, 0x1}}, {@usrjquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x7e}}, {@lazytime}, {@init_itable_val={'init_itable', 0x3d, 0x5}}, {@jqfmt_vfsold}, {@grpjquota}]}, 0xfe, 0x564, &(0x7f0000002240)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0xfff, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000001000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x1, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000001c0), 0x0, 0x4010015)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f00000016c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r5, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000980)={0x30, r6, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x1c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0x9, 0x1, @l2={'eth', 0x3a, '\x00'}}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x3, 0x3ff}]}]}]}, 0x30}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r5, 0x8933, &(0x7f00000001c0)={'wg0\x00', <r7=>0x0})
r8 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000600)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x124, 0x124, 0x5, [@func_proto={0x0, 0x6, 0x0, 0xd, 0x0, [{0x1, 0x2}, {0x1, 0x4}, {0xb, 0x3}, {0xb, 0x3}, {0xc, 0x5}, {0x3}]}, @const={0x10, 0x0, 0x0, 0xa, 0x2}, @restrict={0x9}, @var={0x6, 0x0, 0x0, 0xe, 0x3}, @union={0xb, 0xa, 0x0, 0x5, 0x1, 0x6, [{0x0, 0x1, 0xb}, {0xf, 0x1, 0x3}, {0xc, 0x4, 0x4}, {0xb, 0x4, 0x5d09}, {0x10, 0x2, 0x93}, {0xd, 0x3, 0x9}, {0x4, 0x1, 0x4f}, {0x5, 0x419, 0x9}, {0x0, 0x2}, {0xd, 0x2, 0x1}]}, @union={0x9, 0x4, 0x0, 0x5, 0x0, 0x2, [{0x5, 0x3, 0x400}, {0xf, 0x3, 0x8}, {0x9, 0x0, 0x5}, {0x9, 0x0, 0x2}]}]}, {0x0, [0x61, 0x30, 0x30]}}, &(0x7f0000000300)=""/74, 0x141, 0x4a, 0x1, 0x10001}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x4, 0xc24, 0x817, 0x100, 0x2, 0xffffffffffffffff, 0x4, '\x00', r7, r8, 0x0, 0x4, 0x3}, 0x48)
r9 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r9, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x5ae00}], 0x2, 0x1200, 0x41001, 0x3)

1.753517258s ago: executing program 1 (id=1340):
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$IEEE802154_SET_MACPARAMS(r0, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0x68, r1, 0x8, 0x70bd29, 0x25dfdbfd, {}, [@IEEE802154_ATTR_CSMA_MAX_BE={0x5, 0x27, 0xd}, @IEEE802154_ATTR_CCA_MODE={0x5, 0x23, 0x5}, @IEEE802154_ATTR_LBT_ENABLED={0x5, 0x22, 0x1}, @IEEE802154_ATTR_CSMA_RETRIES={0x5, 0x25, 0x8}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_CSMA_RETRIES={0x5, 0x25, 0x6}, @IEEE802154_ATTR_CCA_ED_LEVEL={0x8, 0x24, 0x8}, @IEEE802154_ATTR_LBT_ENABLED={0x5, 0x22, 0x1}, @IEEE802154_ATTR_CCA_ED_LEVEL={0x8, 0x24, 0xffffffff}, @IEEE802154_ATTR_CSMA_MIN_BE={0x5, 0x26, 0xd}]}, 0x68}, 0x1, 0x0, 0x0, 0x40880}, 0x40)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180200000020702500000000002020207b1af8ff00000000bfa100000000000007010000dbffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000080), 0x1, 0x53c, &(0x7f00000025c0)="$eJzs3c9vI1cdAPDvTH52mzZb6AEqYBcoLGi19sbbrqpe2r2AUFUJUXFAHLYh8UZh7XWIndKESKR/A0ggcYI/gQMSB6SeOHDjyA0hlQPSAhFog0SF0YwnqZvYjWkcm8afjzQ7P178vu/FO/Oe38TzAphYVyNiLyJmI+L1iFgsjifFEi93luznHu3vrhzs767Ef9rt1/6W5OnZseh6TebxIs/5iPjGVyO+k5yM29zeub9cq1U3i/1yq75Rbm7v3FivL69V16oPKpXbS7dvvnDr+crQ6nql/suHX1l/5Zu/+fWn3/n93pd/kBVroUjrrscwdao+cxQnMx0Rr5xHsDGYKtazYy4HH04aER+LiM/l5/9iTOX/OwGAi6zdXoz2Yvc+AHDRpfkYWJKWirGAhUjTUqkzhvd0XEprjWbr+r3G1oPVzljZ5ZhJ54q+wvfyf2eSe+u16lKelqfn+5Vj+7ci4qmI+PHcY/l+aaVRWx1PlwcAJt7jx9r/f8512v8B9LirBwB8ZMyPuwAAwMhp/wFg8mj/AWDyDND+Fzf79869LADAaPj8DwCTR/sPAJNH+w8AE+Xrr76aLe2D4vnXq29sb91vvHFjtdq8X6pvrZRWGpsbpbVGYy1/Zk/9tPxqjcbG0nOx9Wa5VW22ys3tnbv1xtaD1t38ud53qzMjqRUA8EGeuvL2H5KI2HvxsXwJcznAxEjHXQBgbKbGXQBgbMz2BZNr8PH4351rOYDx6fkw7/mem+/30/8hiL8zgv8r1z7Zf/z/eN/AfQG4WIz/w+T6cOP/Lw29HMDo9Rr/18+HydBuJ8fn/J89SgIALqQzfB+v/cNhdUKAsTptMu+h3P8HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAC2YhIr4bSVoq5gJfiDQtlSKeiIjLMZPcW69Vb0bEk3ElImbmsv2lcRcaADij9C9JMf/XtcVnF46nzib/motiTvDv/+y1n7y53GptLmXH/350fO5w+rDKe687w7yCAMCQ5e13pVh3fZB/tL+7criMsjwP78S7xVTEKwf7u/nSSZmO6Xw9n/clLv0jKfY7c5E+ExFTQ4i/91ZEfOKo/sm77XYRP8nHRi4XM592x48i9hPDj9/1+z8eP31f/DRP66yzztfHj+WbDqFscNG9fSciXu51/qVxNV/3Pv/n8yvU2T2808ns8Np30BX/8Po31SN+ds5fHTTGc7/92omD7cVO2lsRz0z3ip8cxU/6xH92wPh//NRnfvRSn7T2zyOuRe/43bHKrfpGubm9c2O9vrxWXas+qFRuL92++cKt5yvlfIy6fDhSfdJfX7z+ZL+yZfW/1Cf+fM/6zx699gsD1v8X/37925/9gPhf+nzv9//pnvE7sjbxiwPGX770q77Td2fxV/vU/7T3//qA8d/5887qgD8KAIxAc3vn/nKtVt0800b2aXMY+ZzYyIo41AxP2fhTjC7WqRsz5/VbPfeN6aO+4nBz/laW44irkw69FmfaeDSqWOO9LgHn772TftwlAQAAAAAAAAAAAAAA+hnFV5fGXUcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAurv8GAAD//5S5ywU=")
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
dup2(0xffffffffffffffff, r3)
ppoll(&(0x7f0000000280)=[{}], 0x10, &(0x7f0000000300)={0x0, 0x989680}, 0x0, 0x0)
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1) (fail_nth: 10)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000082b6fe8e00000000008040008500000050000000a50000009700000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x40)
dup2(r4, r4)
r5 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000200)={'vxcan1\x00'})
bind$can_j1939(0xffffffffffffffff, 0x0, 0x0)
r6 = socket$qrtr(0x2a, 0x2, 0x0)
ioctl$FAT_IOCTL_SET_ATTRIBUTES(r6, 0x8915, 0x0)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(0xffffffffffffffff, &(0x7f0000000180)={0x2d, 0x30, 0xfa00, {0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, 0x38)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000200)={0xffffffffffffffff, 0x20, &(0x7f00000001c0)={&(0x7f0000000140)=""/56, 0x38, <r7=>0x0, 0x0}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xb, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x5, 0xc6, &(0x7f0000000380)=""/198, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r7}, 0x90)
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x200000b, 0x12, r8, 0x0)

1.502367368s ago: executing program 1 (id=1342):
connect$can_bcm(0xffffffffffffffff, &(0x7f0000000000), 0x10)
r0 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = socket$inet(0x2, 0x0, 0x84)
r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_CONTROL(r2, 0xc0105500, &(0x7f0000000000)={0x41, 0x0, 0x0, 0x0, 0xfffffee6, 0x0, 0x0})
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={r3}, 0x8)

1.425962284s ago: executing program 2 (id=1344):
r0 = socket$inet(0x2, 0x3, 0x1)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev}, 0x10)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_emit_ethernet(0x82, &(0x7f0000000240)={@broadcast, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x74, 0x0, 0x74, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x0, 0x0, 0x3, 0x0, 0x0, {0x16, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @broadcast, @multicast2, {[@timestamp_addr={0x44, 0x44, 0x0, 0x1, 0x0, [{@initdev={0xac, 0x1e, 0x0, 0x0}}, {@empty}, {@broadcast}, {@initdev={0xac, 0x1e, 0x0, 0x0}}, {@multicast2}, {@private}, {}, {@multicast2}]}]}}}}}}}, 0x0)

1.377693398s ago: executing program 0 (id=1345):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x0, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000140)=0x32, 0x4)
connect$inet(r0, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg$inet(r0, &(0x7f0000004d00)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=ANY=[], 0x28}}], 0x2, 0x0)
socket(0x0, 0x0, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000000c0)='netlink_extack\x00'}, 0x11)
socket(0x11, 0x800000002, 0x0)
r2 = syz_open_dev$vcsu(&(0x7f0000000080), 0xc, 0x4200)
r3 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IMADDTIMER(r3, 0x80044940, &(0x7f0000000080)=0x14)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f0000000600)={<r4=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r2, 0x40182103, &(0x7f0000000240)={r4, 0x2, r1, 0x1, 0x80000})
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000180)='./file0\x00', 0x1000800, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c6e6f6e756d7461696c000000006e695f786c61312c757466383d312c696f636861723365743d6d538c6c90392bc69373686f72746e616d653d6d697865642c636f6465706167653d3836332c696f636861727365743d6370313235312c007e3db5a829498e2a721ae5804ff8ccb41eff157cfdfcef90a63c3a967e3cceea"], 0xfd, 0x222, &(0x7f00000002c0)="$eJzs3TFrE2EcBvB/bNRakHQQiiJ44uIU2op7ilQQA4qSQSeLbVGaWrBQ0KGtk19Cv4KOroKDuPoFRJAquFinDkKkXmyakMRITa+Y32/pw9373L3vDT0y5M2d04sLs0vL85ubGzE8nIt8KUqxlYvROBRDkVoPAOB/slWrxbdaKuu5AAD7w/sfAAZPt/d/bn3n2PX9nxkA0C8+/wPA4Ll56/bVqXJ5+kaSDEcsPl2prFTSv+n5qfm4H9WYi/EoxI+I2o40X75Snh5Ptn0ejcriWr2/tlIZau5PRCFG2/cnklRz/3CM1PsfRmIuJqMQJ9r3J9v2j8T5c7vuX4xCvL8bS1GN2djuNvqrE0ly6Vq5pX/01zgAAAAAAAAAAAAAAAAAAAAAAOiHYrKj7f49xWKn82l/9/5Ax7ruD9S6P08+TuWzXTsAAAAAAAAAAAAAAAAAAAAcFMuPHi/MVKtzD7uFB+9evPnTmB5Drn7fvV5n7+H42U/POo958jfP59+G12eyfCw9hrcb905eWB672GlM5LOeYXP4Wojo0y1e/g6l7wdhpfUw1Hpk7Hlp5tXqxy+9XifDf0oAAAAAAAAAAAAAAAAAADCgGl/6zXomAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJCdxu//9y2sZ71GAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4GQAA//+Jwqlt")
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="180000005200010000000000000000000a00000004000100174253835837091463c0d939fa26299cb6868bc15fe74caceb1c7cae899a7d9160100de56da70b8455712c37f52cf41b3f32b2073b407acd4ed195cf8884413f4edf05cd3f065af144f7991fe55a856c345df4c924f4da43defe129858b4cb5294fcd48c"], 0x18}}, 0x0)
r6 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
ioctl$VFAT_IOCTL_READDIR_SHORT(r3, 0x82307202, &(0x7f00000003c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
socket$phonet_pipe(0x23, 0x5, 0x2)
ioctl$IMADDTIMER(r3, 0x80044940, &(0x7f0000000040)=0xffffffffffffffff)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x800c6613, 0x0)
r7 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r7, 0x8933, &(0x7f0000000600)={'team0\x00', <r8=>0x0})
r9 = socket$netlink(0x10, 0x3, 0x0)
ioctl$RTC_WIE_ON(r6, 0x700f)
sendmsg$nl_route_sched(r9, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000bc0)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0xfffffffc, {0x0, 0x0, 0x12, r8, {}, {0xffff, 0x6}}, [@TCA_RATE={0x6, 0x5, {0x2, 0x1}}]}, 0x2c}}, 0x4040000)
socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r10, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x114}], 0x1}, 0x0)

1.376976978s ago: executing program 2 (id=1347):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x3, &(0x7f0000000000)=@framed, &(0x7f00000000c0)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='tlb_flush\x00', r0}, 0x10)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$nl_xfrm(0x10, 0x3, 0x6)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="0000000000009500"/24], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x0, 0x0, 0x0, &(0x7f00000002c0), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newsa={0xf0, 0x1a, 0x713, 0x0, 0x0, {{@in6=@private1, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x0, 0x0, 0x4e20, 0x0, 0xa}, {@in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x33}, @in=@multicast2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, {0x0, 0x0, 0x0, 0x10000000005}, {}, 0x0, 0x0, 0xa, 0x2}}, 0xf0}, 0x1, 0x0, 0x0, 0x8020}, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000100)={0x1f, 0xffff}, 0x6)
recvmmsg(r2, &(0x7f0000000740)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
setsockopt$SO_TIMESTAMP(r2, 0x1, 0x3f, &(0x7f0000000080)=0x376b, 0x4)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_REG(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000480)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000001a0000000700210061610000050092000000000034002280040000801c000080080002000800000008000400ffff0000080002009400000004000080040000800400008004"], 0x58}}, 0x0)
setsockopt$sock_int(r2, 0x1, 0x29, &(0x7f0000000040)=0x1f, 0x4)
write$binfmt_misc(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="4600030007"], 0xd)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x5, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x18a8ee6dcac6c72e, 0x0, 0x0, 0x8, 0xfffffffffffffe00, 0x3}, 0x0, 0x0, r2, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
write$binfmt_aout(r5, &(0x7f00000002c0)=ANY=[], 0xc1)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000005, 0x13, r5, 0x0)
getsockopt$inet_int(0xffffffffffffffff, 0x10d, 0x0, 0x0, &(0x7f00000000c0))
r6 = socket(0x40000000015, 0x5, 0x0)
getsockopt(r6, 0x200000000114, 0x2711, &(0x7f0000000580)=""/102393, &(0x7f0000000040)=0x18ff9)

1.374673289s ago: executing program 3 (id=1348):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000600)={'batadv_slave_1\x00', <r1=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000c00)={0x6, 0x3, &(0x7f00000008c0)=@framed, &(0x7f0000000a40)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', r1}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r1}, 0x90)
r2 = socket(0x18, 0x0, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r3=>0x0}, &(0x7f0000cab000)=0xa)
setresuid(r3, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8e}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
ioprio_set$pid(0x1, 0x0, 0x0)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet6(r4, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000200), 0x200001, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
close(r5)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r6, 0x0)
socket$inet6_sctp(0xa, 0x0, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0xd, &(0x7f0000000000)=@assoc_value, &(0x7f0000000100)=0x8)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e22, @remote}, 0x10)
socket$netlink(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r7, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)={0x14, r8, 0xa4fbfd4840e03a43}, 0x14}}, 0x0)

1.363738679s ago: executing program 1 (id=1349):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x3, &(0x7f0000000000)=@framed, &(0x7f00000000c0)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='tlb_flush\x00', r0}, 0x10)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082000000", @ANYRES32, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$nl_xfrm(0x10, 0x3, 0x6)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="0000000000009500"/24], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x0, 0x0, 0x0, &(0x7f00000002c0), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newsa={0xf0, 0x1a, 0x713, 0x0, 0x0, {{@in6=@private1, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x0, 0x0, 0x4e20, 0x0, 0xa}, {@in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x33}, @in=@multicast2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, {0x0, 0x0, 0x0, 0x10000000005}, {}, 0x0, 0x0, 0xa, 0x2}}, 0xf0}, 0x1, 0x0, 0x0, 0x8020}, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000100)={0x1f, 0xffff}, 0x6)
recvmmsg(r2, &(0x7f0000000740)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
setsockopt$SO_TIMESTAMP(r2, 0x1, 0x3f, &(0x7f0000000080)=0x376b, 0x4)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_REG(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000480)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000001a0000000700210061610000050092000000000034002280040000801c000080080002000800000008000400ffff0000080002009400000004000080040000800400008004"], 0x58}}, 0x0)
setsockopt$sock_int(r2, 0x1, 0x29, &(0x7f0000000040)=0x1f, 0x4)
write$binfmt_misc(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="4600030007"], 0xd)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x5, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x18a8ee6dcac6c72e, 0x0, 0x0, 0x8, 0xfffffffffffffe00, 0x3}, 0x0, 0x0, r2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
r5 = socket(0x40000000015, 0x5, 0x0)
getsockopt(r5, 0x200000000114, 0x2711, &(0x7f0000000580)=""/102393, &(0x7f0000000040)=0x18ff9)

1.35189892s ago: executing program 0 (id=1350):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1d, 0x14, 0xfff, 0x400007}, 0x48)
preadv2(r0, &(0x7f0000000180)=[{&(0x7f0000000000)=""/177, 0xb1}], 0x1, 0x8, 0x1, 0x10) (async)
preadv2(r0, &(0x7f0000000180)=[{&(0x7f0000000000)=""/177, 0xb1}], 0x1, 0x8, 0x1, 0x10)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1810314, &(0x7f00000006c0)={[{@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x6}}, {@data_err_ignore}, {@norecovery}, {@resuid}, {@prjquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x8}}, {@noblock_validity}, {@dioread_nolock}, {@journal_checksum}]}, 0xff, 0x468, &(0x7f0000000780)="$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") (async)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1810314, &(0x7f00000006c0)={[{@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x6}}, {@data_err_ignore}, {@norecovery}, {@resuid}, {@prjquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x8}}, {@noblock_validity}, {@dioread_nolock}, {@journal_checksum}]}, 0xff, 0x468, &(0x7f0000000780)="$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")
socket$inet6_tcp(0xa, 0x1, 0x0)
fcntl$setownex(0xffffffffffffffff, 0xf, 0x0) (async)
fcntl$setownex(0xffffffffffffffff, 0xf, 0x0)
sendmsg$NFQNL_MSG_VERDICT(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000}, 0xc, 0x0}, 0x0)
socket(0x0, 0x0, 0x5) (async)
r1 = socket(0x0, 0x0, 0x5)
accept$inet6(r1, 0x0, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000380)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x80000008, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5}, 0x48)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
socket(0x10, 0x3, 0x0) (async)
r4 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0xc, &(0x7f0000000180)={0xfffffc}, 0x10) (async)
setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0xc, &(0x7f0000000180)={0xfffffc}, 0x10)
write(r4, &(0x7f0000000000)="110000001a005f0214f9f407000901000a", 0x11)
sendmsg$TIPC_NL_LINK_SET(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB="ac000000", @ANYRES16=r3, @ANYBLOB="01060000000000000000090000002c0004801300010062726f6164636173742d6c696e6b00001400078008000600"], 0xac}}, 0x0)
unlink(&(0x7f0000000180)='./file1\x00') (async)
unlink(&(0x7f0000000180)='./file1\x00')
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x400000, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000840)={0xffffffffffffffff, 0x0, 0x0}, 0x10) (async)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000840)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x275a, 0x0)
quotactl_fd$Q_GETINFO(r5, 0xffffffff80000500, 0x0, 0x0)
rseq(&(0x7f0000000040), 0x20, 0x0, 0x0)
rseq(&(0x7f0000000040), 0x20, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair(0x6, 0x2, 0x824, &(0x7f00000001c0))

