last executing test programs:

2.44937973s ago: executing program 3 (id=1775):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0xffdc, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0x64}, 0x1, 0x0, 0x0, 0x4850}, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
getsockopt$inet_mptcp_buf(0xffffffffffffffff, 0x11c, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000cc0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x4}}], 0x18}}], 0x1, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'syzkaller0\x00', <r5=>0x0})
r6 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'syzkaller0\x00', <r7=>0x0})
setsockopt$packet_add_memb(r2, 0x107, 0x1, &(0x7f0000000200)={r5, 0x1, 0x6, @link_local}, 0x10)
setsockopt$packet_add_memb(r2, 0x107, 0x1, &(0x7f0000000180)={r7, 0x1, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3f}}, 0x10)
r8 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r8, 0x89a1, &(0x7f0000000040)={'syzkaller0\x00'})
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, 0x0)
r10 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$PIO_UNIMAPCLR(r10, 0x4b68, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x7, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PIO_UNIMAP(r10, 0x4b67, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x2}]})
ioctl$sock_SIOCBRDELBR(r9, 0x89a2, &(0x7f0000000200)='bridge0\x00')
lsetxattr$security_ima(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f0000000200)=@md5={0x1, "2822958a314325505f7b21c26a3bbdc6"}, 0x11, 0x3)

2.059131551s ago: executing program 4 (id=1783):
socket$inet6(0xa, 0x0, 0x0) (async, rerun: 32)
r0 = syz_open_dev$ptys(0xc, 0x3, 0x0) (rerun: 32)
syz_open_dev$usbfs(&(0x7f00000001c0), 0x6, 0x480081) (async, rerun: 32)
r1 = socket$pppoe(0x18, 0x1, 0x0) (rerun: 32)
connect$pppoe(r1, &(0x7f0000000000)={0x18, 0x0, {0x2, @dev, 'veth1_to_batadv\x00'}}, 0x1e) (async, rerun: 64)
r2 = socket$key(0xf, 0x3, 0x2) (async, rerun: 64)
unshare(0xa000200) (async)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_dev$usbfs(0x0, 0x0, 0x101301) (async)
semget(0x0, 0x4, 0x301) (async)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) (async)
semtimedop(0x0, &(0x7f0000000100)=[{0x3, 0x7f, 0x1800}, {0x3, 0xce39, 0x1800}, {0x3, 0xfff7, 0x1000}, {0x1, 0x0, 0x800}, {0x4, 0x7, 0x800}, {0x1, 0x1}, {0x0, 0x1}], 0x7, 0x0) (async)
unshare(0x60400) (async, rerun: 64)
sendmsg$key(r2, &(0x7f0000000040)={0x2, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="020300090e000000000000007b00000005000600000000000a0000000000000000000000000000000000000000000001000000000000000002000100000000000000000c0000000005000500000000000a"], 0x70}, 0x1, 0x7}, 0x0) (async, rerun: 64)
r3 = socket$pppoe(0x18, 0x1, 0x0) (async)
r4 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r4, &(0x7f0000000000)={0x18, 0x0, {0x2, @dev, 'team_slave_1\x00'}}, 0x1e) (async, rerun: 32)
connect$pppoe(r3, &(0x7f0000000000)={0x18, 0x0, {0x2, @dev, 'veth1_to_batadv\x00'}}, 0x1e) (async, rerun: 32)
r5 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
readv(r5, &(0x7f0000000980)=[{&(0x7f0000000680)=""/69, 0x45}, {&(0x7f0000000700)=""/15, 0xf}, {&(0x7f0000000740)=""/102, 0x66}], 0x3)
getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000140)={<r6=>0x0, @local, @private}, &(0x7f00000002c0)=0xc)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000300)={{0x1, 0x1, 0x18, r0, {0xfffffffd, 0x8}}, './file0\x00'}) (async, rerun: 32)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000400)={0x3, 0x4, 0x4, 0xa, 0x0, r5, 0xa, '\x00', r6, r5, 0x4, 0x1, 0x4}, 0xffffffffffffffbc) (async, rerun: 32)
perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_dev$usbfs(&(0x7f0000000040), 0x77, 0x101301)
r7 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SG_SET_RESERVED_SIZE(r7, 0x2275, &(0x7f0000000080)=0x7fffffff) (async)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
sendmsg$NFC_CMD_LLC_GET_PARAMS(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20010885}, 0x24004040) (async)
write$UHID_CREATE2(r8, &(0x7f0000000200)=ANY=[], 0x118)

2.058965011s ago: executing program 3 (id=1784):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x24000000, &(0x7f0000000080)={0xa, 0x0, 0xe0ff, @loopback}, 0x1c)