1.293618145s ago: executing program 3 (id=1351):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f0000000040)={0x0, 0x4}, 0xe)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x3, &(0x7f0000000000)=[{0x35}, {0x14}, {0x6, 0x0, 0x0, 0x7ffffeb9}]})
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x1a, 0x26, &(0x7f00000008c0)=ANY=[@ANYBLOB="1800000004000000000000007251000018110000", @ANYRES32, @ANYBLOB="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", @ANYRES32=0x1, @ANYBLOB="00000000000000009597e0ffffffffff18230000", @ANYRES32, @ANYBLOB="00000000fd040000b7080000000000007b8af8ff00000000b70800003f0000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a5000000852000000300000018600000040000000000000000000100bf91000000000000b7020000010000008500000084000000b7000000000000009500000000000000"], &(0x7f00000001c0)='GPL\x00', 0x5, 0x35, &(0x7f00000002c0)=""/53, 0x41000, 0x20, '\x00', 0x0, 0x28, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x6, 0x3}, 0x8, 0x10, &(0x7f0000000580)={0x2, 0xf, 0x6f2, 0x3d}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000640)=[0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0x1, 0xffffffffffffffff], 0x0, 0x10, 0x1000}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0xdba3ca0ac5186f2a, 0xb, &(0x7f0000000740)=ANY=[], &(0x7f0000000100)='GPL\x00', 0xfffffffd, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sys_enter\x00', r2}, 0x10)
r4 = getpgid(0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r6 = syz_open_procfs(r4, &(0x7f0000000440)='net/hci\x00')
fchdir(r6)
read$rfkill(r6, &(0x7f00000000c0), 0x8)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00'})
write$cgroup_devices(r7, 0x0, 0x3e)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
listen(r5, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r8 = socket(0x10, 0x3, 0x0)
r9 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000d40)={'macvlan1\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000004640)={&(0x7f0000000840)=@newqdisc={0x64, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_etf={{0x8}, {0x14, 0x2, @TCA_ETF_PARMS={0x10}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x64}}, 0x0)
setsockopt$sock_attach_bpf(r5, 0x1, 0x44, &(0x7f0000009000), 0x4)
fcntl$lock(r3, 0x25, &(0x7f0000000000)={0x2, 0x0, 0x0, 0x0, r4})
shutdown(r0, 0x0)
r11 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000005c0)={<r12=>0x0, 0x10, &(0x7f0000000600)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000200)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r11, 0x84, 0x6c, &(0x7f0000000340)={r12, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000d00)=0x84)

1.289375796s ago: executing program 3 (id=1352):
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="d8030000", @ANYRES16, @ANYBLOB="010000000000000000000100000008000100", @ANYRES16, @ANYBLOB="3800010024"], 0x3d8}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2}, {0x0, [0x0]}}, &(0x7f0000001f80)=""/226, 0x26, 0x1a, 0x2}, 0x20)

1.274380447s ago: executing program 3 (id=1353):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000480, &(0x7f00000001c0), 0x1, 0x76a, &(0x7f0000000fc0)="$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")
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$sock_inet_SIOCGARP(r0, 0x8954, &(0x7f0000000040)={{0x2, 0x4e20, @multicast2}, {0x306, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x0, {0x2, 0x4e21, @remote}, 'pim6reg0\x00'})
r1 = socket(0x15, 0x5, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f00000001c0)={'wpan0\x00', <r5=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_KEY(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000200)=ANY=[@ANYBLOB="b0000000", @ANYRES16=r4, @ANYBLOB="010000000000000000001700000008000300", @ANYRES32=r5, @ANYBLOB="9400308014000400403a05005bae9c544ef2b6d713459a7a2800018008000100000000001c000380080002000200000004000100000010000800020003000000050002"], 0xb0}}, 0x0)
write$UHID_CREATE2(r2, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r2, 0x0)
getsockopt(r1, 0x200000000114, 0x8, 0x0, &(0x7f0000000000))

1.197545093s ago: executing program 0 (id=1354):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@newsa={0x1a4, 0x10, 0x1, 0x0, 0x0, {{@in6=@private0, @in6=@loopback}, {@in, 0x0, 0x32}, @in6=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @algo_auth_trunc={0x6c, 0x14, {{'cmac(aes)\x00'}, 0x100, 0x0, "e3630dde215f3da533f861c33b10bf7dcb03d1e0dc304addd2f5580dc9771195"}}]}, 0x1a4}}, 0x0)

1.197169563s ago: executing program 3 (id=1355):
socket$nl_generic(0x10, 0x3, 0x10)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x1)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000400)={<r1=>0xffffffffffffffff})
r2 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x5}, 0x10}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r3, r2, 0x26}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r3}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
recvmsg(r1, &(0x7f00000004c0)={0x0, 0x4, &(0x7f0000000900)=[{&(0x7f0000001c40)=""/4096, 0x8ec0}], 0x1}, 0x2)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="2d90e55c8ea63da91072646d6120"], 0xe)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x7, 0x4, 0x8, 0xd27}, 0x48)
r4 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r4, &(0x7f0000000140)={0xa, 0x0, 0x0, @empty}, 0x1c)
writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000100)='!', 0xffdf}], 0x1)

1.139615028s ago: executing program 0 (id=1356):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1004400, &(0x7f0000001940), 0x6, 0x588, &(0x7f0000000300)="$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")
syz_mount_image$msdos(&(0x7f0000002280), &(0x7f0000000200)='./file0\x00', 0x8, &(0x7f00000022c0)=ANY=[], 0x1, 0x206, &(0x7f0000002040)="$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")
socket$nl_xfrm(0x10, 0x3, 0x6)
write$vga_arbiter(0xffffffffffffffff, &(0x7f0000000000)=@target={'target ', {'PCI:', '5', ':', '1a', ':', 'f', '.', 'f'}}, 0x14)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x89f1, &(0x7f0000000040)={'ip6gre0\x00', @random='\a\x00\x00 \x00'})
socketpair(0x0, 0x5, 0x0, &(0x7f0000000480))
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x1e, 0xe, &(0x7f0000000b80)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x32}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x11, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000000000620800000000000095"], &(0x7f0000000180)='GPL\x00', 0x5}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x5, 0x4, &(0x7f0000000000)=@framed={{}, [@jmp={0x3, 0x0, 0xc}], {0x95, 0x0, 0x0, 0x1a03d3}}, &(0x7f0000000040)='syzkaller\x00', 0x8, 0xfa, &(0x7f0000000140)=""/250}, 0x90)
r1 = socket$caif_stream(0x25, 0x1, 0x0)
sendmmsg$inet(r1, &(0x7f0000000040)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000000)="92", 0x1}], 0x1}}], 0x2, 0x7c9ce320e12d300)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
vmsplice(r2, 0x0, 0x0, 0x1)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r2, 0x40a85323, &(0x7f00000008c0)={{0x81, 0x3}, 'port1\x00', 0xd0, 0x101000, 0x3, 0x9, 0xfa0, 0x3, 0x10001, 0x0, 0xa, 0x81})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE2(0xffffffffffffffff, 0xe, &(0x7f0000001180)={0x0, 0x0, 0x0, 0x0}, 0x20)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000640)={0x0, 0x0, 0x16d}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$autofs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000000), 0x8001ff, 0x2)
ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, &(0x7f0000001340)={0x80, 0x6, 0x2ff, 0x0, 0x0, 0x0, 0x0})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)

1.011604218s ago: executing program 4 (id=1357):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$FOU_CMD_DEL(r0, &(0x7f0000000380)={0x0, 0x24, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000020000000600010000000000050002"], 0x24}}, 0x0)

917.675356ms ago: executing program 0 (id=1358):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000280)={[{@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x88}}, {@resuid}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@lazytime}, {@usrquota}, {@data_err_abort}, {@data_err_abort}]}, 0x1, 0x5d8, &(0x7f0000001200)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socket(0x15, 0x5, 0x0)
chdir(&(0x7f0000006540)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r3 = open(0x0, 0x0, 0x0)
getdents(0xffffffffffffffff, &(0x7f0000000040)=""/104, 0x4d)
getdents(r3, &(0x7f0000001fc0)=""/184, 0xb8)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000000c0)='netlink_extack\x00'}, 0x10)
socket(0x10, 0x0, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r4, 0x0)
ftruncate(r4, 0x0)
getsockopt$bt_BT_SECURITY(0xffffffffffffffff, 0x110, 0x5, 0x0, 0x20000000)

917.362806ms ago: executing program 4 (id=1359):
connect$can_bcm(0xffffffffffffffff, &(0x7f0000000000), 0x10)
r0 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = socket$inet(0x2, 0x0, 0x84)
r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_CONTROL(r2, 0xc0105500, &(0x7f0000000000)={0x41, 0x0, 0x0, 0x0, 0xfffffee6, 0x0, 0x0})
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={r3}, 0x8)

899.575177ms ago: executing program 4 (id=1360):
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000040)={<r0=>0x0, @broadcast}, &(0x7f0000000140)=0xc)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=@newqdisc={0x1b8, 0x24, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, r0, {0xfff1, 0x6}}, [@TCA_STAB={0x30, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x2b, 0x1, 0x4b14, 0xa76, 0x0, 0x6, 0xe88, 0x6}}, {0x10, 0x2, [0x8, 0x5, 0x4fe, 0xfff8, 0x9, 0x0]}}]}, @TCA_STAB={0x164, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0xba, 0x8, 0x3, 0x8, 0x2, 0x5, 0x20000, 0x2}}, {0x8, 0x2, [0x0, 0x6]}}, {{0x1c, 0x1, {0x2, 0x3, 0xf5f0, 0x10, 0x2, 0xb9, 0x2, 0x5}}, {0xe, 0x2, [0x6, 0xffff, 0x8000, 0x0, 0x6]}}, {{0x1c, 0x1, {0x3, 0xb6, 0x9, 0x4, 0x1, 0x1, 0x9, 0x1}}, {0x6, 0x2, [0x5]}}, {{0x1c, 0x1, {0x3, 0xa, 0x5, 0x80000001, 0x1, 0xa3a, 0xec, 0x5}}, {0xe, 0x2, [0x1, 0x7fff, 0xd, 0x4, 0x2ddd]}}, {{0x1c, 0x1, {0x50, 0x1c, 0x1, 0x1000, 0x2, 0x5, 0x9, 0x6}}, {0x10, 0x2, [0x3ff, 0x6c, 0x4, 0x5d40, 0x200, 0x2]}}, {{0x1c, 0x1, {0x2, 0x80, 0x401, 0xa, 0x2, 0x5, 0x6, 0x9}}, {0x16, 0x2, [0x3, 0x3, 0x9d61, 0x8, 0x1, 0x6, 0x57, 0xfff7, 0x8]}}, {{0x1c, 0x1, {0x6, 0x7, 0xb4, 0xffffd2f7, 0x1, 0x8, 0x10000, 0xa}}, {0x18, 0x2, [0x5, 0x10, 0x9, 0x7, 0x8000, 0x2, 0x1, 0x2, 0x2, 0x8]}}, {{0x1c, 0x1, {0x6, 0x1, 0x6, 0xc, 0x1, 0x1, 0x1fb, 0x6}}, {0x10, 0x2, [0x3ff, 0x7, 0x6, 0x3, 0xb, 0x40]}}]}]}, 0x1b8}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0x1d, 0x4, 0x2}, 0x48)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={0x0, 0xb8}}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@updpolicy={0xb8, 0x1b, 0x1, 0x0, 0x0, {{@in6=@empty, @in=@private, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x2}, {}, 0x800, 0x0, 0x1}}, 0xb8}}, 0x0)

447.210134ms ago: executing program 2 (id=1362):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040))
r0 = socket$netlink(0x10, 0x3, 0x4)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="5cffea00", @ANYRES16=r1, @ANYBLOB="030300000000000000000a0600002800018008000100", @ANYBLOB="0800030000000000140002007663616e3000000000000000000000000c000180080003000000000014000280080001"], 0x5c}}, 0x0)

392.550718ms ago: executing program 2 (id=1363):
sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0}}, 0x0)
r0 = socket$inet(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000740), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'veth0_virt_wifi\x00'})
socket$nl_route(0x10, 0x3, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000001100)={'#! ', './file1'}, 0xb)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$iso9660(&(0x7f0000001240), &(0x7f0000000000)='./file1\x00', 0x204419, &(0x7f0000000140)=ANY=[], 0x2f, 0x5b2, &(0x7f0000001280)="$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")
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$packet(0x11, 0x0, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r2, 0x107, 0x16, &(0x7f00000002c0)={0x2, &(0x7f0000000180)=[{0x2d}, {0x6}]}, 0x10)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[], 0x0)
ioperm(0x0, 0xf1, 0x7)
prctl$PR_GET_NAME(0x10, &(0x7f0000001740)=""/15)
write(r1, &(0x7f0000000000)="240000001e00ff3bd90ea7eff078000000000000000000000000000008000f0016040000", 0x24)
readv(r1, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000540)={0x53, 0x0, 0x5, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000001a80)="3e85d5e0e4", 0x0, 0x0, 0x0, 0x0, 0x0})

392.027178ms ago: executing program 1 (id=1364):
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x1ad701, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, "8102770b812b6821ac4000"})
timer_create(0x0, 0x0, &(0x7f0000000240)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_delete(r1)
syz_open_pts(r0, 0x141601)
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000000)='./file1\x00', 0x844, &(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1, 0x23b, &(0x7f00000005c0)="$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")
r2 = socket(0xa, 0x40000000002, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), r4)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x3f)
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="3400000010001ff700"/20, @ANYRES32=r5, @ANYBLOB="ff00000000000000140012800b000100626174616476"], 0x34}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={0x0}, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000140)={@local, @multicast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x2, 0x0, 0x11, 0x0, @dev={0xac, 0x14, 0x14, 0x3e}, @empty}, {0x0, 0x0, 0x8}}}}}, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000300)={@random="e90c630faca2", @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x2, 0x0, 0x24, 0x0, 0xe000, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x10, 0x0, @opaque="cbe66f1099d3a415"}}}}}, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000280)=@nat={'nat\x00', 0x11, 0x2, 0x208, [0x20000600, 0x0, 0x0, 0x0, 0x20000660], 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="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"]}, 0x27d)
ioctl$KDSETMODE(r0, 0x4b3a, 0x1)
ioctl$sock_inet6_tcp_SIOCINQ(r2, 0x541b, &(0x7f0000000080))
r6 = semget$private(0x0, 0x207, 0x480)
semtimedop(r6, &(0x7f00000002c0)=[{}, {0x0, 0xff78}], 0x2, 0x0)
semctl$IPC_SET(r6, 0x0, 0x1, &(0x7f0000000240)={{0x0, 0xee01, 0xffffffffffffffff}})
semctl$GETNCNT(r6, 0x1, 0xe, &(0x7f0000000080)=""/103)
semctl$SETALL(r6, 0x0, 0x11, &(0x7f0000000200)=[0x100, 0x401, 0x6, 0x9, 0x14, 0x1f, 0x1, 0x80])
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="9feb01001800000000000000000000000000000002000000a6d2b1184e8aac90184092420200"], &(0x7f0000001f80)=""/226, 0x1a, 0xe2, 0xf}, 0x20)
ioctl$TCSETS(r0, 0x5402, &(0x7f0000000040)={0x0, 0xf2b, 0x0, 0x1, 0x0, "0aea8957be4a00000004020000070400"})

239.183581ms ago: executing program 3 (id=1365):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001200)=ANY=[@ANYBLOB="fc8f00002100010000000000000000000a00000000000000000000000c001400af87a87e31fa2466341a809954923d5883df2837a26748911e3b5d352312e628732e263688f22da4c61c87767b9d1cd05c28b5a613ae41ecd45f16d5d9322010ae457537e2e139b8496f2cb87a19de80e67d4715bc4b0f02e8fb", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0500160000000000"], 0x30}}, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000001180)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020701200000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b7030000000000", @ANYRESHEX=r0, @ANYRESHEX=r0], &(0x7f00000010c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = socket(0x11, 0x3, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSIFNETMASK(r3, 0x891c, &(0x7f0000001080)={'ip6gre0\x00', {0x2, 0x4e23, @broadcast}})
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0)
read$char_usb(r4, &(0x7f0000001840)=""/4090, 0xffa)
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000180)=""/128, 0x80}], 0x1, 0x0, 0x0)
read$char_usb(r4, &(0x7f0000000240)=""/34, 0x43)
ioctl$sock_inet_SIOCADDRT(r3, 0x890b, &(0x7f0000000100)={0x0, {0x2, 0x0, @dev}, {0x2, 0x0, @remote}, {0x2, 0x0, @multicast1}, 0xaf})
syz_io_uring_setup(0xf3d, &(0x7f0000000480), &(0x7f0000000080)=<r5=>0x0, &(0x7f0000000540)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE)
r7 = syz_open_procfs(0x0, &(0x7f0000000100)='fdinfo/3\x00')
preadv(r7, &(0x7f0000000240)=[{&(0x7f0000001340)=""/169, 0xa9}], 0x1, 0x0, 0x0)
ioctl$sock_inet_SIOCDELRT(r2, 0x890c, &(0x7f0000000000)={0x0, {0x2, 0x0, @dev}, {0x2, 0x0, @multicast1}, {0x2, 0x0, @broadcast}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
syz_read_part_table(0x104e, &(0x7f0000000000)="$eJzsz80NgjAABeCHEBFWcR4vLqOM4QpuYZyERcQUa+IE6uH7Du3rz2vS8FNDkzyW1e1zvytDk5SDMcm9TzJf0qatN/o6TzmOr9RuzrW8bealPpB36DIlu6Gs9n1Oa+Fw/dI3AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCvPQMAAP//Cf4Uvw==")
sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='X', 0x1, 0x0, 0x0, 0x0)
gettid()
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000080)={0xa, 0x4622, 0x1000000080000, @mcast2}, 0x1c, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='$\x00\x00\x00\x00\x00\x00\x00)'], 0x28}, 0x0)
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r8, &(0x7f0000000440)=""/247, 0x26)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r8, 0x4040534e, &(0x7f0000000080)={0x1, @time, 0x0, {0xfd}})
r9 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)

41.661707ms ago: executing program 2 (id=1366):
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@newsa={0x1a4, 0x10, 0x1, 0x0, 0x0, {{@in6=@private0, @in6=@loopback}, {@in, 0x0, 0x32}, @in6=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @algo_auth_trunc={0x6c, 0x14, {{'cmac(aes)\x00'}, 0x100, 0x0, "e3630dde215f3da533f861c33b10bf7dcb03d1e0dc304addd2f5580dc9771195"}}]}, 0x1a4}}, 0x0)

30.762528ms ago: executing program 0 (id=1367):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0xa)
sendmsg$nl_route_sched(r0, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=@newtaction={0x68, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x10000000}, 0x2, r2}}]}, {0x4, 0xa}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0) (fail_nth: 8)

0s ago: executing program 2 (id=1368):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
r0 = openat2(0xffffffffffffff9c, &(0x7f0000001280)='./file0\x00', &(0x7f00000012c0)={0x40082, 0x1c4, 0x40}, 0x18)
r1 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x101}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_mount_image$ext4(&(0x7f00000010c0)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x200000, &(0x7f0000000140)={[{@user_xattr}, {@nombcache}, {@dioread_lock}, {@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@nodelalloc}, {@usrquota}, {@noauto_da_alloc}]}, 0xfe, 0x54d, &(0x7f0000000400)="$eJzs3U1rG0cfAPD/ynLenycOhEB7KIYcmpJGju2+pNBDeixtaKC9p8LemGApCpYcYjfQ5NBceimhUEoDpR+g9x5Dv0A/RaANhBJMe+hFZeWVo8SSrThKrFS/H6w9s7vy7Gj2P57RSCiAkTWZ/ShEvBIR3yQRhzuOFSM/OLl+3trD63PZlkSz+emfSST5vvb5Sf77YDtTjPj1q4iThc3l1ldWF8uVSrqU56ca1StT9ZXVU5eq5YV0Ib08Mzt75u3ZmffefWdgdX3j/N/ff3L3wzNfH1/77uf7R24ncTYO5cc66/EMbnRmJmMyf07G4+wTJ04PoLBhkuz2BbAjY3mcj0fWBxyOsTzqgf++LyOiCYyoRPzDiGqPA9pz+wHNg18aDz5YnwBtrn9x/bWR2NeaGx1YSx6bGWXz3YkBlJ+V8csfd25nWwzudQiAbd24GRGni8XN/V+S9387d7qPc54sQ/8HL87dbPzzZrfxT2Fj/BNdxj8Hu8TuTmwf/4X7Ayimp2z8937X8e/GotXEWJ77X2vMN55cvFRJs77t/xFxIsb3Zvmt1nPOrN1r9jrWOf7Ltqz89lgwv477xb2PP2a+3Cg/S507PbgZ8WrX8W+y0f5Jl/bPno/zfZZxLL3zWq9j29f/+Wr+FPF61/Z/tKKVbL0+OdW6H6bad8Vmf9069luv8ne7/ln7H9i6/hNJ53pt/enL+HHfP2mvYzu9//ckn7XSe/J918qNxtJ0xJ7k4837Zx49tp1vn5/V/8Txrfu/bvf//oj4vM/63zp6q+epw9D+80/V/k+fuPfRFz/0Kr+/9n+rlTqR7+mn/+v3Ap/luQMAAAAAAIBhU4iIQ5EUShvpQqFUWn9/x9E4UKjU6o2TF2vLl+ej9VnZiRgvtFe6D3e8H2I6fz9sOz/zRH42Io5ExLdj+1v50lytMr/blQcAAAAAAAAAAAAAAAAAAIAhcbDH5/8zv4/t9tUBz52v/IbRtW38D+KbnoCh5P8/jC7xD6NL/MPoEv8wusQ/jC7xD6NL/MPoEv8AAAAAAAAAAAAAAAAAAAAAAAAAAAAwUOfPncu25trD63NZfv7qyvJi7eqp+bS+WKouz5XmaktXSgu12kIlLc3Vqtv9vUqtdmV6JpavTTXSemOqvrJ6oVpbvty4cKlaXkgvpOMvpFYAAAAAAAAAAAAAAAAAAADwcqmvrC6WK5V0SUJiR4nicFyGxIATu90zAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAj/wYAAP//Gis4ow==")
setxattr$trusted_overlay_upper(&(0x7f0000000180)='./file0/file0\x00', &(0x7f0000001400), 0x0, 0x386, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYRESDEC=r1, @ANYRES8=r2], 0xa8}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x5, 0x3, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x0, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x72, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x10, 0x200000}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, 0xffffffffffffffff)
r4 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x42002, 0x0)
syz_mount_image$vfat(&(0x7f0000001200), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="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"/643, @ANYRES32=r4], 0x1, 0x11f7, &(0x7f00000024c0)="$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")
socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_int(r5, 0x29, 0x1000000000021, &(0x7f0000000000)=0x1, 0x4)
bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x7, 0x8}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r6}, &(0x7f0000000200), &(0x7f00000002c0)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
faccessat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1000043, &(0x7f0000000000), 0xa, 0x502, &(0x7f0000000b00)="$eJzs3U9vG2kZAPBnnLhN0rDOLhyWldgtu12lCOokm/0TcVi2En9OKyGWexoSJ4rixFXitE1UQfoJQKgCJE6cuCDxAZBQPwJCqgQ3DpxAFaTtgQsyGnvcJo6dJtRrt87vJ03nnfet53mepB7POzOqAzizLkbEJxExFBHvRkQh689lS+w1lvTvPdy/vZguSdRqn/0riSTra93nhexlqR98L+JHydG4Wzu7awvlcmnzcPfuldX1hZXSSmljdnbmw7mP5j6Ymz5hJcnwcaOvRMTH3378i5/+9rsf//EbN/8+/8/LP85HxLVsvF0d3dAoPR8j55s9x6b50hnKKsr3OxEAAE7kUkS8FhFvR8TXohBDA3Z+CgAAAETUvjXevDNVAwAAAAZTLiLGI8kVs+d9xyOXKxYbz/B+KcZy5cpW9evLle2NpXQsYiLyueXVcmk6e1Z4IvJJuj1Tbz/dfq9lezYiXo2Iu4XRdLs+BgAAAPTGhZb5/+NCY/4PAAAADBg34wEAAGDwmf8DAADA4DP/BwAAgIH2/U8/TZfaw/3b9e8BWLqxs71WuXFlqbS1VlzfXiwuVjavF1cqlZVyqTj07P2VK5Xr78fG9q2p6vBWdWprZ3d+vbK9UZ2vf6/3fOm1HtQEAAAAHPbqW/f+mkTE3jdH60vqXDaW72tmwAskGW7puPbVPmUCdMUJLukfdnH780kE6LnWz3Tg7DDHB5LWjpYTg5FOpwp/On0s5xwAANAfk192/x/Oqly/EwD65mf9TgDoG9fi4ezKn/4JQGDAHLn/32Kk08Az7v8/vYZYq506KQAAoKvGG6u9yO4FjkcuVyw+uS2YLK+WS9MR8UpE/KWQP59uz/QxXwAAAAAAAAAAAAAAAAAAAAAAAAB4GdVqSdQAAACAgRaR+0eSff/XZOHSeOv1gXPJfwr1dUTc/PVnv7y1UK1uzqT9/37SX/1V1v9eP65gAAAAwFmUP3a0OU9vzuMBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoJse7t9ebC69jPvgaozGRLv4wzFSX49EPiLGHiUxfOB1SUQMdSH+3p2IeL1d/CRNKyayLMYenT/0ulxEjPY0/uH60/gXuhAfzrJ7VyPik3bvv1xcrK/bv/+Gs+V5Pbhaf5O3jd88/g11OP594YQx3rj/+6mO8e9EvDHc/vjTjJ90iP/OCeNf++Hubqex2m8iJtt+/iSHYk1V169Pbe3sXlldX1gprZQ2ZmdnPpz7aO6Duemp5dVyKfuzbYyff+UPe3c71p+rrw/Gb9Y50cjwJ53qv3TC+v97/9b+FxvN/NH4EZffaf/7f72+bv/zT/9NvJt9DqTjk832XqN90Ju/+/ObnXJL4y91+Pk3fv+FWqf6L5/rWHJyoH2kZgCgv7Z2dtcWyuXSZg8ab7/fvR0mPcr5ZWisjEX0POjIi1F7rxvfee79NE+Hn2c/f+taXemcof1Qnw9MAABA1z096e93JgAAAAAAAAAAAAAAAAAAAHB2/V//edhbp3tVa8y9/pQKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHCs/wUAAP//dvnG0Q==")
r8 = fspick(0xffffffffffffff9c, &(0x7f00000002c0)='.\x00', 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)={0x1b, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x1}, 0x48)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r8, 0x7, 0x0, 0x0, 0x0)
r9 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
close(r9)
r10 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r10, 0x10f, 0x87, &(0x7f0000000000)={0x43}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r9, @ANYBLOB=',wfdno=', @ANYRESHEX=r10])

kernel console output (not intermixed with test programs):

_1
[   70.914913][ T6230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.926965][ T6230] batman_adv: batadv0: Interface activated: batadv_slave_1
[   70.935625][ T4687] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.946978][ T6270] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.960261][ T6230] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   70.969043][ T6230] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   70.977799][ T6230] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   70.986642][ T6230] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.041355][ T6270] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.050867][ T6353] loop1: detected capacity change from 0 to 2048
[   71.065057][ T6355] loop2: detected capacity change from 0 to 128
[   71.081565][ T6355] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   71.094252][ T6355] ext4 filesystem being mounted at /0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   71.096082][ T6353] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.141588][ T6355] FAULT_INJECTION: forcing a failure.
[   71.141588][ T6355] name failslab, interval 1, probability 0, space 0, times 0
[   71.143156][ T6353] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   71.154337][ T6355] CPU: 0 PID: 6355 Comm: syz.2.844 Not tainted 6.10.0-rc6-syzkaller-00210-gd270dd21bee0 #0
[   71.154363][ T6355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   71.169956][ T6353] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 15 with max blocks 1 with error 28
[   71.179041][ T6355] Call Trace:
[   71.179050][ T6355]  <TASK>
[   71.179057][ T6355]  dump_stack_lvl+0xf2/0x150
[   71.189103][ T6353] EXT4-fs (loop1): This should not happen!! Data will be lost
[   71.189103][ T6353] 
[   71.201291][ T6355]  dump_stack+0x15/0x20
[   71.204560][ T6353] EXT4-fs (loop1): Total free blocks count 0
[   71.207474][ T6355]  should_fail_ex+0x229/0x230
[   71.212090][ T6353] EXT4-fs (loop1): Free/Dirty block details
[   71.221690][ T6355]  ? ext4_mb_new_blocks+0x7ad/0x2020
[   71.221720][ T6355]  __should_failslab+0x92/0xa0
[   71.225896][ T6353] EXT4-fs (loop1): free_blocks=2415919104
[   71.231836][ T6355]  should_failslab+0x9/0x20
[   71.236514][ T6353] EXT4-fs (loop1): dirty_blocks=16
[   71.242354][ T6355]  kmem_cache_alloc_noprof+0x4c/0x290
[   71.247625][ T6353] EXT4-fs (loop1): Block reservation details
[   71.252344][ T6355]  ext4_mb_new_blocks+0x7ad/0x2020
[   71.258043][ T6353] EXT4-fs (loop1): i_reserved_data_blocks=1
[   71.290794][ T6355]  ? ext4_find_extent+0x834/0x860
[   71.295885][ T6355]  ? ext4_ext_search_right+0x22d/0x4c0
[   71.301334][ T6355]  ? ext4_ext_check_overlap+0x27b/0x300
[   71.306975][ T6355]  ext4_ext_map_blocks+0x10a1/0x33b0
[   71.312349][ T6355]  ? __rcu_read_unlock+0x4e/0x70
[   71.317371][ T6355]  ? filemap_get_folios_tag+0x1e4/0x210
[   71.322907][ T6355]  ? ext4_es_lookup_extent+0x35b/0x520
[   71.328356][ T6355]  ext4_map_blocks+0x72a/0xf50
[   71.333270][ T6355]  _ext4_get_block+0x104/0x370
[   71.339432][ T6355]  ext4_get_block_unwritten+0x2c/0xb0
[   71.345296][ T6355]  __block_write_begin_int+0x417/0xfa0
[   71.350797][ T6355]  ? __pfx_ext4_get_block_unwritten+0x10/0x10
[   71.356933][ T6355]  ? __pfx_ext4_get_block_unwritten+0x10/0x10
[   71.363033][ T6355]  __block_write_begin+0x5e/0x110
[   71.368241][ T6355]  ext4_write_begin+0x41e/0xbb0
[   71.373187][ T6355]  ? fault_in_readable+0x97/0x1b0
[   71.378228][ T6355]  ext4_da_write_begin+0x1ba/0x550
[   71.383428][ T6355]  generic_perform_write+0x1d5/0x410
[   71.388723][ T6355]  ? __pfx_ext4_da_write_end+0x10/0x10
[   71.394194][ T6355]  ext4_buffered_write_iter+0x1f6/0x380
[   71.400209][ T6355]  ext4_file_write_iter+0x29f/0xe30
[   71.405408][ T6355]  ? kstrtouint+0x77/0xc0
[   71.409860][ T6355]  ? kstrtouint_from_user+0xb0/0xe0
[   71.415104][ T6355]  ? avc_policy_seqno+0x15/0x20
[   71.420080][ T6355]  ? selinux_file_permission+0x22c/0x360
[   71.425716][ T6355]  vfs_write+0x78f/0x900
[   71.429959][ T6355]  ? __pfx_ext4_file_write_iter+0x10/0x10
[   71.435680][ T6355]  ksys_write+0xeb/0x1b0
[   71.439940][ T6355]  __x64_sys_write+0x42/0x50
[   71.444588][ T6355]  x64_sys_call+0x27ef/0x2d70
[   71.449271][ T6355]  do_syscall_64+0xc9/0x1c0
[   71.453766][ T6355]  ? clear_bhb_loop+0x55/0xb0
[   71.458789][ T6355]  ? clear_bhb_loop+0x55/0xb0
[   71.463454][ T6355]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.469405][ T6355] RIP: 0033:0x7f1bc5e4dbd9
[   71.473877][ T6355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.493940][ T6355] RSP: 002b:00007f1bc50cf048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   71.502345][ T6355] RAX: ffffffffffffffda RBX: 00007f1bc5fdbf60 RCX: 00007f1bc5e4dbd9
[   71.510352][ T6355] RDX: 000000000000ffe6 RSI: 0000000020000040 RDI: 0000000000000006
[   71.518311][ T6355] RBP: 00007f1bc50cf0a0 R08: 0000000000000000 R09: 0000000000000000
[   71.526279][ T6355] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   71.534350][ T6355] R13: 000000000000000b R14: 00007f1bc5fdbf60 R15: 00007ffc345120c8
[   71.542331][ T6355]  </TASK>
[   71.576457][ T6270] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.619391][ T6364] loop0: detected capacity change from 0 to 512
[   71.634279][ T3369] bridge_slave_1: left allmulticast mode
[   71.640518][ T3369] bridge_slave_1: left promiscuous mode
[   71.646445][ T3369] bridge0: port 2(bridge_slave_1) entered disabled state
[   71.655916][ T6230] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   71.658712][ T6364] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   71.667004][ T3369] bridge_slave_0: left allmulticast mode
[   71.676331][ T6364] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   71.680523][ T3369] bridge_slave_0: left promiscuous mode
[   71.691025][ T6364] System zones: 1-12
[   71.694404][ T3369] bridge0: port 1(bridge_slave_0) entered disabled state
[   71.706481][ T6364] EXT4-fs (loop0): 1 truncate cleaned up
[   71.712579][ T6364] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.749068][ T5592] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.819619][ T6382] netlink: 24 bytes leftover after parsing attributes in process `syz.2.873'.
[   71.831232][ T3369] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   71.842195][ T3369] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   71.852971][ T3369] bond0 (unregistering): Released all slaves
[   71.862908][ T3369] bond1 (unregistering): Released all slaves
[   71.870742][ T6387] loop0: detected capacity change from 0 to 128
[   71.899490][ T6270] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   71.906628][ T4949] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 4 with error 28
[   71.922828][ T6270] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   71.937872][ T6270] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   71.946892][ T6270] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   71.973884][ T5145] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   72.012844][ T3369] hsr_slave_0: left promiscuous mode
[   72.018680][ T3369] hsr_slave_1: left promiscuous mode
[   72.024253][ T3369] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   72.031695][ T3369] batman_adv: batadv0: Removing interface: batadv_slave_0
[   72.039780][ T3369] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   72.047340][ T3369] batman_adv: batadv0: Removing interface: batadv_slave_1
[   72.056645][ T3369] veth1_macvtap: left promiscuous mode
[   72.062115][ T3369] veth0_macvtap: left promiscuous mode
[   72.067775][ T3369] veth1_vlan: left promiscuous mode
[   72.073084][ T3369] veth0_vlan: left promiscuous mode
[   72.121892][ T3369] infiniband syz0: set down
[   72.127900][  T971] infiniband syz0: ib_query_port failed (-19)
[   72.160237][ T3369] team0 (unregistering): Port device team_slave_1 removed
[   72.170876][ T3369] team0 (unregistering): Port device team_slave_0 removed
[   72.204759][   T11] smc: removing ib device syz0
[   72.224838][ T6270] 8021q: adding VLAN 0 to HW filter on device bond0
[   72.261373][ T6270] 8021q: adding VLAN 0 to HW filter on device team0
[   72.281207][ T3721] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.288586][ T3721] bridge0: port 1(bridge_slave_0) entered forwarding state
[   72.325761][  T715] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.332942][  T715] bridge0: port 2(bridge_slave_1) entered forwarding state
[   72.351184][ T6270] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   72.361671][ T6270] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   72.399432][ T6401] loop0: detected capacity change from 0 to 512
[   72.426500][ T6401] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   72.448337][ T6270] 8021q: adding VLAN 0 to HW filter on device batadv0
[   72.483203][ T6401] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   72.491775][ T6401] System zones: 1-12
[   72.512335][ T6401] EXT4-fs (loop0): 1 truncate cleaned up
[   72.532943][ T6401] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.593897][ T6270] veth0_vlan: entered promiscuous mode
[   72.602508][ T6423] netlink: 4 bytes leftover after parsing attributes in process `syz.4.882'.
[   72.611428][ T6423] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   72.618997][ T6423] batman_adv: batadv0: Removing interface: batadv_slave_0
[   72.631346][ T6423] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   72.639056][ T6423] batman_adv: batadv0: Removing interface: batadv_slave_1
[   72.656295][ T5592] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.683903][ T6270] veth1_vlan: entered promiscuous mode
[   72.708256][ T6270] veth0_macvtap: entered promiscuous mode
[   72.719550][ T6270] veth1_macvtap: entered promiscuous mode
[   72.731557][ T6270] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.742169][ T6270] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.752093][ T6270] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.762537][ T6270] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.772505][ T6270] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.782952][ T6270] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.795437][ T6270] batman_adv: batadv0: Interface activated: batadv_slave_0
[   72.806562][ T6270] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.817029][ T6270] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.827180][ T6270] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.837680][ T6270] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.847615][ T6270] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.858189][ T6270] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.875412][ T6270] batman_adv: batadv0: Interface activated: batadv_slave_1
[   72.891369][ T6270] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.900141][ T6270] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.909072][ T6270] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.917831][ T6270] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.952780][ T6434] loop4: detected capacity change from 0 to 2048
[   72.963641][ T6436] loop1: detected capacity change from 0 to 2048
[   72.997604][ T6434] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.011835][ T6436] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.033199][ T6447] SELinux:  Context #�\& is not valid (left unmapped).
[   73.049578][ T6436] FAULT_INJECTION: forcing a failure.
[   73.049578][ T6436] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   73.062710][ T6436] CPU: 1 PID: 6436 Comm: syz.1.887 Not tainted 6.10.0-rc6-syzkaller-00210-gd270dd21bee0 #0
[   73.072684][ T6436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   73.082741][ T6436] Call Trace:
[   73.086103][ T6436]  <TASK>
[   73.089029][ T6436]  dump_stack_lvl+0xf2/0x150
[   73.093638][ T6436]  dump_stack+0x15/0x20
[   73.097814][ T6436]  should_fail_ex+0x229/0x230
[   73.102571][ T6436]  should_fail+0xb/0x10
[   73.106731][ T6436]  should_fail_usercopy+0x1a/0x20
[   73.111745][ T6436]  _copy_from_user+0x1e/0xd0
[   73.116447][ T6436]  kstrtouint_from_user+0x76/0xe0
[   73.121476][ T6436]  proc_fail_nth_write+0x4f/0x160
[   73.126497][ T6436]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   73.132677][ T6436]  vfs_write+0x28b/0x900
[   73.137014][ T6436]  ? __fget_files+0x1da/0x210
[   73.141689][ T6436]  ksys_write+0xeb/0x1b0
[   73.146055][ T6436]  __x64_sys_write+0x42/0x50
[   73.150667][ T6436]  x64_sys_call+0x27ef/0x2d70
[   73.155391][ T6436]  do_syscall_64+0xc9/0x1c0
[   73.160012][ T6436]  ? clear_bhb_loop+0x55/0xb0
[   73.164789][ T6436]  ? clear_bhb_loop+0x55/0xb0
[   73.169856][ T6436]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.176173][ T6436] RIP: 0033:0x7fe0e483d75f
[   73.180668][ T6436] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[   73.201419][ T6436] RSP: 002b:00007fe0e3ac0040 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   73.210015][ T6436] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe0e483d75f
[   73.218043][ T6436] RDX: 0000000000000001 RSI: 00007fe0e3ac00b0 RDI: 0000000000000006
[   73.226089][ T6436] RBP: 00007fe0e3ac00a0 R08: 0000000000000000 R09: 0000000000000000
[   73.234071][ T6436] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   73.242128][ T6436] R13: 000000000000000b R14: 00007fe0e49ccf60 R15: 00007ffedd9dec58
[   73.250090][ T6436]  </TASK>
[   73.265948][ T3083] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.277335][ T4687] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.328181][ T6456] loop4: detected capacity change from 0 to 512
[   73.335956][ T6456] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   73.357594][ T6456] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   73.371010][ T6456] System zones: 1-12
[   73.393500][ T6456] EXT4-fs (loop4): 1 truncate cleaned up
[   73.399748][ T6456] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.469270][ T3083] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.581593][ T6486] FAULT_INJECTION: forcing a failure.
[   73.581593][ T6486] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   73.594704][ T6486] CPU: 1 PID: 6486 Comm: syz.3.904 Not tainted 6.10.0-rc6-syzkaller-00210-gd270dd21bee0 #0
[   73.604724][ T6486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   73.614929][ T6486] Call Trace:
[   73.618207][ T6486]  <TASK>
[   73.621139][ T6486]  dump_stack_lvl+0xf2/0x150
[   73.625828][ T6486]  dump_stack+0x15/0x20
[   73.629996][ T6486]  should_fail_ex+0x229/0x230
[   73.634694][ T6486]  should_fail+0xb/0x10
[   73.638858][ T6486]  should_fail_usercopy+0x1a/0x20
[   73.643942][ T6486]  _copy_from_user+0x1e/0xd0
[   73.648602][ T6486]  kstrtouint_from_user+0x76/0xe0
[   73.653653][ T6486]  proc_fail_nth_write+0x4f/0x160
[   73.658693][ T6486]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   73.664347][ T6486]  vfs_write+0x28b/0x900
[   73.668710][ T6486]  ? __fget_files+0x1da/0x210
[   73.673393][ T6486]  ksys_write+0xeb/0x1b0
[   73.677705][ T6486]  __x64_sys_write+0x42/0x50
[   73.682348][ T6486]  x64_sys_call+0x27ef/0x2d70
[   73.687193][ T6486]  do_syscall_64+0xc9/0x1c0
[   73.691725][ T6486]  ? clear_bhb_loop+0x55/0xb0
[   73.696402][ T6486]  ? clear_bhb_loop+0x55/0xb0
[   73.701100][ T6486]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.707006][ T6486] RIP: 0033:0x7f1fa181375f
[   73.711436][ T6486] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[   73.731055][ T6486] RSP: 002b:00007f1fa0a96040 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   73.739570][ T6486] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1fa181375f
[   73.747550][ T6486] RDX: 0000000000000001 RSI: 00007f1fa0a960b0 RDI: 0000000000000004
[   73.755638][ T6486] RBP: 00007f1fa0a960a0 R08: 0000000000000000 R09: 0000000000000000
[   73.764145][ T6486] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[   73.772126][ T6486] R13: 000000000000000b R14: 00007f1fa19a2f60 R15: 00007ffe5c61cad8
[   73.780156][ T6486]  </TASK>
[   73.862146][ T6495] netlink: 'syz.1.908': attribute type 21 has an invalid length.
[   74.344563][ T6525] loop3: detected capacity change from 0 to 128
[   74.381049][ T6527] netlink: 8 bytes leftover after parsing attributes in process `syz.4.919'.
[   74.391217][ T6527] loop4: detected capacity change from 0 to 128
[   74.412008][ T6530] loop3: detected capacity change from 0 to 128
[   74.419478][ T6530] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[   74.460500][ T6536] FAULT_INJECTION: forcing a failure.
[   74.460500][ T6536] name failslab, interval 1, probability 0, space 0, times 0
[   74.473234][ T6536] CPU: 1 PID: 6536 Comm: syz.4.920 Not tainted 6.10.0-rc6-syzkaller-00210-gd270dd21bee0 #0
[   74.483287][ T6536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   74.493402][ T6536] Call Trace:
[   74.496676][ T6536]  <TASK>
[   74.499593][ T6536]  dump_stack_lvl+0xf2/0x150
[   74.504229][ T6536]  dump_stack+0x15/0x20
[   74.508443][ T6536]  should_fail_ex+0x229/0x230
[   74.513188][ T6536]  ? kvmalloc_node_noprof+0x72/0x170
[   74.518455][ T6536]  __should_failslab+0x92/0xa0
[   74.523208][ T6536]  should_failslab+0x9/0x20
[   74.527752][ T6536]  __kmalloc_node_noprof+0xa8/0x380
[   74.532998][ T6536]  ? br_vlan_init+0x34/0x110
[   74.537657][ T6536]  kvmalloc_node_noprof+0x72/0x170
[   74.542756][ T6536]  rhashtable_init_noprof+0x312/0x450
[   74.548122][ T6536]  br_vlan_init+0x4b/0x110
[   74.552579][ T6536]  br_dev_init+0x5d/0xf0
[   74.556837][ T6536]  register_netdevice+0x220/0xdd0
[   74.561891][ T6536]  ? dev_addr_mod+0x1df/0x200
[   74.566596][ T6536]  ? validate_linkmsg+0x526/0x5a0
[   74.571736][ T6536]  br_dev_newlink+0x25/0xe0
[   74.576226][ T6536]  ? __pfx_br_dev_newlink+0x10/0x10
[   74.581479][ T6536]  rtnl_newlink+0xefd/0x1690
[   74.586114][ T6536]  ? security_capable+0x64/0x80
[   74.590953][ T6536]  ? ns_capable+0x7d/0xb0
[   74.595270][ T6536]  ? __pfx_rtnl_newlink+0x10/0x10
[   74.600278][ T6536]  rtnetlink_rcv_msg+0x85e/0x910
[   74.605271][ T6536]  ? memcg_list_lru_alloc+0xd2/0x740
[   74.610635][ T6536]  ? mod_objcg_state+0x2e2/0x4e0
[   74.615648][ T6536]  ? __memcg_slab_free_hook+0xc9/0x1e0
[   74.621106][ T6536]  ? xas_load+0x3ae/0x3d0
[   74.625468][ T6536]  ? kmem_cache_free+0xd8/0x280
[   74.630315][ T6536]  ? nlmon_xmit+0x51/0x60
[   74.634657][ T6536]  ? __kfree_skb+0x102/0x150
[   74.639239][ T6536]  ? consume_skb+0x57/0x180
[   74.643729][ T6536]  ? nlmon_xmit+0x51/0x60
[   74.648055][ T6536]  ? dev_hard_start_xmit+0x3c1/0x3f0
[   74.653328][ T6536]  ? __dev_queue_xmit+0xb21/0x1e50
[   74.658489][ T6536]  ? ref_tracker_free+0x3a5/0x410
[   74.663506][ T6536]  netlink_rcv_skb+0x12c/0x230
[   74.668263][ T6536]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   74.673722][ T6536]  rtnetlink_rcv+0x1c/0x30
[   74.678126][ T6536]  netlink_unicast+0x58d/0x660
[   74.682894][ T6536]  netlink_sendmsg+0x5ca/0x6e0
[   74.687650][ T6536]  ? __pfx_netlink_sendmsg+0x10/0x10
[   74.692986][ T6536]  __sock_sendmsg+0x140/0x180
[   74.697737][ T6536]  ____sys_sendmsg+0x312/0x410
[   74.702523][ T6536]  __sys_sendmsg+0x1e9/0x280
[   74.707107][ T6536]  __x64_sys_sendmsg+0x46/0x50
[   74.711858][ T6536]  x64_sys_call+0xb25/0x2d70
[   74.716485][ T6536]  do_syscall_64+0xc9/0x1c0
[   74.720979][ T6536]  ? clear_bhb_loop+0x55/0xb0
[   74.725644][ T6536]  ? clear_bhb_loop+0x55/0xb0
[   74.730324][ T6536]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.736206][ T6536] RIP: 0033:0x7f80e714fbd9
[   74.740660][ T6536] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.760303][ T6536] RSP: 002b:00007f80e63d1048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   74.768984][ T6536] RAX: ffffffffffffffda RBX: 00007f80e72ddf60 RCX: 00007f80e714fbd9
[   74.776949][ T6536] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[   74.785077][ T6536] RBP: 00007f80e63d10a0 R08: 0000000000000000 R09: 0000000000000000
[   74.793033][ T6536] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   74.801059][ T6536] R13: 000000000000000b R14: 00007f80e72ddf60 R15: 00007ffdd6d16b88
[   74.809019][ T6536]  </TASK>
[   74.842362][ T6541] netlink: 24 bytes leftover after parsing attributes in process `syz.4.924'.
[   74.864868][ T6543] netlink: 172 bytes leftover after parsing attributes in process `syz.1.925'.
[   74.878805][ T6538] netlink: 72 bytes leftover after parsing attributes in process `syz.0.922'.
[   74.910084][ T6547] loop1: detected capacity change from 0 to 512
[   74.927550][ T6545] loop3: detected capacity change from 0 to 2048
[   74.949809][ T6547] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.952788][ T6545] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.974981][ T6547] ext4 filesystem being mounted at /91/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.997560][ T6545] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   75.026662][ T6547] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6547 comm=syz.1.926
[   75.039907][ T6545] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 15 with max blocks 1 with error 28
[   75.052201][ T6545] EXT4-fs (loop3): This should not happen!! Data will be lost
[   75.052201][ T6545] 
[   75.061859][ T6545] EXT4-fs (loop3): Total free blocks count 0
[   75.067857][ T6545] EXT4-fs (loop3): Free/Dirty block details
[   75.073743][ T6545] EXT4-fs (loop3): free_blocks=2415919104
[   75.079478][ T6545] EXT4-fs (loop3): dirty_blocks=16
[   75.084579][ T6545] EXT4-fs (loop3): Block reservation details
[   75.090618][ T6545] EXT4-fs (loop3): i_reserved_data_blocks=1
[   75.114251][ T6547] netlink: 24 bytes leftover after parsing attributes in process `syz.1.926'.
[   75.115906][ T6565] loop4: detected capacity change from 0 to 256
[   75.139897][   T40] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   75.162673][ T6565] FAT-fs (loop4): Unrecognized mount option "umask=00000000000000000077C77" or missing value
[   75.291604][ T4687] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.321368][ T6578] loop3: detected capacity change from 0 to 512
[   75.330421][ T6578] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   75.345232][ T6578] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   75.350334][ T3721] kernel write not supported for file /vcsa1 (pid: 3721 comm: kworker/1:10)
[   75.359690][ T6578] System zones: 1-12
[   75.385847][ T6578] EXT4-fs (loop3): 1 truncate cleaned up
[   75.397348][ T6578] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.428816][ T6586] loop0: detected capacity change from 0 to 164
[   75.463038][ T6586] ISOFS: primary root directory is empty. Disabling Rock Ridge and switching to Joliet.
[   75.474817][   T29] kauditd_printk_skb: 20 callbacks suppressed
[   75.474829][   T29] audit: type=1400 audit(1720230564.697:2863): avc:  denied  { mounton } for  pid=6585 comm="syz.0.938" path="/48/file0/file0" dev="loop0" ino=1984 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=dir permissive=1
[   75.505520][   T29] audit: type=1400 audit(1720230564.707:2864): avc:  denied  { validate_trans } for  pid=6585 comm="syz.0.938" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   75.505636][ T6270] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.964427][ T6616] netlink: 72 bytes leftover after parsing attributes in process `syz.3.947'.
[   75.976493][ T6616] netlink: 12 bytes leftover after parsing attributes in process `syz.3.947'.
[   75.985438][ T6616] netlink: 8 bytes leftover after parsing attributes in process `syz.3.947'.
[   76.098382][ T6604] chnl_net:caif_netlink_parms(): no params data found
[   76.167559][ T6638] loop3: detected capacity change from 0 to 2048
[   76.254242][ T6604] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.256897][ T6638] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.261664][ T6604] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.283682][ T6638] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   76.285018][ T6604] bridge_slave_0: entered allmulticast mode
[   76.298708][ T6638] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 15 with max blocks 1 with error 28
[   76.309874][ T6604] bridge_slave_0: entered promiscuous mode
[   76.316764][ T6638] EXT4-fs (loop3): This should not happen!! Data will be lost
[   76.316764][ T6638] 
[   76.329114][ T6604] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.332322][ T6638] EXT4-fs (loop3): Total free blocks count 0
[   76.339265][ T6604] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.351315][ T6604] bridge_slave_1: entered allmulticast mode
[   76.352501][ T6638] EXT4-fs (loop3): Free/Dirty block details
[   76.360633][ T6604] bridge_slave_1: entered promiscuous mode
[   76.364378][ T6638] EXT4-fs (loop3): free_blocks=2415919104
[   76.376177][ T6638] EXT4-fs (loop3): dirty_blocks=16
[   76.376189][ T6638] EXT4-fs (loop3): Block reservation details
[   76.376198][ T6638] EXT4-fs (loop3): i_reserved_data_blocks=1
[   76.390418][ T6604] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   76.408536][ T6604] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   76.424642][   T40] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   76.438859][ T6604] team0: Port device team_slave_0 added
[   76.447444][ T6604] team0: Port device team_slave_1 added
[   76.469535][ T6604] batman_adv: batadv0: Adding interface: batadv_slave_0
[   76.476685][ T6604] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   76.502699][ T6604] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   76.514378][ T6604] batman_adv: batadv0: Adding interface: batadv_slave_1
[   76.521492][ T6604] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   76.547736][ T6604] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   76.557942][ T6654] loop1: detected capacity change from 0 to 128
[   76.565872][ T6654] EXT4-fs: Ignoring removed nobh option
[   76.578304][ T6656] loop3: detected capacity change from 0 to 512
[   76.587087][ T6656] EXT4-fs error (device loop3): ext4_orphan_get:1394: inode #15: comm syz.3.956: casefold flag without casefold feature
[   76.587431][ T6654] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   76.600834][ T6656] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz.3.956: couldn't read orphan inode 15 (err -117)
[   76.617675][ T6654] ext4 filesystem being mounted at /94/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   76.624901][ T6656] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.649945][ T6656] EXT4-fs error (device loop3): htree_dirblock_to_tree:1082: inode #2: comm syz.3.956: Directory hole found for htree leaf block
[   76.672765][ T6604] hsr_slave_0: entered promiscuous mode
[   76.679328][ T6604] hsr_slave_1: entered promiscuous mode
[   76.685486][ T6270] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.695032][ T6604] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   76.702585][ T6604] Cannot create hsr debugfs directory
[   76.703281][ T4687] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   76.740224][ T6661] loop3: detected capacity change from 0 to 512
[   76.747385][ T6661] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   76.763178][ T6661] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   76.773103][ T6661] System zones: 1-12
[   76.793427][ T6661] EXT4-fs (loop3): 1 truncate cleaned up
[   76.805704][ T6661] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.818435][ T6604] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   76.856588][ T6604] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   76.872779][ T6270] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.907110][ T6668] loop2: detected capacity change from 0 to 1024
[   76.921008][ T6604] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   76.934743][ T6668] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.971021][ T6230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.983353][ T6604] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.000732][ T6680] loop3: detected capacity change from 0 to 128
[   77.021033][ T6685] __nla_validate_parse: 5 callbacks suppressed
[   77.021047][ T6685] netlink: 12 bytes leftover after parsing attributes in process `syz.0.963'.
[   77.044642][   T29] audit: type=1400 audit(1720230566.267:2865): avc:  denied  { setopt } for  pid=6687 comm="syz.2.967" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   77.052124][ T6685] netlink: 40 bytes leftover after parsing attributes in process `syz.0.963'.
[   77.077598][ T6604] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   77.091911][ T6604] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   77.111148][ T6690] loop2: detected capacity change from 0 to 512
[   77.120944][ T6604] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   77.131337][ T6694] loop1: detected capacity change from 0 to 128
[   77.131526][ T6690] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   77.150469][ T6690] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   77.151574][ T6604] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   77.158669][ T6690] System zones: 1-12
[   77.170420][ T6690] EXT4-fs (loop2): 1 truncate cleaned up
[   77.177087][ T6690] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.211212][ T6700] loop1: detected capacity change from 0 to 512
[   77.224417][ T6702] loop3: detected capacity change from 0 to 512
[   77.238460][ T6604] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.244955][ T6700] EXT4-fs: Ignoring removed mblk_io_submit option
[   77.250626][ T6604] 8021q: adding VLAN 0 to HW filter on device team0
[   77.264372][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.271696][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.272408][ T6700] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[   77.280703][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.294207][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.302350][ T6700] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[   77.310558][ T6700] System zones: 1-12
[   77.313908][ T6604] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   77.316489][ T6700] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2234: inode #15: comm syz.1.972: corrupted in-inode xattr: e_value size too large
[   77.324801][ T6604] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   77.341299][ T6702] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.361476][ T6700] EXT4-fs error (device loop1): ext4_orphan_get:1399: comm syz.1.972: couldn't read orphan inode 15 (err -117)
[   77.370362][ T6700] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.373586][   T29] audit: type=1400 audit(1720230566.597:2866): avc:  denied  { sys_module } for  pid=6604 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   77.388927][ T6702] ext4 filesystem being mounted at /30/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   77.420122][ T6230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.420189][ T6700] EXT4-fs warning (device loop1): dx_probe:832: inode #2: comm syz.1.972: Unrecognised inode hash code 4
[   77.442064][ T6700] EXT4-fs warning (device loop1): dx_probe:965: inode #2: comm syz.1.972: Corrupt directory, running e2fsck is recommended
[   77.450683][   T29] audit: type=1400 audit(1720230566.617:2867): avc:  denied  { link } for  pid=6699 comm="syz.1.972" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop1" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   77.464218][ T6709] EXT4-fs warning (device loop1): dx_probe:832: inode #2: comm syz.1.972: Unrecognised inode hash code 4
[   77.509289][ T6709] EXT4-fs warning (device loop1): dx_probe:965: inode #2: comm syz.1.972: Corrupt directory, running e2fsck is recommended
[   77.512951][ T6604] 8021q: adding VLAN 0 to HW filter on device batadv0
[   77.526647][ T6709] EXT4-fs warning (device loop1): dx_probe:832: inode #2: comm syz.1.972: Unrecognised inode hash code 4
[   77.540100][ T6709] EXT4-fs warning (device loop1): dx_probe:965: inode #2: comm syz.1.972: Corrupt directory, running e2fsck is recommended
[   77.558709][ T6270] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.565522][   T29] audit: type=1400 audit(1720230566.787:2868): avc:  denied  { mounton } for  pid=6699 comm="syz.1.972" path="/99/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0" dev="loop1" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[   77.686871][ T6604] veth0_vlan: entered promiscuous mode
[   77.694868][   T29] audit: type=1400 audit(1720230566.917:2869): avc:  denied  { rmdir } for  pid=4687 comm="syz-executor" name="file0" dev="loop1" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[   77.697086][ T6604] veth1_vlan: entered promiscuous mode
[   77.717310][ T4687] EXT4-fs error (device loop1): ext4_readdir:260: inode #11: block 18: comm syz-executor: path (unknown): bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0
[   77.734774][ T6604] veth0_macvtap: entered promiscuous mode
[   77.757432][ T6604] veth1_macvtap: entered promiscuous mode
[   77.761663][ T4687] EXT4-fs error (device loop1): ext4_empty_dir:3127: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0
[   77.770695][ T6604] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   77.792812][ T6604] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.802757][ T6604] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   77.812327][ T4687] EXT4-fs error (device loop1): ext4_readdir:260: inode #11: block 18: comm syz-executor: path (unknown): bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0
[   77.813427][ T6604] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.834638][ T4687] EXT4-fs error (device loop1): ext4_empty_dir:3127: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0
[   77.843699][ T6604] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   77.865740][ T4687] EXT4-fs error (device loop1): ext4_readdir:260: inode #11: block 18: comm syz-executor: path (unknown): bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0
[   77.873822][ T6604] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.898414][ T4687] EXT4-fs error (device loop1): ext4_empty_dir:3127: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0
[   77.903497][ T6604] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   77.924903][ T4687] EXT4-fs error (device loop1): ext4_readdir:260: inode #11: block 18: comm syz-executor: path (unknown): bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0
[   77.932789][ T6604] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.954324][ T4687] EXT4-fs error (device loop1): ext4_empty_dir:3127: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0
[   78.009671][ T4687] EXT4-fs error (device loop1): ext4_readdir:260: inode #11: block 18: comm syz-executor: path (unknown): bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0
[   78.032240][ T4687] EXT4-fs error (device loop1): ext4_empty_dir:3127: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0
[   78.033237][ T6604] batman_adv: batadv0: Interface activated: batadv_slave_0
[   78.068824][ T6744] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.070169][ T6604] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.070183][ T6604] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.070193][ T6604] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.070204][ T6604] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.070215][ T6604] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.070227][ T6604] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.070236][ T6604] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.070286][ T6604] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.071208][ T6604] batman_adv: batadv0: Interface activated: batadv_slave_1
[   78.072424][ T6604] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.072454][ T6604] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.072548][ T6604] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.072597][ T6604] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.137228][ T6744] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.182521][ T6744] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.207243][ T6749] loop4: detected capacity change from 0 to 2048
[   78.226972][ T6744] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.294089][ T6744] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.345886][ T6749] loop4: detected capacity change from 0 to 1024
[   78.363577][ T6744] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.377298][ T6749] EXT4-fs: Ignoring removed nomblk_io_submit option
[   78.390754][ T6744] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.428190][ T4687] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.445955][ T6749] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a043c018, mo2=0002]
[   78.453989][ T6744] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.468102][ T6749] System zones: 0-1, 3-12
[   78.510320][ T6749] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.671877][ T6771] netlink: 'syz.2.988': attribute type 4 has an invalid length.
[   78.681959][ T6749] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: none.
[   78.709049][ T6771] netlink: 'syz.2.988': attribute type 4 has an invalid length.
[   78.970368][ T6604] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.047971][ T6760] chnl_net:caif_netlink_parms(): no params data found
[   79.064406][ T6270] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[   79.075389][ T6270] CPU: 0 PID: 6270 Comm: syz-executor Not tainted 6.10.0-rc6-syzkaller-00210-gd270dd21bee0 #0
[   79.086183][ T6270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   79.096764][ T6270] Call Trace:
[   79.100043][ T6270]  <TASK>
[   79.102973][ T6270]  dump_stack_lvl+0xf2/0x150
[   79.107569][ T6270]  dump_stack+0x15/0x20
[   79.111725][ T6270]  dump_header+0x83/0x2d0
[   79.116055][ T6270]  oom_kill_process+0x33e/0x4c0
[   79.121049][ T6270]  out_of_memory+0x9af/0xbe0
[   79.125700][ T6270]  mem_cgroup_out_of_memory+0x13e/0x190
[   79.131407][ T6270]  try_charge_memcg+0x745/0xcd0
[   79.136281][ T6270]  ? _raw_spin_unlock+0x26/0x50
[   79.141876][ T6270]  ? radix_tree_lookup+0xf9/0x150
[   79.146908][ T6270]  mem_cgroup_swapin_charge_folio+0x107/0x1a0
[   79.152972][ T6270]  __read_swap_cache_async+0x2b9/0x520
[   79.158511][ T6270]  swap_cluster_readahead+0x276/0x3f0
[   79.163883][ T6270]  swapin_readahead+0xe2/0x7a0
[   79.168698][ T6270]  ? __filemap_get_folio+0x420/0x5b0
[   79.173982][ T6270]  ? swap_cache_get_folio+0x6e/0x210
[   79.179368][ T6270]  do_swap_page+0x3bc/0x1840
[   79.183951][ T6270]  ? __rcu_read_lock+0x36/0x50
[   79.188712][ T6270]  handle_mm_fault+0x809/0x2a80
[   79.193555][ T6270]  ? mas_walk+0x204/0x320
[   79.197892][ T6270]  exc_page_fault+0x3b9/0x650
[   79.202557][ T6270]  asm_exc_page_fault+0x26/0x30
[   79.207476][ T6270] RIP: 0033:0x7f1fa1846b85
[   79.211882][ T6270] Code: 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d be d9 12 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 <c3> 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 89 74
[   79.231541][ T6270] RSP: 002b:00007ffe5c61cd98 EFLAGS: 00010246
[   79.237650][ T6270] RAX: 0000000000000000 RBX: 0000000000000054 RCX: 00007f1fa1846b83
[   79.245681][ T6270] RDX: 00007ffe5c61cdb0 RSI: 0000000000000000 RDI: 0000000000000000
[   79.253650][ T6270] RBP: 00007ffe5c61ce3c R08: 000000003721ac21 R09: 7fffffffffffffff
[   79.261604][ T6270] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000032
[   79.269564][ T6270] R13: 0000000000013100 R14: 00000000000130a4 R15: 0000000000000005
[   79.277526][ T6270]  </TASK>
[   79.280818][ T6270] memory: usage 226180kB, limit 307200kB, failcnt 2344
[   79.287755][ T6270] memory+swap: usage 226364kB, limit 9007199254740988kB, failcnt 0
[   79.295766][ T6270] kmem: usage 226180kB, limit 9007199254740988kB, failcnt 0
[   79.303056][ T6270] Memory cgroup stats for /syz3:
[   79.313625][ T6270] cache 262144
[   79.322030][ T6270] rss 32768
[   79.325232][ T6270] shmem 0
[   79.328159][ T6270] mapped_file 8192
[   79.331913][ T6270] dirty 8192
[   79.335193][ T6270] writeback 0
[   79.338470][ T6270] workingset_refault_anon 13
[   79.343059][ T6270] workingset_refault_file 71
[   79.347745][ T6270] swap 151552
[   79.351065][ T6270] swapcached 36864
[   79.354811][ T6270] pgpgin 106596
[   79.358343][ T6270] pgpgout 106523
[   79.361885][ T6270] pgfault 88785
[   79.365459][ T6270] pgmajfault 32
[   79.368907][ T6270] inactive_anon 36864
[   79.372880][ T6270] active_anon 0
[   79.376434][ T6270] inactive_file 262144
[   79.380494][ T6270] active_file 0
[   79.383939][ T6270] unevictable 0
[   79.387441][ T6270] hierarchical_memory_limit 314572800
[   79.392796][ T6270] hierarchical_memsw_limit 9223372036854771712
[   79.398982][ T6270] total_cache 262144
[   79.402874][ T6270] total_rss 32768
[   79.406550][ T6270] total_shmem 0
[   79.407736][ T6789] loop4: detected capacity change from 0 to 512
[   79.409988][ T6270] total_mapped_file 8192
[   79.420524][ T6270] total_dirty 8192
[   79.424235][ T6270] total_writeback 0
[   79.428119][ T6270] total_workingset_refault_anon 13
[   79.433217][ T6270] total_workingset_refault_file 71
[   79.438348][ T6270] total_swap 151552
[   79.442134][ T6270] total_swapcached 36864
[   79.446397][ T6270] total_pgpgin 106596
[   79.450374][ T6270] total_pgpgout 106523
[   79.454461][ T6270] total_pgfault 88785
[   79.458518][ T6270] total_pgmajfault 32
[   79.462484][ T6270] total_inactive_anon 36864
[   79.467013][ T6270] total_active_anon 0
[   79.470980][ T6270] total_inactive_file 262144
[   79.475672][ T6270] total_active_file 0
[   79.479639][ T6270] total_unevictable 0
[   79.483691][ T6270] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.981,pid=6739,uid=0
[   79.484641][ T6789] EXT4-fs error (device loop4): ext4_clear_blocks:883: inode #13: comm syz.4.990: attempt to clear invalid blocks 1 len 1
[   79.498460][ T6270] Memory cgroup out of memory: OOM victim 6739 (syz.3.981) is already exiting. Skip killing the task
[   79.524064][ T6789] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.990: bg 0: block 343: padding at end of block bitmap is not set
[   79.540313][ T6789] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6551: Corrupt filesystem
[   79.549739][ T6789] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.990: invalid indirect mapped block 1819239214 (level 0)
[   79.565161][ T6789] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.990: invalid indirect mapped block 1819239214 (level 1)
[   79.591272][ T6789] EXT4-fs (loop4): 1 truncate cleaned up
[   79.600627][ T6760] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.607735][ T6760] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.608136][ T6794] netlink: 20 bytes leftover after parsing attributes in process `syz.3.991'.
[   79.615836][ T6760] bridge_slave_0: entered allmulticast mode
[   79.630344][ T6760] bridge_slave_0: entered promiscuous mode
[   79.649081][ T6760] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.656211][ T6760] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.675687][ T6760] bridge_slave_1: entered allmulticast mode
[   79.685369][ T6760] bridge_slave_1: entered promiscuous mode
[   79.711682][ T6760] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   79.723015][ T6760] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   79.757337][ T6804] loop4: detected capacity change from 0 to 256
[   79.778341][ T6760] team0: Port device team_slave_0 added
[   79.786258][ T6760] team0: Port device team_slave_1 added
[   79.810860][ T6812] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=61458 sclass=netlink_tcpdiag_socket pid=6812 comm=syz.3.999
[   79.868175][ T6816] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.892551][ T6760] batman_adv: batadv0: Adding interface: batadv_slave_0
[   79.899956][ T6760] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   79.926132][ T6760] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   79.938786][ T6760] batman_adv: batadv0: Adding interface: batadv_slave_1
[   79.945950][ T6760] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   79.971920][ T6760] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   79.990954][ T6816] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.032740][ T6760] hsr_slave_0: entered promiscuous mode
[   80.039870][ T6760] hsr_slave_1: entered promiscuous mode
[   80.048155][ T6760] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   80.056779][ T6760] Cannot create hsr debugfs directory
[   80.086077][ T6816] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.101382][ T6821] netlink: 'syz.4.1003': attribute type 4 has an invalid length.
[   80.138169][ T6816] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.155681][ T6821] netlink: 'syz.4.1003': attribute type 4 has an invalid length.
[   80.209737][ T6816] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   80.231641][ T6760] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.246685][ T6816] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   80.260484][ T6816] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   80.274499][ T6816] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   80.305925][ T6760] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.356867][ T6828] loop3: detected capacity change from 0 to 1024
[   80.378543][ T6828] EXT4-fs: Ignoring removed orlov option
[   80.384280][ T6828] EXT4-fs: Ignoring removed nomblk_io_submit option
[   80.403436][ T6760] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.485956][ T6760] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.552066][   T29] audit: type=1400 audit(1720230569.777:2870): avc:  denied  { connect } for  pid=6843 comm="syz.3.1009" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   80.561556][ T6760] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   80.585589][ T6847] loop0: detected capacity change from 0 to 512
[   80.603148][ T6845] loop2: detected capacity change from 0 to 512
[   80.612142][ T6760] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   80.621409][ T6847] ext4 filesystem being mounted at /65/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   80.632666][ T6845] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   80.635220][ T6853] netlink: 'syz.4.1014': attribute type 4 has an invalid length.
[   80.648540][ T6847] EXT4-fs: Cannot change quota options when quota turned on
[   80.657921][ T6845] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   80.666777][ T6845] System zones: 1-12
[   80.671462][ T6845] EXT4-fs (loop2): 1 truncate cleaned up
[   80.687633][ T6760] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   80.687718][ T6847] EXT4-fs error (device loop0): ext4_do_update_inode:5075: inode #18: comm syz.0.1010: corrupted inode contents
[   80.711231][ T6860] loop3: detected capacity change from 0 to 128
[   80.716200][ T6760] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   80.717902][ T6847] EXT4-fs error (device loop0): ext4_dirty_inode:5935: inode #18: comm syz.0.1010: mark_inode_dirty error
[   80.740636][ T6860] ext4 filesystem being mounted at /41/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   80.741390][ T6853] netlink: 'syz.4.1014': attribute type 4 has an invalid length.
[   80.775172][ T6847] EXT4-fs error (device loop0): ext4_do_update_inode:5075: inode #18: comm syz.0.1010: corrupted inode contents
[   80.796529][ T6847] EXT4-fs error (device loop0): ext4_xattr_delete_inode:3001: inode #18: comm syz.0.1010: mark_inode_dirty error
[   80.813549][ T6847] EXT4-fs error (device loop0): ext4_xattr_delete_inode:3004: inode #18: comm syz.0.1010: mark inode dirty (error -117)
[   80.844340][ T6847] EXT4-fs warning (device loop0): ext4_evict_inode:271: xattr delete (err -117)
[   80.933691][ T6760] 8021q: adding VLAN 0 to HW filter on device bond0
[   80.956481][ T6847] EXT4-fs error (device loop0): ext4_find_dest_de:2111: inode #12: block 32: comm syz.0.1010: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[   80.977927][ T6760] 8021q: adding VLAN 0 to HW filter on device team0
[   80.997584][ T3721] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.004997][ T3721] bridge0: port 1(bridge_slave_0) entered forwarding state
[   81.020542][ T6878] loop2: detected capacity change from 0 to 512
[   81.042493][ T3721] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.049624][ T3721] bridge0: port 2(bridge_slave_1) entered forwarding state
[   81.081613][ T6878] ext4 filesystem being mounted at /25/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.113105][ T6878] FAULT_INJECTION: forcing a failure.
[   81.113105][ T6878] name failslab, interval 1, probability 0, space 0, times 0
[   81.125946][ T6878] CPU: 1 PID: 6878 Comm: syz.2.1019 Not tainted 6.10.0-rc6-syzkaller-00210-gd270dd21bee0 #0
[   81.136040][ T6878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   81.146095][ T6878] Call Trace:
[   81.149372][ T6878]  <TASK>
[   81.152291][ T6878]  dump_stack_lvl+0xf2/0x150
[   81.156879][ T6878]  dump_stack+0x15/0x20
[   81.161023][ T6878]  should_fail_ex+0x229/0x230
[   81.165732][ T6878]  ? get_free_dqblk+0x30/0x2d0
[   81.171394][ T6878]  __should_failslab+0x92/0xa0
[   81.176801][ T6878]  should_failslab+0x9/0x20
[   81.181398][ T6878]  __kmalloc_noprof+0xa5/0x370
[   81.188151][ T6878]  get_free_dqblk+0x30/0x2d0
[   81.192936][ T6878]  ? should_failslab+0x9/0x20
[   81.197622][ T6878]  ? __kmalloc_noprof+0x165/0x370
[   81.202666][ T6878]  do_insert_tree+0x161/0x960
[   81.208023][ T6878]  ? ext4_bread+0xcc/0x110
[   81.212470][ T6878]  ? from_kuid+0xee/0x340
[   81.216838][ T6878]  ? ext4_quota_read+0x19b/0x1c0
[   81.222199][ T6878]  do_insert_tree+0x71c/0x960
[   81.226968][ T6878]  qtree_write_dquot+0x2e4/0x320
[   81.232973][ T6878]  v2_write_dquot+0xd3/0x130
[   81.237773][ T6878]  dquot_acquire+0x1ba/0x2b0
[   81.242469][ T6878]  ext4_acquire_dquot+0x170/0x210
[   81.247486][ T6878]  dqget+0x522/0x8b0
[   81.251383][ T6878]  __dquot_initialize+0x194/0x760
[   81.256494][ T6878]  dquot_initialize+0x1a/0x20
[   81.261309][ T6878]  ext4_create+0x4b/0x2f0
[   81.265693][ T6878]  ? __pfx_ext4_create+0x10/0x10
[   81.270639][ T6878]  path_openat+0xdbc/0x1fa0
[   81.275212][ T6878]  do_filp_open+0xf7/0x200
[   81.279658][ T6878]  do_sys_openat2+0xab/0x120
[   81.285007][ T6878]  __x64_sys_creat+0x66/0x90
[   81.290044][ T6878]  x64_sys_call+0x2365/0x2d70
[   81.294902][ T6878]  do_syscall_64+0xc9/0x1c0
[   81.299664][ T6878]  ? clear_bhb_loop+0x55/0xb0
[   81.304440][ T6878]  ? clear_bhb_loop+0x55/0xb0
[   81.309166][ T6878]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.316417][ T6878] RIP: 0033:0x7f1bc5e4dbd9
[   81.320927][ T6878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.341117][ T6878] RSP: 002b:00007f1bc50cf048 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[   81.350635][ T6878] RAX: ffffffffffffffda RBX: 00007f1bc5fdbf60 RCX: 00007f1bc5e4dbd9
[   81.359390][ T6878] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000100
[   81.367905][ T6878] RBP: 00007f1bc50cf0a0 R08: 0000000000000000 R09: 0000000000000000
[   81.377086][ T6878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   81.385970][ T6878] R13: 000000000000000b R14: 00007f1bc5fdbf60 R15: 00007ffc345120c8
[   81.393961][ T6878]  </TASK>
[   81.397147][ T6878] Quota error (device loop2): qtree_write_dquot: Error -12 occurred while creating quota
[   81.407757][ T6878] EXT4-fs error (device loop2): ext4_acquire_dquot:6860: comm syz.2.1019: Failed to acquire dquot type 0
[   81.446004][ T6892] loop4: detected capacity change from 0 to 512
[   81.451582][ T6760] 8021q: adding VLAN 0 to HW filter on device batadv0
[   81.454813][ T6892] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   81.470443][ T6892] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   81.484526][ T6892] System zones: 1-12
[   81.490876][ T6892] EXT4-fs (loop4): 1 truncate cleaned up
[   81.522778][ T6900] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1024'.
[   81.568083][ T6760] veth0_vlan: entered promiscuous mode
[   81.580586][ T6760] veth1_vlan: entered promiscuous mode
[   81.589130][ T6909] loop2: detected capacity change from 0 to 512
[   81.595470][ T6760] veth0_macvtap: entered promiscuous mode
[   81.597599][ T6760] veth1_macvtap: entered promiscuous mode
[   81.621773][ T6909] EXT4-fs error (device loop2): ext4_orphan_get:1394: inode #15: comm syz.2.1028: casefold flag without casefold feature
[   81.621871][ T6760] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.645632][ T6760] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.652716][ T6909] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz.2.1028: couldn't read orphan inode 15 (err -117)
[   81.656532][ T6760] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.656550][ T6760] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.656572][ T6760] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.700946][ T6760] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.710764][ T6760] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.721277][ T6760] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.731159][ T6760] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.741702][ T6760] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.754125][ T6760] batman_adv: batadv0: Interface activated: batadv_slave_0
[   81.764156][ T6760] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.774614][ T6760] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.784451][ T6760] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.795049][ T6760] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.804925][ T6760] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.815539][ T6760] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.825372][ T6760] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.835794][ T6760] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.845624][ T6760] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.856113][ T6760] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.867998][ T6760] batman_adv: batadv0: Interface activated: batadv_slave_1
[   81.878048][ T6912] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1028'.
[   81.911084][ T6760] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   81.919885][ T6760] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   81.929124][ T6760] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   81.938073][ T6760] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   81.984209][ T6930] loop4: detected capacity change from 0 to 2048
[   82.030085][ T6940] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1037'.
[   82.041387][   T29] audit: type=1326 audit(1720230571.267:2871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6939 comm="syz.2.1038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bc5e4dbd9 code=0x7ffc0000
[   82.065667][   T29] audit: type=1326 audit(1720230571.267:2872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6939 comm="syz.2.1038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bc5e4dbd9 code=0x7ffc0000
[   82.090391][ T3369] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   82.106873][ T3369] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[   82.119530][ T3369] EXT4-fs (loop4): This should not happen!! Data will be lost
[   82.119530][ T3369] 
[   82.129515][ T3369] EXT4-fs (loop4): Total free blocks count 0
[   82.135655][ T3369] EXT4-fs (loop4): Free/Dirty block details
[   82.141802][ T3369] EXT4-fs (loop4): free_blocks=2415919104
[   82.147844][ T3369] EXT4-fs (loop4): dirty_blocks=16
[   82.149792][   T29] audit: type=1326 audit(1720230571.297:2873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6939 comm="syz.2.1038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1bc5e4dbd9 code=0x7ffc0000
[   82.153291][ T3369] EXT4-fs (loop4): Block reservation details
[   82.176970][   T29] audit: type=1326 audit(1720230571.297:2874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6939 comm="syz.2.1038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bc5e4dbd9 code=0x7ffc0000
[   82.182906][ T3369] EXT4-fs (loop4): i_reserved_data_blocks=1
[   82.206572][   T29] audit: type=1326 audit(1720230571.297:2875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6939 comm="syz.2.1038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bc5e4dbd9 code=0x7ffc0000
[   82.237162][   T29] audit: type=1326 audit(1720230571.297:2876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6939 comm="syz.2.1038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7f1bc5e4dbd9 code=0x7ffc0000
[   82.262786][   T29] audit: type=1326 audit(1720230571.297:2877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6939 comm="syz.2.1038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bc5e4dbd9 code=0x7ffc0000
[   82.287751][   T29] audit: type=1326 audit(1720230571.297:2878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6939 comm="syz.2.1038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bc5e4dbd9 code=0x7ffc0000
[   82.429605][ T6974] netlink: 'syz.2.1045': attribute type 1 has an invalid length.
[   82.499769][ T6988] FAULT_INJECTION: forcing a failure.
[   82.499769][ T6988] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   82.513532][ T6988] CPU: 0 PID: 6988 Comm: syz.2.1051 Not tainted 6.10.0-rc6-syzkaller-00210-gd270dd21bee0 #0
[   82.523696][ T6988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   82.533749][ T6988] Call Trace:
[   82.537021][ T6988]  <TASK>
[   82.539970][ T6988]  dump_stack_lvl+0xf2/0x150
[   82.544694][ T6988]  dump_stack+0x15/0x20
[   82.548855][ T6988]  should_fail_ex+0x229/0x230
[   82.553544][ T6988]  __should_fail_alloc_page+0xfd/0x110
[   82.559056][ T6988]  __alloc_pages_noprof+0x109/0x360
[   82.564296][ T6988]  alloc_pages_mpol_noprof+0xb1/0x1e0
[   82.569685][ T6988]  vma_alloc_folio_noprof+0x176/0x2d0
[   82.575139][ T6988]  handle_mm_fault+0xd2c/0x2a80
[   82.580055][ T6988]  ? mas_walk+0x204/0x320
[   82.584411][ T6988]  exc_page_fault+0x3b9/0x650
[   82.589090][ T6988]  asm_exc_page_fault+0x26/0x30
[   82.593994][ T6988] RIP: 0033:0x7f1bc5d13500
[   82.598400][ T6988] Code: 39 4f 08 72 4c 8d 4d ff 85 ed 74 33 66 0f 1f 44 00 00 48 39 f0 72 1b 4d 8b 07 49 89 c1 49 29 f1 47 0f b6 0c 08 45 84 c9 74 08 <45> 88 0c 00 49 8b 47 10 48 83 c0 01 49 89 47 10 83 e9 01 73 d3 41
[   82.618007][ T6988] RSP: 002b:00007f1bc50ce4b0 EFLAGS: 00010286
[   82.624069][ T6988] RAX: 0000000000005000 RBX: 00007f1bc50ce550 RCX: 0000000000000003
[   82.632031][ T6988] RDX: 00000000000000ff RSI: 0000000000000400 RDI: 00007f1bc50ce5f0
[   82.639992][ T6988] RBP: 0000000000000004 R08: 00007f1bbccaf000 R09: 00000000000000ed
[   82.647962][ T6988] R10: 0000000020000742 R11: 0000000000000634 R12: 0000000000000301
[   82.655923][ T6988] R13: 00007f1bc5ecdfa0 R14: 0000000000000013 R15: 00007f1bc50ce5f0
[   82.663891][ T6988]  </TASK>
[   82.667277][ T6988] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[   82.679677][ T6988] loop2: detected capacity change from 0 to 1024
[   82.687895][ T6988] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[   82.698696][ T6988] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (25054!=20869)
[   82.708435][ T6988] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   82.718525][ T6988] EXT4-fs (loop2): filesystem has both journal inode and journal device!
[   82.780746][ T7003] syz.2.1056: attempt to access beyond end of device
[   82.780746][ T7003] loop5: rw=0, sector=0, nr_sectors = 1 limit=0
[   82.781132][ T7004] SELinux:  Context d is not valid (left unmapped).
[   82.793725][ T7003] FAT-fs (loop5): unable to read boot sector
[   82.827042][ T7009] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1058'.
[   83.310727][ T7050] loop4: detected capacity change from 0 to 128
[   83.478269][ T7060] netlink: 'syz.3.1076': attribute type 4 has an invalid length.
[   83.507456][ T7060] netlink: 'syz.3.1076': attribute type 4 has an invalid length.
[   83.643052][ T7067] loop3: detected capacity change from 0 to 4096
[   83.970550][    C0] dccp_invalid_packet: P.Data Offset(0) too small
[   84.010738][ T7092] netlink: 'syz.3.1087': attribute type 4 has an invalid length.
[   84.026926][ T7092] netlink: 'syz.3.1087': attribute type 4 has an invalid length.
[   84.202442][ T7103] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1092'.
[   84.764232][ T7116] dccp_v6_rcv: dropped packet with invalid checksum
[   84.782405][ T7118] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1096'.
[   84.807967][ T7121] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1097'.
[   84.867513][ T7123] netlink: 'syz.1.1098': attribute type 4 has an invalid length.
[   85.424265][ T7145] loop2: detected capacity change from 0 to 1024
[   85.430902][ T7145] EXT4-fs: Ignoring removed bh option
[   85.445554][ T7145] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a040c118, mo2=0002]
[   85.453718][ T7145] System zones: 0-1, 3-12
[   85.535338][ T7154] loop2: detected capacity change from 0 to 1024
[   85.542086][ T7154] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   85.551013][ T7154] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[   85.561836][ T7154] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (25054!=20869)
[   85.571629][ T7154] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   85.581705][ T7154] EXT4-fs (loop2): filesystem has both journal inode and journal device!
[   85.602724][   T29] kauditd_printk_skb: 11 callbacks suppressed
[   85.602738][   T29] audit: type=1326 audit(1720230574.827:2890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7155 comm="syz.0.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b63eaabd9 code=0x7ffc0000
[   85.638115][ T7158] validate_nla: 1 callbacks suppressed
[   85.638129][ T7158] netlink: 'syz.2.1109': attribute type 4 has an invalid length.
[   85.658163][   T29] audit: type=1326 audit(1720230574.827:2891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7155 comm="syz.0.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b63eaabd9 code=0x7ffc0000
[   85.676837][ T7162] loop1: detected capacity change from 0 to 1024
[   85.681729][   T29] audit: type=1326 audit(1720230574.827:2892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7155 comm="syz.0.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f3b63eaabd9 code=0x7ffc0000
[   85.711597][   T29] audit: type=1326 audit(1720230574.877:2893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7155 comm="syz.0.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b63eaabd9 code=0x7ffc0000
[   85.718971][ T7162] FAULT_INJECTION: forcing a failure.
[   85.718971][ T7162] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   85.735412][   T29] audit: type=1326 audit(1720230574.877:2894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7155 comm="syz.0.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b63eaabd9 code=0x7ffc0000
[   85.748205][ T7162] CPU: 0 PID: 7162 Comm: syz.1.1111 Not tainted 6.10.0-rc6-syzkaller-00210-gd270dd21bee0 #0
[   85.771540][   T29] audit: type=1326 audit(1720230574.877:2895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7155 comm="syz.0.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3b63eaabd9 code=0x7ffc0000
[   85.771564][   T29] audit: type=1326 audit(1720230574.877:2896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7155 comm="syz.0.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b63eaabd9 code=0x7ffc0000
[   85.781592][ T7162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   85.781604][ T7162] Call Trace:
[   85.781613][ T7162]  <TASK>
[   85.804840][   T29] audit: type=1326 audit(1720230574.877:2897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7155 comm="syz.0.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b63eaabd9 code=0x7ffc0000
[   85.804861][   T29] audit: type=1326 audit(1720230574.877:2898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7155 comm="syz.0.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7f3b63eaabd9 code=0x7ffc0000
[   85.828173][ T7162]  dump_stack_lvl+0xf2/0x150
[   85.838221][   T29] audit: type=1326 audit(1720230574.877:2899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7155 comm="syz.0.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b63eaabd9 code=0x7ffc0000
[   85.841473][ T7162]  dump_stack+0x15/0x20
[   85.923198][ T7162]  should_fail_ex+0x229/0x230
[   85.927914][ T7162]  should_fail+0xb/0x10
[   85.932098][ T7162]  should_fail_usercopy+0x1a/0x20
[   85.937112][ T7162]  _copy_to_user+0x1e/0xa0
[   85.941597][ T7162]  msr_read+0xf8/0x180
[   85.945662][ T7162]  ? __pfx_msr_read+0x10/0x10
[   85.950345][ T7162]  vfs_read+0x1a2/0x6e0
[   85.954504][ T7162]  ? __rcu_read_unlock+0x4e/0x70
[   85.959499][ T7162]  ? __fget_files+0x1da/0x210
[   85.964230][ T7162]  ksys_read+0xeb/0x1b0
[   85.968380][ T7162]  __x64_sys_read+0x42/0x50
[   85.972914][ T7162]  x64_sys_call+0x27e5/0x2d70
[   85.977596][ T7162]  do_syscall_64+0xc9/0x1c0
[   85.982150][ T7162]  ? clear_bhb_loop+0x55/0xb0
[   85.986937][ T7162]  ? clear_bhb_loop+0x55/0xb0
[   85.991611][ T7162]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.997640][ T7162] RIP: 0033:0x7fd2ddd83bd9
[   86.002042][ T7162] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.021742][ T7162] RSP: 002b:00007fd2dd005048 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   86.030141][ T7162] RAX: ffffffffffffffda RBX: 00007fd2ddf11f60 RCX: 00007fd2ddd83bd9
[   86.038098][ T7162] RDX: 0000000000018ff8 RSI: 0000000020019680 RDI: 0000000000000007
[   86.046057][ T7162] RBP: 00007fd2dd0050a0 R08: 0000000000000000 R09: 0000000000000000
[   86.054033][ T7162] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   86.062013][ T7162] R13: 000000000000000b R14: 00007fd2ddf11f60 R15: 00007ffcc71d4578
[   86.070027][ T7162]  </TASK>
[   86.250473][ T7179] netlink: 'syz.2.1118': attribute type 29 has an invalid length.
[   86.258732][ T7179] netlink: 'syz.2.1118': attribute type 29 has an invalid length.
[   86.274897][ T7179] netlink: 'syz.2.1118': attribute type 29 has an invalid length.
[   86.319639][ T7187] bond1: entered allmulticast mode
[   86.325039][ T7187] 8021q: adding VLAN 0 to HW filter on device bond1
[   86.326959][ T7187] bridge0: port 3(bond1) entered blocking state
[   86.326996][ T7187] bridge0: port 3(bond1) entered disabled state
[   86.328340][ T7187] bond1: entered promiscuous mode
[   86.328662][ T7187] bridge0: port 3(bond1) entered blocking state
[   86.328702][ T7187] bridge0: port 3(bond1) entered forwarding state
[   86.367835][ T7197] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1125'.
[   86.429893][ T7204] netlink: 'syz.2.1128': attribute type 4 has an invalid length.
[   86.438123][ T7204] netlink: 'syz.2.1128': attribute type 4 has an invalid length.
[   86.515142][ T7212] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(9)
[   86.521742][ T7212] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[   86.529578][ T7212] vhci_hcd vhci_hcd.0: Device attached
[   86.537836][    C1] dccp_invalid_packet: P.Data Offset(0) too small
[   86.543311][ T7212] bridge_slave_0: left allmulticast mode
[   86.549975][ T7212] bridge_slave_0: left promiscuous mode
[   86.555650][ T7212] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.578473][ T7215] vhci_hcd: connection closed
[   86.578680][ T4949] vhci_hcd: stop threads
[   86.588282][ T4949] vhci_hcd: release socket
[   86.592692][ T4949] vhci_hcd: disconnect device
[   86.708130][ T7228] loop2: detected capacity change from 0 to 256
[   86.746344][ T5145] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   86.840287][ T7242] netlink: 'syz.2.1139': attribute type 4 has an invalid length.
[   86.857301][ T7242] netlink: 'syz.2.1139': attribute type 4 has an invalid length.
[   86.949965][    C0] dccp_invalid_packet: P.Data Offset(0) too small
[   87.046190][ T7253] loop4: detected capacity change from 0 to 128
[   87.097346][ T7255] loop4: detected capacity change from 0 to 512
[   87.106867][ T7255] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   87.119916][ T7255] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   87.132543][ T7255] System zones: 1-12
[   87.134078][ T7257] loop0: detected capacity change from 0 to 256
[   87.146179][ T7260] loop2: detected capacity change from 0 to 256
[   87.159797][ T7255] EXT4-fs (loop4): 1 truncate cleaned up
[   87.171117][ T7262] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.184518][ T5145] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   87.229102][ T7264] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[   87.229102][ T7264] The task syz.2.1147 (7264) triggered the difference, watch for misbehavior.
[   87.256925][ T3730] bridge0: port 3(bond1) entered disabled state
[   87.267216][ T7266] netlink: 'syz.0.1150': attribute type 4 has an invalid length.
[   87.290889][ T7266] netlink: 'syz.0.1150': attribute type 4 has an invalid length.
[   87.356712][ T7278] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   87.364094][ T7278] vhci_hcd: invalid port number 68
[   87.369272][ T7278] vhci_hcd: GetPortErrorCount req not supported for USB 2.0 roothub
[   87.382605][    C0] dccp_invalid_packet: P.Data Offset(0) too small
[   87.474208][ T7290] loop3: detected capacity change from 0 to 512
[   87.481032][ T7290] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   87.492511][ T7290] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   87.501274][ T7290] System zones: 1-12
[   87.507549][ T7290] EXT4-fs (loop3): 1 truncate cleaned up
[   87.606412][ T7298] loop3: detected capacity change from 0 to 256
[   87.647005][ T5145] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   87.769305][    C0] dccp_invalid_packet: P.Data Offset(0) too small
[   87.801287][ T7313] program syz.3.1168 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   87.860789][ T7320] loop3: detected capacity change from 0 to 2048
[   87.878667][ T7320] geneve2: entered promiscuous mode
[   87.991242][ T7326] loop2: detected capacity change from 0 to 512
[   87.998731][ T7326] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   88.009444][ T7326] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   88.017722][ T7326] System zones: 1-12
[   88.022570][ T7326] EXT4-fs (loop2): 1 truncate cleaned up
[   88.149685][ T7334] loop2: detected capacity change from 0 to 256
[   88.186179][ T7340] loop2: detected capacity change from 0 to 128
[   88.226785][    C0] dccp_invalid_packet: P.Data Offset(0) too small
[   88.247982][ T7350] loop3: detected capacity change from 0 to 512
[   88.250003][ T7340] syzkaller0: entered promiscuous mode
[   88.259800][ T7340] syzkaller0: entered allmulticast mode
[   88.270028][ T7350] ext4 filesystem being mounted at /89/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   88.308077][ T7350] 9pnet: Could not find request transport: rdma��g��?L�����.W��?L�f3��?
[   88.406329][ T7362] loop2: detected capacity change from 0 to 512
[   88.408474][ T7262] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.413919][ T7362] EXT4-fs: EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[   88.459141][ T7368] loop4: detected capacity change from 0 to 512
[   88.466870][ T7262] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.469114][ T7368] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   88.490387][ T7368] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   88.499075][ T7368] System zones: 1-12
[   88.503981][   T11] nci: nci_add_new_protocol: the target found does not have the desired protocol
[   88.519506][ T7368] EXT4-fs (loop4): 1 truncate cleaned up
[   88.526576][ T7262] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.589923][ T7262] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   88.606306][ T7262] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   88.617518][ T7262] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   88.629116][ T7262] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   88.666970][ T7385] loop1: detected capacity change from 0 to 2048
[   88.685693][ T7383] loop4: detected capacity change from 0 to 8192
[   88.692486][ T7383] FAT-fs (loop4): Unrecognized mount option "memory.events" or missing value
[   88.765467][ T7385] loop1: detected capacity change from 0 to 1024
[   88.783448][ T7385] EXT4-fs: Ignoring removed nomblk_io_submit option
[   88.804287][ T7391] loop4: detected capacity change from 0 to 512
[   88.811756][ T7385] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a043c018, mo2=0002]
[   88.820170][ T7385] System zones: 0-1, 3-12
[   88.827413][ T7391] ext4 filesystem being mounted at /41/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.838660][ T7385] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: none.
[   88.893352][ T7396] EXT4-fs error (device loop4): ext4_get_first_dir_block:3537: inode #12: comm syz.4.1194: Directory hole found for htree leaf block
[   88.971164][ T7398] FAULT_INJECTION: forcing a failure.
[   88.971164][ T7398] name failslab, interval 1, probability 0, space 0, times 0
[   88.983906][ T7398] CPU: 0 PID: 7398 Comm: syz.1.1195 Not tainted 6.10.0-rc6-syzkaller-00210-gd270dd21bee0 #0
[   88.993968][ T7398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   89.004062][ T7398] Call Trace:
[   89.007369][ T7398]  <TASK>
[   89.010304][ T7398]  dump_stack_lvl+0xf2/0x150
[   89.014881][ T7398]  dump_stack+0x15/0x20
[   89.019129][ T7398]  should_fail_ex+0x229/0x230
[   89.023802][ T7398]  ? nft_trans_table_add+0x35/0x140
[   89.029010][ T7398]  __should_failslab+0x92/0xa0
[   89.033863][ T7398]  should_failslab+0x9/0x20
[   89.038359][ T7398]  kmalloc_trace_noprof+0x4b/0x2a0
[   89.043458][ T7398]  nft_trans_table_add+0x35/0x140
[   89.048474][ T7398]  nf_tables_newtable+0x985/0xec0
[   89.053593][ T7398]  nfnetlink_rcv+0xb1d/0x15b0
[   89.058272][ T7398]  netlink_unicast+0x58d/0x660
[   89.063027][ T7398]  netlink_sendmsg+0x5ca/0x6e0
[   89.067814][ T7398]  ? __pfx_netlink_sendmsg+0x10/0x10
[   89.073092][ T7398]  __sock_sendmsg+0x140/0x180
[   89.077832][ T7398]  ____sys_sendmsg+0x312/0x410
[   89.082668][ T7398]  __sys_sendmsg+0x1e9/0x280
[   89.087298][ T7398]  __x64_sys_sendmsg+0x46/0x50
[   89.092231][ T7398]  x64_sys_call+0xb25/0x2d70
[   89.096838][ T7398]  do_syscall_64+0xc9/0x1c0
[   89.101356][ T7398]  ? clear_bhb_loop+0x55/0xb0
[   89.106065][ T7398]  ? clear_bhb_loop+0x55/0xb0
[   89.110730][ T7398]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.116703][ T7398] RIP: 0033:0x7fd2ddd83bd9
[   89.121191][ T7398] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.140786][ T7398] RSP: 002b:00007fd2dd005048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   89.149183][ T7398] RAX: ffffffffffffffda RBX: 00007fd2ddf11f60 RCX: 00007fd2ddd83bd9
[   89.157175][ T7398] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000004
[   89.165130][ T7398] RBP: 00007fd2dd0050a0 R08: 0000000000000000 R09: 0000000000000000
[   89.173087][ T7398] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   89.181042][ T7398] R13: 000000000000000b R14: 00007fd2ddf11f60 R15: 00007ffcc71d4578
[   89.189014][ T7398]  </TASK>
[   89.300179][ T7408] batman_adv: batadv0: Adding interface: team0
[   89.307393][ T7408] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   89.332573][ T7408] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[   89.375963][ T7411] loop0: detected capacity change from 0 to 512
[   89.379773][ T7410] loop3: detected capacity change from 0 to 512
[   89.401094][ T7410] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   89.411638][ T7410] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   89.412434][ T7411] ext4 filesystem being mounted at /103/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.419611][ T7410] System zones: 1-12
[   89.434438][ T7410] EXT4-fs (loop3): 1 truncate cleaned up
[   89.757821][ T7431] loop1: detected capacity change from 0 to 1024
[   89.772908][ T7431] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[   89.792237][ T7431] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   89.824295][ T7431] EXT4-fs (loop1): invalid journal inode
[   89.841335][ T7431] EXT4-fs (loop1): can't get journal size
[   89.917328][ T7443] loop3: detected capacity change from 0 to 512
[   89.924542][ T7443] EXT4-fs (loop3): blocks per group (71) and clusters per group (32768) inconsistent
[   90.016830][ T7455] loop1: detected capacity change from 0 to 512
[   90.024285][ T7455] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   90.042786][ T7455] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   90.052058][ T7455] System zones: 1-12
[   90.057836][ T7455] EXT4-fs (loop1): 1 truncate cleaned up
[   90.135308][ T7468] loop3: detected capacity change from 0 to 512
[   90.144547][ T7468] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2234: inode #12: comm syz.3.1219: corrupted in-inode xattr: invalid ea_ino
[   90.147840][ T7469] loop0: detected capacity change from 0 to 512
[   90.159429][ T7468] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz.3.1219: couldn't read orphan inode 12 (err -117)
[   90.188467][ T7469] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   90.208248][ T7469] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec01c, mo2=0002]
[   90.228942][ T7469] System zones: 1-12
[   90.236166][ T7469] EXT4-fs (loop0): 1 truncate cleaned up
[   90.250999][ T7469] FAULT_INJECTION: forcing a failure.
[   90.250999][ T7469] name failslab, interval 1, probability 0, space 0, times 0
[   90.263745][ T7469] CPU: 0 PID: 7469 Comm: syz.0.1220 Not tainted 6.10.0-rc6-syzkaller-00210-gd270dd21bee0 #0
[   90.273819][ T7469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   90.283879][ T7469] Call Trace:
[   90.287246][ T7469]  <TASK>
[   90.290209][ T7469]  dump_stack_lvl+0xf2/0x150
[   90.294811][ T7469]  dump_stack+0x15/0x20
[   90.298970][ T7469]  should_fail_ex+0x229/0x230
[   90.303708][ T7469]  ? ext4_mb_new_blocks+0x7ad/0x2020
[   90.309033][ T7469]  __should_failslab+0x92/0xa0
[   90.313833][ T7469]  should_failslab+0x9/0x20
[   90.318334][ T7469]  kmem_cache_alloc_noprof+0x4c/0x290
[   90.323772][ T7469]  ext4_mb_new_blocks+0x7ad/0x2020
[   90.328920][ T7469]  ? __blk_mq_alloc_requests+0xc38/0xc90
[   90.334591][ T7469]  ? update_io_ticks+0x164/0x190
[   90.339595][ T7469]  ext4_ind_map_blocks+0xb3a/0x14f0
[   90.344785][ T7469]  ext4_map_blocks+0x6de/0xf50
[   90.349578][ T7469]  ext4_iomap_begin+0x4a9/0x5d0
[   90.354484][ T7469]  iomap_iter+0x3cc/0x800
[   90.358859][ T7469]  ? __pfx_ext4_iomap_begin+0x10/0x10
[   90.364286][ T7469]  __iomap_dio_rw+0xb4f/0x1090
[   90.369103][ T7469]  ? ext4_reserve_inode_write+0x184/0x200
[   90.374935][ T7469]  iomap_dio_rw+0x40/0x90
[   90.379342][ T7469]  ext4_file_write_iter+0xaa4/0xe30
[   90.384576][ T7469]  vfs_write+0x78f/0x900
[   90.388824][ T7469]  ? __pfx_ext4_file_write_iter+0x10/0x10
[   90.394587][ T7469]  ksys_write+0xeb/0x1b0
[   90.398825][ T7469]  __x64_sys_write+0x42/0x50
[   90.403431][ T7469]  x64_sys_call+0x27ef/0x2d70
[   90.408273][ T7469]  do_syscall_64+0xc9/0x1c0
[   90.412786][ T7469]  ? clear_bhb_loop+0x55/0xb0
[   90.417458][ T7469]  ? clear_bhb_loop+0x55/0xb0
[   90.422129][ T7469]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.428069][ T7469] RIP: 0033:0x7f3b63eaabd9
[   90.432485][ T7469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.452165][ T7469] RSP: 002b:00007f3b6312c048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   90.460639][ T7469] RAX: ffffffffffffffda RBX: 00007f3b64038f60 RCX: 00007f3b63eaabd9
[   90.468723][ T7469] RDX: 000000000000f000 RSI: 0000000020000200 RDI: 0000000000000007
[   90.476693][ T7469] RBP: 00007f3b6312c0a0 R08: 0000000000000000 R09: 0000000000000000
[   90.484682][ T7469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   90.492663][ T7469] R13: 000000000000000b R14: 00007f3b64038f60 R15: 00007ffeb5fffc68
[   90.500631][ T7469]  </TASK>
[   90.533277][ T7488] loop1: detected capacity change from 0 to 128
[   90.600295][ T5145] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   90.825832][ T7500] tipc: Started in network mode
[   90.830788][ T7500] tipc: Node identity fe800000000000000000000000000012, cluster identity 4711
[   90.839935][ T7500] tipc: Enabled bearer <udp:syz0>, priority 10
[   90.898594][ T7497] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1225'.
[   90.917054][ T7506] loop0: detected capacity change from 0 to 512
[   90.930198][ T7506] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   90.951548][ T7506] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   90.955063][ T7514] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1231'.
[   90.976951][ T7506] System zones: 1-12
[   90.987814][   T29] kauditd_printk_skb: 14 callbacks suppressed
[   90.987826][   T29] audit: type=1400 audit(1720230580.217:2914): avc:  denied  { watch watch_reads } for  pid=7512 comm="syz.2.1231" path="/72/file1" dev="tmpfs" ino=408 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   91.018057][ T7506] EXT4-fs (loop0): 1 truncate cleaned up
[   91.047918][ T7521] ieee802154 phy0 wpan0: encryption failed: -22
[   91.098857][ T7527] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3
[   91.133230][ T7534] loop3: detected capacity change from 0 to 1024
[   91.146366][ T7534] EXT4-fs: Ignoring removed oldalloc option
[   91.161734][ T7534] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   91.424248][ T7565] Illegal XDP return value 13826 on prog  (id 296) dev N/A, expect packet loss!
[   91.446291][ T7565] team0 (unregistering): Port device team_slave_0 removed
[   91.458918][ T7565] team0 (unregistering): Port device team_slave_1 removed
[   91.469577][ T7567] netlink: 5 bytes leftover after parsing attributes in process `syz.2.1248'.
[   91.544818][   T29] audit: type=1326 audit(1720230580.767:2915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7566 comm="syz.2.1248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bc5e4dbd9 code=0x7ffc0000
[   91.568375][   T29] audit: type=1326 audit(1720230580.767:2916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7566 comm="syz.2.1248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f1bc5e4dbd9 code=0x7ffc0000
[   91.591895][   T29] audit: type=1326 audit(1720230580.767:2917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7566 comm="syz.2.1248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bc5e4dbd9 code=0x7ffc0000
[   91.615431][   T29] audit: type=1326 audit(1720230580.777:2918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7566 comm="syz.2.1248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bc5e4dbd9 code=0x7ffc0000
[   91.654542][   T29] audit: type=1326 audit(1720230580.807:2919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7566 comm="syz.2.1248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f1bc5e4dbd9 code=0x7ffc0000
[   91.661316][ T7575] loop3: detected capacity change from 0 to 8192
[   91.678192][   T29] audit: type=1326 audit(1720230580.807:2920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7566 comm="syz.2.1248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bc5e4dbd9 code=0x7ffc0000
[   91.707891][   T29] audit: type=1326 audit(1720230580.807:2921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7566 comm="syz.2.1248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bc5e4dbd9 code=0x7ffc0000
[   91.731336][   T29] audit: type=1326 audit(1720230580.807:2922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7566 comm="syz.2.1248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f1bc5e4dbd9 code=0x7ffc0000
[   91.754795][   T29] audit: type=1326 audit(1720230580.807:2923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7566 comm="syz.2.1248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bc5e4dbd9 code=0x7ffc0000
[   91.823303][ T7589] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1255'.
[   91.827124][ T7587] loop1: detected capacity change from 0 to 164
[   91.842039][ T7589] xt_CT: You must specify a L4 protocol and not use inversions on it
[   91.845418][ T7587] isofs_fill_super: bread failed, dev=loop1, iso_blknum=41, block=82
[   91.859174][ T5145] I/O error, dev loop3, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   91.949618][ T7599] FAULT_INJECTION: forcing a failure.
[   91.949618][ T7599] name failslab, interval 1, probability 0, space 0, times 0
[   91.954773][    T9] tipc: Node number set to 4269801490
[   91.962321][ T7599] CPU: 1 PID: 7599 Comm: syz.1.1258 Not tainted 6.10.0-rc6-syzkaller-00210-gd270dd21bee0 #0
[   91.977674][ T7599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   91.987711][ T7599] Call Trace:
[   91.990973][ T7599]  <TASK>
[   91.993937][ T7599]  dump_stack_lvl+0xf2/0x150
[   91.998516][ T7599]  dump_stack+0x15/0x20
[   92.002751][ T7599]  should_fail_ex+0x229/0x230
[   92.007496][ T7599]  ? kvmalloc_node_noprof+0x72/0x170
[   92.012799][ T7599]  __should_failslab+0x92/0xa0
[   92.017547][ T7599]  should_failslab+0x9/0x20
[   92.022043][ T7599]  __kmalloc_node_noprof+0xa8/0x380
[   92.027235][ T7599]  kvmalloc_node_noprof+0x72/0x170
[   92.032329][ T7599]  alloc_netdev_mqs+0x6e6/0x8b0
[   92.037169][ T7599]  rtnl_create_link+0x233/0x680
[   92.042006][ T7599]  rtnl_newlink+0xe10/0x1690
[   92.046589][ T7599]  ? security_capable+0x64/0x80
[   92.051433][ T7599]  ? ns_capable+0x7d/0xb0
[   92.055745][ T7599]  ? __pfx_rtnl_newlink+0x10/0x10
[   92.060750][ T7599]  rtnetlink_rcv_msg+0x85e/0x910
[   92.065791][ T7599]  ? memcg_list_lru_alloc+0xd2/0x740
[   92.071184][ T7599]  ? mod_objcg_state+0x2e2/0x4e0
[   92.076368][ T7599]  ? __memcg_slab_free_hook+0xc9/0x1e0
[   92.081912][ T7599]  ? xas_load+0x3ae/0x3d0
[   92.086246][ T7599]  ? kmem_cache_free+0xd8/0x280
[   92.091188][ T7599]  ? nlmon_xmit+0x51/0x60
[   92.095589][ T7599]  ? __kfree_skb+0x102/0x150
[   92.100162][ T7599]  ? consume_skb+0x57/0x180
[   92.104698][ T7599]  ? nlmon_xmit+0x51/0x60
[   92.109104][ T7599]  ? dev_hard_start_xmit+0x3c1/0x3f0
[   92.114575][ T7599]  ? __dev_queue_xmit+0xb21/0x1e50
[   92.119756][ T7599]  ? ref_tracker_free+0x3a5/0x410
[   92.124897][ T7599]  netlink_rcv_skb+0x12c/0x230
[   92.129681][ T7599]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   92.135134][ T7599]  rtnetlink_rcv+0x1c/0x30
[   92.139539][ T7599]  netlink_unicast+0x58d/0x660
[   92.144292][ T7599]  netlink_sendmsg+0x5ca/0x6e0
[   92.149064][ T7599]  ? __pfx_netlink_sendmsg+0x10/0x10
[   92.154337][ T7599]  __sock_sendmsg+0x140/0x180
[   92.159034][ T7599]  ____sys_sendmsg+0x312/0x410
[   92.163782][ T7599]  __sys_sendmsg+0x1e9/0x280
[   92.168399][ T7599]  __x64_sys_sendmsg+0x46/0x50
[   92.173144][ T7599]  x64_sys_call+0xb25/0x2d70
[   92.177719][ T7599]  do_syscall_64+0xc9/0x1c0
[   92.182354][ T7599]  ? clear_bhb_loop+0x55/0xb0
[   92.187015][ T7599]  ? clear_bhb_loop+0x55/0xb0
[   92.191714][ T7599]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.197622][ T7599] RIP: 0033:0x7fd2ddd83bd9
[   92.202022][ T7599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.221680][ T7599] RSP: 002b:00007fd2dd005048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   92.230177][ T7599] RAX: ffffffffffffffda RBX: 00007fd2ddf11f60 RCX: 00007fd2ddd83bd9
[   92.238188][ T7599] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000004
[   92.246143][ T7599] RBP: 00007fd2dd0050a0 R08: 0000000000000000 R09: 0000000000000000
[   92.254097][ T7599] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   92.262052][ T7599] R13: 000000000000000b R14: 00007fd2ddf11f60 R15: 00007ffcc71d4578
[   92.270063][ T7599]  </TASK>
[   92.274924][ T7605] validate_nla: 12 callbacks suppressed
[   92.274937][ T7605] netlink: 'syz.4.1260': attribute type 1 has an invalid length.
[   92.288332][ T7605] netlink: 'syz.4.1260': attribute type 2 has an invalid length.
[   92.311524][ T7608] loop3: detected capacity change from 0 to 1024
[   92.339176][ T7608] EXT4-fs: Ignoring removed orlov option
[   92.344937][ T7608] EXT4-fs: Ignoring removed nomblk_io_submit option
[   92.354434][ T7615] loop0: detected capacity change from 0 to 512
[   92.361652][ T7615] EXT4-fs warning (device loop0): ext4_init_metadata_csum:4591: metadata_csum and uninit_bg are redundant flags; please run fsck.
[   92.375256][ T7615] EXT4-fs (loop0): VFS: Found ext4 filesystem with unknown checksum algorithm.
[   92.378255][ T7617] loop1: detected capacity change from 0 to 128
[   92.406637][ T7617] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[   92.417638][ T7617] FAT-fs (loop1): FAT read failed (blocknr 255)
[   92.425107][ T5145] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   92.472875][    C0] dccp_invalid_packet: P.Data Offset(0) too small
[   92.641599][ T7671] FAULT_INJECTION: forcing a failure.
[   92.641599][ T7671] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   92.654780][ T7671] CPU: 0 PID: 7671 Comm: syz.2.1278 Not tainted 6.10.0-rc6-syzkaller-00210-gd270dd21bee0 #0
[   92.664856][ T7671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   92.674984][ T7671] Call Trace:
[   92.678266][ T7671]  <TASK>
[   92.681182][ T7671]  dump_stack_lvl+0xf2/0x150
[   92.685897][ T7671]  dump_stack+0x15/0x20
[   92.690072][ T7671]  should_fail_ex+0x229/0x230
[   92.694927][ T7671]  should_fail+0xb/0x10
[   92.699082][ T7671]  should_fail_usercopy+0x1a/0x20
[   92.704116][ T7671]  _copy_to_user+0x1e/0xa0
[   92.708525][ T7671]  simple_read_from_buffer+0xa0/0x110
[   92.713941][ T7671]  proc_fail_nth_read+0xfc/0x140
[   92.719031][ T7671]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   92.724607][ T7671]  vfs_read+0x1a2/0x6e0
[   92.728787][ T7671]  ? __rcu_read_unlock+0x4e/0x70
[   92.734369][ T7671]  ? __fget_files+0x1da/0x210
[   92.739288][ T7671]  ksys_read+0xeb/0x1b0
[   92.743680][ T7671]  __x64_sys_read+0x42/0x50
[   92.748173][ T7671]  x64_sys_call+0x27e5/0x2d70
[   92.752837][ T7671]  do_syscall_64+0xc9/0x1c0
[   92.757376][ T7671]  ? clear_bhb_loop+0x55/0xb0
[   92.762105][ T7671]  ? clear_bhb_loop+0x55/0xb0
[   92.766815][ T7671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.773104][ T7671] RIP: 0033:0x7f1bc5e4c6bc
[   92.777508][ T7671] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[   92.797913][ T7671] RSP: 002b:00007f1bc50cf040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   92.806341][ T7671] RAX: ffffffffffffffda RBX: 00007f1bc5fdbf60 RCX: 00007f1bc5e4c6bc
[   92.814345][ T7671] RDX: 000000000000000f RSI: 00007f1bc50cf0b0 RDI: 0000000000000006
[   92.822387][ T7671] RBP: 00007f1bc50cf0a0 R08: 0000000000000000 R09: 0000000000000000
[   92.830347][ T7671] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   92.838354][ T7671] R13: 000000000000000b R14: 00007f1bc5fdbf60 R15: 00007ffc345120c8
[   92.846335][ T7671]  </TASK>
[   92.892289][ T7680] loop3: detected capacity change from 0 to 128
[   92.914484][ T7688] loop1: detected capacity change from 0 to 1024
[   92.968997][ T7692] FAULT_INJECTION: forcing a failure.
[   92.968997][ T7692] name failslab, interval 1, probability 0, space 0, times 0
[   92.983346][ T7692] CPU: 1 PID: 7692 Comm: syz.3.1284 Not tainted 6.10.0-rc6-syzkaller-00210-gd270dd21bee0 #0
[   92.995772][ T7692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   93.006229][ T7692] Call Trace:
[   93.009518][ T7692]  <TASK>
[   93.012475][ T7692]  dump_stack_lvl+0xf2/0x150
[   93.017140][ T7692]  dump_stack+0x15/0x20
[   93.021384][ T7692]  should_fail_ex+0x229/0x230
[   93.026140][ T7692]  ? sctp_get_port_local+0x410/0xa90
[   93.031452][ T7692]  __should_failslab+0x92/0xa0
[   93.036248][ T7692]  should_failslab+0x9/0x20
[   93.040815][ T7692]  kmem_cache_alloc_noprof+0x4c/0x290
[   93.046329][ T7692]  sctp_get_port_local+0x410/0xa90
[   93.051522][ T7692]  sctp_do_bind+0x3a1/0x4c0
[   93.056108][ T7692]  sctp_connect_new_asoc+0x15b/0x3b0
[   93.061443][ T7692]  sctp_sendmsg+0xf05/0x1920
[   93.066077][ T7692]  ? __pfx_sctp_sendmsg+0x10/0x10
[   93.071107][ T7692]  inet_sendmsg+0xc5/0xd0
[   93.075485][ T7692]  __sock_sendmsg+0x102/0x180
[   93.080162][ T7692]  __sys_sendto+0x1e5/0x260
[   93.084688][ T7692]  __x64_sys_sendto+0x78/0x90
[   93.089375][ T7692]  x64_sys_call+0x16d7/0x2d70
[   93.094173][ T7692]  do_syscall_64+0xc9/0x1c0
[   93.098748][ T7692]  ? clear_bhb_loop+0x55/0xb0
[   93.103415][ T7692]  ? clear_bhb_loop+0x55/0xb0
[   93.108082][ T7692]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.114118][ T7692] RIP: 0033:0x7f1fa1814bd9
[   93.118520][ T7692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.138158][ T7692] RSP: 002b:00007f1fa0a96048 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   93.146559][ T7692] RAX: ffffffffffffffda RBX: 00007f1fa19a2f60 RCX: 00007f1fa1814bd9
[   93.154518][ T7692] RDX: 0000000000000001 RSI: 00000000200002c0 RDI: 0000000000000006
[   93.162489][ T7692] RBP: 00007f1fa0a960a0 R08: 0000000020000100 R09: 000000000000001c
[   93.170455][ T7692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   93.178497][ T7692] R13: 000000000000000b R14: 00007f1fa19a2f60 R15: 00007ffe5c61cad8
[   93.186461][ T7692]  </TASK>
[   93.216050][ T7688] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1283'.
[   93.254934][ T7702] loop3: detected capacity change from 0 to 1024
[   93.273224][ T7706] digital: digital_start_poll: Unknown protocol
[   93.291648][ T7712] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1290'.
[   93.317056][ T7718] FAULT_INJECTION: forcing a failure.
[   93.317056][ T7718] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   93.330469][ T7718] CPU: 0 PID: 7718 Comm: syz.4.1293 Not tainted 6.10.0-rc6-syzkaller-00210-gd270dd21bee0 #0
[   93.340608][ T7718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   93.350664][ T7718] Call Trace:
[   93.353936][ T7718]  <TASK>
[   93.356864][ T7718]  dump_stack_lvl+0xf2/0x150
[   93.361455][ T7718]  dump_stack+0x15/0x20
[   93.365604][ T7718]  should_fail_ex+0x229/0x230
[   93.370293][ T7718]  should_fail+0xb/0x10
[   93.374485][ T7718]  should_fail_usercopy+0x1a/0x20
[   93.379698][ T7718]  _copy_from_iter+0xd3/0xb00
[   93.384437][ T7718]  ? kmalloc_reserve+0x16e/0x190
[   93.389421][ T7718]  ? __build_skb_around+0x196/0x1f0
[   93.394645][ T7718]  ? __alloc_skb+0x217/0x300
[   93.399329][ T7718]  ? __virt_addr_valid+0x1dd/0x240
[   93.404425][ T7718]  ? __check_object_size+0x35b/0x510
[   93.409703][ T7718]  netlink_sendmsg+0x460/0x6e0
[   93.414527][ T7718]  ? __pfx_netlink_sendmsg+0x10/0x10
[   93.419827][ T7718]  __sock_sendmsg+0x140/0x180
[   93.424530][ T7718]  ____sys_sendmsg+0x312/0x410
[   93.429299][ T7718]  __sys_sendmsg+0x1e9/0x280
[   93.433900][ T7718]  __x64_sys_sendmsg+0x46/0x50
[   93.438673][ T7718]  x64_sys_call+0xb25/0x2d70
[   93.443325][ T7718]  do_syscall_64+0xc9/0x1c0
[   93.447824][ T7718]  ? clear_bhb_loop+0x55/0xb0
[   93.452597][ T7718]  ? clear_bhb_loop+0x55/0xb0
[   93.457348][ T7718]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.463293][ T7718] RIP: 0033:0x7f00ff1e6bd9
[   93.467795][ T7718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.487401][ T7718] RSP: 002b:00007f00fe468048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   93.495811][ T7718] RAX: ffffffffffffffda RBX: 00007f00ff374f60 RCX: 00007f00ff1e6bd9
[   93.503770][ T7718] RDX: 0000000000000000 RSI: 0000000020000340 RDI: 0000000000000004
[   93.511829][ T7718] RBP: 00007f00fe4680a0 R08: 0000000000000000 R09: 0000000000000000
[   93.519809][ T7718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   93.527776][ T7718] R13: 000000000000000b R14: 00007f00ff374f60 R15: 00007fffecb99b58
[   93.535749][ T7718]  </TASK>
[   93.603159][ T7726] loop3: detected capacity change from 0 to 512
[   93.661537][ T5145] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   93.675893][ T7741] loop4: detected capacity change from 0 to 1024
[   93.682304][ T7726] loop3: detected capacity change from 0 to 512
[   93.692576][ T7726] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[   93.705698][    C1] dccp_invalid_packet: P.Data Offset(0) too small
[   93.713011][ T7726] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #15: comm syz.3.1295: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 24833, max 4(4), depth 0(0)
[   93.739948][ T7726] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz.3.1295: couldn't read orphan inode 15 (err -117)
[   93.761673][ T7726] ext2 filesystem being mounted at /113/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.797240][ T7741] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1301'.
[   93.948049][ T7772] loop3: detected capacity change from 0 to 1024
[   94.027469][ T7784] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   94.076705][ T7784] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   94.126330][ T7784] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   94.152690][ T7789] loop1: detected capacity change from 0 to 512
[   94.171182][ T7789] ext4 filesystem being mounted at /45/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.171776][ T7793] loop0: detected capacity change from 0 to 128
[   94.190124][ T7784] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   94.250696][ T7784] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.268525][ T7784] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.268888][ T7797] loop0: detected capacity change from 0 to 512
[   94.281058][ T7784] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   94.296604][ T7784] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   94.298051][ T7797] ext4 filesystem being mounted at /131/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   94.320512][ T7799] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1320'.
[   94.325749][ T7797] team0: entered promiscuous mode
[   94.334547][ T7797] team_slave_0: entered promiscuous mode
[   94.334761][ T7797] team_slave_1: entered promiscuous mode
[   94.352255][ T7797] team0: left promiscuous mode
[   94.357348][ T7797] team_slave_0: left promiscuous mode
[   94.363431][ T7797] team_slave_1: left promiscuous mode
[   94.374280][ T7806] tun0: tun_chr_ioctl cmd 2148553947
[   94.381874][ T7806] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1322'.
[   94.392115][ T7806] netlink: 192 bytes leftover after parsing attributes in process `syz.3.1322'.
[   94.435536][ T7814] loop1: detected capacity change from 0 to 1024
[   94.442518][ T7814] EXT4-fs: Ignoring removed orlov option
[   94.448299][ T7814] EXT4-fs: Ignoring removed nomblk_io_submit option
[   94.455976][ T7814] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[   94.471112][ T7818] loop0: detected capacity change from 0 to 1024
[   94.496551][ T7818] EXT4-fs error (device loop0): ext4_find_dest_de:2111: inode #2: block 16: comm syz.0.1327: bad entry in directory: rec_len is smaller than minimal - offset=60, inode=21519, rec_len=0, size=1024 fake=0
[   94.521848][ T7823] EXT4-fs error (device loop0): ext4_find_dest_de:2111: inode #2: block 16: comm syz.0.1327: bad entry in directory: rec_len is smaller than minimal - offset=60, inode=21519, rec_len=0, size=1024 fake=0
[   94.545976][ T7818] EXT4-fs error (device loop0): ext4_find_dest_de:2111: inode #2: block 16: comm syz.0.1327: bad entry in directory: rec_len is smaller than minimal - offset=60, inode=21519, rec_len=0, size=1024 fake=0
[   94.556846][ T7814] loop1: detected capacity change from 0 to 512
[   94.567263][ T7823] EXT4-fs error (device loop0): ext4_find_dest_de:2111: inode #2: block 16: comm syz.0.1327: bad entry in directory: rec_len is smaller than minimal - offset=60, inode=21519, rec_len=0, size=1024 fake=0
[   94.577987][ T7814] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13
[   94.600546][ T7814] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.1325: invalid indirect mapped block 2683928664 (level 1)
[   94.610442][ T5592] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 16: comm syz-executor: path (unknown): bad entry in directory: rec_len is smaller than minimal - offset=60, inode=21519, rec_len=0, size=1024 fake=0
[   94.625168][ T7814] EXT4-fs (loop1): 1 truncate cleaned up
[   94.691108][ T7840] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[   94.725692][ T7847] netlink: 'syz.2.1336': attribute type 4 has an invalid length.
[   94.734404][ T7847] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   94.753419][ T7847] bridge0: entered promiscuous mode
[   94.767587][ T7851] FAULT_INJECTION: forcing a failure.
[   94.767587][ T7851] name failslab, interval 1, probability 0, space 0, times 0
[   94.780311][ T7851] CPU: 0 PID: 7851 Comm: syz.0.1337 Not tainted 6.10.0-rc6-syzkaller-00210-gd270dd21bee0 #0
[   94.790436][ T7851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   94.800526][ T7851] Call Trace:
[   94.803808][ T7851]  <TASK>
[   94.807537][ T7851]  dump_stack_lvl+0xf2/0x150
[   94.812241][ T7851]  dump_stack+0x15/0x20
[   94.816550][ T7851]  should_fail_ex+0x229/0x230
[   94.821662][ T7851]  ? __nf_conntrack_alloc+0xcd/0x280
[   94.826961][ T7851]  __should_failslab+0x92/0xa0
[   94.831720][ T7851]  should_failslab+0x9/0x20
[   94.836289][ T7851]  kmem_cache_alloc_noprof+0x4c/0x290
[   94.841690][ T7851]  __nf_conntrack_alloc+0xcd/0x280
[   94.846886][ T7851]  init_conntrack+0x191/0x970
[   94.851561][ T7851]  nf_conntrack_in+0x899/0xf20
[   94.856379][ T7851]  ? __pfx_ipv6_conntrack_local+0x10/0x10
[   94.862126][ T7851]  ipv6_conntrack_local+0x1d/0x30
[   94.867158][ T7851]  nf_hook_slow+0x86/0x1b0
[   94.871588][ T7851]  ip6_xmit+0xbeb/0xc30
[   94.875793][ T7851]  ? __pfx_dst_output+0x10/0x10
[   94.880642][ T7851]  ? inet6_csk_route_socket+0x280/0x3e0
[   94.886247][ T7851]  inet6_csk_xmit+0x1cf/0x210
[   94.890922][ T7851]  ? __pfx_inet6_csk_xmit+0x10/0x10
[   94.896158][ T7851]  __tcp_transmit_skb+0x121d/0x1970
[   94.901416][ T7851]  tcp_connect+0x1dea/0x2200
[   94.906267][ T7851]  tcp_v6_connect+0xb99/0xc60
[   94.910937][ T7851]  ? mod_objcg_state+0x2e2/0x4e0
[   94.915874][ T7851]  __inet_stream_connect+0x162/0x790
[   94.921244][ T7851]  ? tcp_sendmsg_fastopen+0x163/0x4f0
[   94.926616][ T7851]  ? kmalloc_trace_noprof+0x20c/0x2a0
[   94.932107][ T7851]  tcp_sendmsg_fastopen+0x40e/0x4f0
[   94.937347][ T7851]  ? __pfx_tcp_sendmsg+0x10/0x10
[   94.942336][ T7851]  tcp_sendmsg_locked+0x2445/0x2640
[   94.947670][ T7851]  ? mntput+0x49/0x70
[   94.951674][ T7851]  ? __rcu_read_unlock+0x4e/0x70
[   94.956705][ T7851]  ? avc_has_perm_noaudit+0x1cc/0x210
[   94.962069][ T7851]  ? avc_has_perm+0xd4/0x160
[   94.966660][ T7851]  ? _raw_spin_unlock_bh+0x36/0x40
[   94.971844][ T7851]  ? __pfx_tcp_sendmsg+0x10/0x10
[   94.976845][ T7851]  tcp_sendmsg+0x30/0x50
[   94.981125][ T7851]  inet6_sendmsg+0x77/0xd0
[   94.985530][ T7851]  __sock_sendmsg+0x8b/0x180
[   94.990113][ T7851]  __sys_sendto+0x1e5/0x260
[   94.994695][ T7851]  __x64_sys_sendto+0x78/0x90
[   94.999360][ T7851]  x64_sys_call+0x16d7/0x2d70
[   95.004313][ T7851]  do_syscall_64+0xc9/0x1c0
[   95.008861][ T7851]  ? clear_bhb_loop+0x55/0xb0
[   95.013822][ T7851]  ? clear_bhb_loop+0x55/0xb0
[   95.018657][ T7851]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.024751][ T7851] RIP: 0033:0x7f3b63eaabd9
[   95.029249][ T7851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.049007][ T7851] RSP: 002b:00007f3b6312c048 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   95.057487][ T7851] RAX: ffffffffffffffda RBX: 00007f3b64038f60 RCX: 00007f3b63eaabd9
[   95.065532][ T7851] RDX: 0000000000000005 RSI: 0000000020000200 RDI: 0000000000000004
[   95.073561][ T7851] RBP: 00007f3b6312c0a0 R08: 0000000020b63fe4 R09: 000000000000001c
[   95.081719][ T7851] R10: 0000000020004002 R11: 0000000000000246 R12: 0000000000000001
[   95.089779][ T7851] R13: 000000000000000b R14: 00007f3b64038f60 R15: 00007ffeb5fffc68
[   95.097747][ T7851]  </TASK>
[   95.138880][ T7857] loop4: detected capacity change from 0 to 1024
[   95.161670][    C0] dccp_invalid_packet: P.Data Offset(0) too small
[   95.206583][ T7861] EXT4-fs error (device loop1): ext4_find_dest_de:2111: inode #2: block 13: comm syz.1.1325: bad entry in directory: rec_len % 4 != 0 - offset=108, inode=4294901777, rec_len=65535, size=1024 fake=0
[   95.305922][ T7864] loop1: detected capacity change from 0 to 512
[   95.316999][ T7864] ext4 filesystem being mounted at /50/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   95.329145][ T7864] FAULT_INJECTION: forcing a failure.
[   95.329145][ T7864] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   95.342315][ T7864] CPU: 0 PID: 7864 Comm: syz.1.1340 Not tainted 6.10.0-rc6-syzkaller-00210-gd270dd21bee0 #0
[   95.352391][ T7864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   95.362449][ T7864] Call Trace:
[   95.365782][ T7864]  <TASK>
[   95.368701][ T7864]  dump_stack_lvl+0xf2/0x150
[   95.373347][ T7864]  dump_stack+0x15/0x20
[   95.377486][ T7864]  should_fail_ex+0x229/0x230
[   95.382161][ T7864]  should_fail+0xb/0x10
[   95.386315][ T7864]  should_fail_usercopy+0x1a/0x20
[   95.391428][ T7864]  _copy_to_user+0x1e/0xa0
[   95.395866][ T7864]  simple_read_from_buffer+0xa0/0x110
[   95.401234][ T7864]  proc_fail_nth_read+0xfc/0x140
[   95.406169][ T7864]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   95.411784][ T7864]  vfs_read+0x1a2/0x6e0
[   95.416077][ T7864]  ? __rcu_read_unlock+0x4e/0x70
[   95.421095][ T7864]  ? __fget_files+0x1da/0x210
[   95.425762][ T7864]  ksys_read+0xeb/0x1b0
[   95.429906][ T7864]  __x64_sys_read+0x42/0x50
[   95.434453][ T7864]  x64_sys_call+0x27e5/0x2d70
[   95.439123][ T7864]  do_syscall_64+0xc9/0x1c0
[   95.443728][ T7864]  ? clear_bhb_loop+0x55/0xb0
[   95.449522][ T7864]  ? clear_bhb_loop+0x55/0xb0
[   95.454495][ T7864]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.460484][ T7864] RIP: 0033:0x7fd2ddd826bc
[   95.464932][ T7864] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[   95.484532][ T7864] RSP: 002b:00007fd2dd005040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   95.493009][ T7864] RAX: ffffffffffffffda RBX: 00007fd2ddf11f60 RCX: 00007fd2ddd826bc
[   95.501028][ T7864] RDX: 000000000000000f RSI: 00007fd2dd0050b0 RDI: 0000000000000008
[   95.509001][ T7864] RBP: 00007fd2dd0050a0 R08: 0000000000000000 R09: 0000000000000000
[   95.517043][ T7864] R10: 0000000000000703 R11: 0000000000000246 R12: 0000000000000002
[   95.525129][ T7864] R13: 000000000000000b R14: 00007fd2ddf11f60 R15: 00007ffcc71d4578
[   95.534678][ T7864]  </TASK>
[   95.548801][ T6760] EXT4-fs unmount: 76 callbacks suppressed
[   95.548815][ T6760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.593357][ T7871] tipc: Started in network mode
[   95.598286][ T7871] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[   95.608702][ T7871] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[   95.616888][ T7871] tipc: Enabled bearer <udp:syz1>, priority 10
[   95.666883][ T7879] loop0: detected capacity change from 0 to 256
[   95.726615][ T7892] loop0: detected capacity change from 0 to 512
[   95.744490][ T7892] EXT4-fs (loop0): can't mount with journal_checksum, fs mounted w/o journal
[   95.787191][ T7905] loop3: detected capacity change from 0 to 2048
[   95.807685][ T7905] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.824445][ T7905] netlink: 'syz.3.1353': attribute type 1 has an invalid length.
[   95.837310][   T11] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   95.852150][   T11] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   95.864370][   T11] EXT4-fs (loop3): This should not happen!! Data will be lost
[   95.864370][   T11] 
[   95.874121][   T11] EXT4-fs (loop3): Total free blocks count 0
[   95.880145][   T11] EXT4-fs (loop3): Free/Dirty block details
[   95.886092][   T11] EXT4-fs (loop3): free_blocks=2415919104
[   95.891803][   T11] EXT4-fs (loop3): dirty_blocks=16
[   95.896948][   T11] EXT4-fs (loop3): Block reservation details
[   95.902925][   T11] EXT4-fs (loop3): i_reserved_data_blocks=1
[   95.910602][ T6270] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.922543][ T7911] loop0: detected capacity change from 0 to 512
[   95.929966][ T7911] EXT4-fs (loop0): corrupt root inode, run e2fsck
[   95.936602][ T7911] EXT4-fs (loop0): mount failed
[   95.969172][ T7911] loop0: detected capacity change from 0 to 256
[   95.983680][ T7911] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   96.005957][   T29] kauditd_printk_skb: 100 callbacks suppressed
[   96.005970][   T29] audit: type=1400 audit(1720230585.237:3024): avc:  denied  { create } for  pid=7910 comm="syz.0.1356" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[   96.018300][    C1] dccp_invalid_packet: P.Data Offset(0) too small
[   96.039345][ T6604] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.049480][   T29] audit: type=1400 audit(1720230585.257:3025): avc:  denied  { write } for  pid=7910 comm="syz.0.1356" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[   96.144260][ T7924] loop0: detected capacity change from 0 to 1024
[   96.161195][ T7924] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.382460][ T7929] chnl_net:caif_netlink_parms(): no params data found
[   96.398039][ T3369] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.451505][ T3369] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.482498][ T7929] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.489652][ T7929] bridge0: port 1(bridge_slave_0) entered disabled state
[   96.500100][ T7929] bridge_slave_0: entered allmulticast mode
[   96.507151][ T7929] bridge_slave_0: entered promiscuous mode
[   96.519931][ T3369] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.533288][ T7929] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.540391][ T7929] bridge0: port 2(bridge_slave_1) entered disabled state
[   96.549764][ T7929] bridge_slave_1: entered allmulticast mode
[   96.557185][ T7929] bridge_slave_1: entered promiscuous mode
[   96.584885][ T3369] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.600853][ T7929] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   96.611540][ T7929] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   96.632456][ T7929] team0: Port device team_slave_0 added
[   96.639213][ T7929] team0: Port device team_slave_1 added
[   96.644806][ T3720] tipc: Node number set to 1
[   96.667129][ T7950] loop1: detected capacity change from 0 to 256
[   96.679356][ T7950] FAT-fs (loop1): Directory bread(block 64) failed
[   96.689490][ T7929] batman_adv: batadv0: Adding interface: batadv_slave_0
[   96.689870][ T7950] FAT-fs (loop1): Directory bread(block 65) failed
[   96.696480][ T7929] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   96.703472][ T7950] FAT-fs (loop1): Directory bread(block 66) failed
[   96.729801][ T7929] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   96.731747][ T7929] batman_adv: batadv0: Adding interface: batadv_slave_1
[   96.754098][ T7929] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   96.780072][ T7929] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   96.790906][ T7950] FAT-fs (loop1): Directory bread(block 67) failed
[   96.802420][ T7950] FAT-fs (loop1): Directory bread(block 68) failed
[   96.809025][ T7950] FAT-fs (loop1): Directory bread(block 69) failed
[   96.819471][ T7950] FAT-fs (loop1): Directory bread(block 70) failed
[   96.826326][ T7950] FAT-fs (loop1): Directory bread(block 71) failed
[   96.833071][ T7950] FAT-fs (loop1): Directory bread(block 72) failed
[   96.843143][ T7950] FAT-fs (loop1): Directory bread(block 73) failed
[   96.909331][ T7950] __nla_validate_parse: 4 callbacks suppressed
[   96.909346][ T7950] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1364'.
[   96.948740][ T7952] loop3: detected capacity change from 0 to 8192
[   96.957375][ T7950] 8021q: adding VLAN 0 to HW filter on device batadv1
[   97.008905][ T7929] hsr_slave_0: entered promiscuous mode
[   97.023445][ T5592] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.023813][ T7929] hsr_slave_1: entered promiscuous mode
[   97.040376][ T7929] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   97.058420][ T7929] Cannot create hsr debugfs directory
[   97.064459][ T3369] bridge_slave_1: left allmulticast mode
[   97.070233][ T3369] bridge_slave_1: left promiscuous mode
[   97.075912][ T3369] bridge0: port 2(bridge_slave_1) entered disabled state
[   97.086518][ T5592] ==================================================================
[   97.088158][ T3369] bridge_slave_0: left allmulticast mode
[   97.094600][ T5592] BUG: KCSAN: data-race in fsnotify_detach_mark / inotify_handle_inode_event
[   97.100227][ T3369] bridge_slave_0: left promiscuous mode
[   97.108913][ T5592] 
[   97.108919][ T5592] write to 0xffff888103fc5904 of 4 bytes by task 5145 on cpu 1:
[   97.108934][ T5592]  fsnotify_detach_mark+0xe1/0x190
[   97.114738][ T3369] bridge0: port 1(bridge_slave_0) entered disabled state
[   97.116743][ T5592]  fsnotify_destroy_mark+0x9a/0x1a0
[   97.141641][ T5592]  __se_sys_inotify_rm_watch+0xfd/0x180
[   97.147191][ T5592]  __x64_sys_inotify_rm_watch+0x31/0x40
[   97.152730][ T5592]  x64_sys_call+0x1b06/0x2d70
[   97.157398][ T5592]  do_syscall_64+0xc9/0x1c0
[   97.161948][ T5592]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.168030][ T5592] 
[   97.170340][ T5592] read to 0xffff888103fc5904 of 4 bytes by task 5592 on cpu 0:
[   97.177881][ T5592]  inotify_handle_inode_event+0x2c2/0x310
[   97.183690][ T5592]  fsnotify_handle_inode_event+0x18e/0x1f0
[   97.189933][ T5592]  fsnotify+0x10ba/0x11a0
[   97.194876][ T5592]  __fsnotify_parent+0x285/0x370
[   97.199907][ T5592]  __fput+0x5ca/0x6f0
[   97.203886][ T5592]  __fput_sync+0x44/0x60
[   97.208205][ T5592]  __se_sys_close+0x101/0x1b0
[   97.212872][ T5592]  __x64_sys_close+0x1f/0x30
[   97.217455][ T5592]  x64_sys_call+0x25f1/0x2d70
[   97.222127][ T5592]  do_syscall_64+0xc9/0x1c0
[   97.226623][ T5592]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.232510][ T5592] 
[   97.234903][ T5592] value changed: 0x00000003 -> 0x00000000
[   97.240604][ T5592] 
[   97.242908][ T5592] Reported by Kernel Concurrency Sanitizer on:
[   97.249038][ T5592] CPU: 0 PID: 5592 Comm: syz-executor Not tainted 6.10.0-rc6-syzkaller-00210-gd270dd21bee0 #0
[   97.259435][ T5592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   97.269570][ T5592] ==================================================================
[   97.377397][ T3369] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   97.387726][ T3369] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   97.398020][ T3369] bond0 (unregistering): Released all slaves
[   97.408586][ T7976] ref_tracker: memory allocation failure, unreliable refcount tracker.
[   97.466863][ T3369] hsr_slave_0: left promiscuous mode
[   97.473010][ T3369] hsr_slave_1: left promiscuous mode
[   97.479009][ T3369] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   97.486554][ T3369] batman_adv: batadv0: Removing interface: batadv_slave_0
[   97.495917][ T3369] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   97.503350][ T3369] batman_adv: batadv0: Removing interface: batadv_slave_1
[   97.522708][ T3369] veth1_vlan: left promiscuous mode
[   97.528111][ T3369] veth0_vlan: left promiscuous mode
[   97.604360][ T3369] team0 (unregistering): Port device team_slave_1 removed
[   97.614777][ T3369] team0 (unregistering): Port device team_slave_0 removed
[   97.966618][ T7929] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   97.978337][ T7929] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   97.987130][ T7929] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   97.997308][ T7929] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   98.038134][ T7929] 8021q: adding VLAN 0 to HW filter on device bond0
[   98.051880][ T7929] 8021q: adding VLAN 0 to HW filter on device team0
[   98.063208][ T3166] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.070306][ T3166] bridge0: port 1(bridge_slave_0) entered forwarding state
[   98.088207][ T3166] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.095384][ T3166] bridge0: port 2(bridge_slave_1) entered forwarding state
[   98.113431][ T7929] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   98.123874][ T7929] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   98.188299][ T7929] 8021q: adding VLAN 0 to HW filter on device batadv0
[   98.316464][ T7929] veth0_vlan: entered promiscuous mode
[   98.326765][ T7929] veth1_vlan: entered promiscuous mode
[   98.341685][ T7929] veth0_macvtap: entered promiscuous mode
[   98.349556][ T7929] veth1_macvtap: entered promiscuous mode
[   98.359828][ T7929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   98.370394][ T7929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.380618][ T7929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   98.392654][ T7929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.402942][ T7929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   98.413404][ T7929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.423221][ T7929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   98.433643][ T7929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.443461][ T7929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   98.453896][ T7929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.464871][ T7929] batman_adv: batadv0: Interface activated: batadv_slave_0
[   98.473113][ T7929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   98.483659][ T7929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.493486][ T7929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   98.503914][ T7929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.513761][ T7929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   98.524188][ T7929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.534175][ T7929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   98.544600][ T7929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.554468][ T7929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   98.564955][ T7929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.575873][ T7929] batman_adv: batadv0: Interface activated: batadv_slave_1
[   98.588336][ T7929] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   98.597080][ T7929] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   98.606040][ T7929] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   98.614841][ T7929] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0