2.041031233s ago: executing program 3 (id=1785):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = socket(0x40000000015, 0x5, 0x0)
bind$inet(r2, &(0x7f0000000340)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x40}}, 0x10)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6}]})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000000, 0x1010, 0xffffffffffffffff, 0xfff7c000)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r4, 0x6, 0x1, &(0x7f0000000100), 0xc)
socket$netlink(0x10, 0x3, 0xf)
setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9)
mount$bind(0x0, 0x0, 0x0, 0x0, 0x0)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mountinfo\x00')
ioprio_set$pid(0x2, 0x0, 0x0)
sched_setscheduler(0x0, 0x5, &(0x7f0000000300))
capset(&(0x7f0000000240)={0x20071026}, &(0x7f0000000040)={0x80000})
fsopen(0x0, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000180), 0x8, 0x290002)
ioctl$SCSI_IOCTL_SYNC(r6, 0x4)
socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$IPVS_CMD_NEW_SERVICE(r7, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="18000000", @ANYRES16=r8, @ANYBLOB="01000000000000000000020000008b2c8cc9"], 0x18}}, 0x0)
r9 = open(&(0x7f0000000200)='./bus\x00', 0x141a42, 0x0)
read$char_usb(r5, &(0x7f0000000380)=""/231, 0xe7)
sendfile(r9, r5, 0x0, 0x100800001)
ioctl$PPPIOCSACTIVE(r3, 0x40107446, &(0x7f0000000080)={0x6, &(0x7f0000000040)=[{0x1, 0x4, 0x1f}, {0x9505, 0x1, 0x0, 0x9}, {0x2, 0x3, 0xd2, 0x9}, {0x100, 0x2, 0x2c, 0x4}, {0x8, 0x3, 0x0, 0x48eb3346}, {0x3f, 0x7, 0x6}]})
close_range(r3, 0xffffffffffffffff, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000580)={'team0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newchain={0x2c, 0x64, 0x200, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, r10, {0xfff3, 0x8}, {0x2, 0x3}, {0xfff1, 0xffff}}, [@TCA_RATE={0x6, 0x5, {0xa, 0x32}}]}, 0x2c}, 0x1, 0x8100000018000000, 0x0, 0x404cc14}, 0x20008801)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="550a0000000000006113780000000000180000000000000000000000000000009500000000000000"], &(0x7f0000000000)='GPL\x00'}, 0x80)

2.029799094s ago: executing program 4 (id=1786):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'netdevsim0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000000)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0xa1ffffff, {0x0, 0x0, 0x0, r2, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x10008}]}, 0x38}}, 0x0)

1.934827222s ago: executing program 4 (id=1788):
r0 = socket(0x1e, 0x1, 0x0)
connect$tipc(r0, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
write$binfmt_misc(r0, &(0x7f0000000080)=ANY=[], 0x2000011a)
recvmmsg(r0, &(0x7f0000002dc0)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000200)=""/164, 0xa4}], 0x1, &(0x7f0000000300)=""/40, 0x28}}, {{0x0, 0x0, &(0x7f0000001700)}}], 0x2, 0x0, 0x0)

1.83274s ago: executing program 4 (id=1790):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000b80)=@newlink={0x34, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r1, 0x5865}, [@IFLA_VFINFO_LIST={0x14, 0x16, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@IFLA_VF_TX_RATE={0xc}]}]}]}, 0x34}}, 0x0)

1.774987585s ago: executing program 4 (id=1791):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000006c0), 0xfe, 0x25b, &(0x7f0000000840)="$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")
mkdir(&(0x7f0000000440)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x3, 0x5}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'bridge_slave_0\x00'})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000040)={'bridge_slave_0\x00', @random="4f33e363a4b1"})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000400b7030000000300008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000004000000b7000000000000"], &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000001080)={0x3, 0x14, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000045000000180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r7, 0x0, 0xe, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f0800", 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
bpf$BPF_MAP_GET_NEXT_ID(0xc, &(0x7f0000000280)={0x1, <r10=>0x0}, 0x8)
r11 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f00000002c0)={r10, 0x1}, 0xc)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xc8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r9)
recvmsg$unix(r8, &(0x7f0000000400)={0x0, 0xffffffffffffffbc, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r12=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r12, &(0x7f0000000300)=ANY=[@ANYBLOB="8fedcb791f6f9875f37538e486dd6317ce81002e1100fe08000e40000200875a65969ff57b00ff020000000000000000000000000001"], 0xfdef)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000d00)={&(0x7f0000000cc0)='sched_switch\x00', r4}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1e, 0x13, &(0x7f0000000bc0)=ANY=[@ANYBLOB="85200c000000182900000000", @ANYRES32=r11, @ANYBLOB="000000007f00000018120000", @ANYRES32=r12, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000008520000004000000184b0000ffffffff000000000000000018330000040000000000000000000000182b0000", @ANYRES32=r4, @ANYBLOB="0000000056ac000018110000", @ANYRES32=r12, @ANYBLOB="0000000000000000b7020000000000008500000086000000"], &(0x7f0000000c80)='GPL\x00', 0xffff819a, 0xd3, &(0x7f0000001e40)=""/211, 0x0, 0x9, '\x00', 0x0, 0xa, r4, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r4, 0x2, &(0x7f0000002000)=[r5, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, r11, r0, r6], &(0x7f0000002040)=[{0x4, 0x3, 0x9, 0xb}, {0x3, 0x1, 0x6, 0xa}], 0x10, 0x7}, 0x90)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)=@o_path={&(0x7f0000000440)='./file0\x00', 0x0, 0x4010, r1}, 0x18)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000001f40)={r4, 0x58, &(0x7f0000000740)}, 0x10)
r13 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000200), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0xe, 0x6, &(0x7f0000001d40)=ANY=[@ANYRES64=r13, @ANYRES8, @ANYRESDEC, @ANYBLOB="8f34fde47bb37d8ec838bb29f65b418d502a6211dbbe6005b6c440a98364becc6ae52dd03bc3bd26d591c4247a79cc2dec8e923ac0bb5d9bd5c29ccc1673cf5d4808d4b6f8d437ff99aba675961abb22dd3045f60a414187c047a42294c6b2ac802e374e75793a750d17b3fff561d09bea18c37c9c8584544b853ddf62e9a2b63f3147ad6d668248b29353c05e030dcadf9bbf9bb8a10aedaf18eebdea67b88815211d9093b510eb1c86cfdfab00ac"], &(0x7f0000000340)='GPL\x00', 0x0, 0x1000, &(0x7f0000000d40)=""/4096, 0x40f00, 0x32, '\x00', 0x0, 0xd, 0xffffffffffffffff, 0x8, &(0x7f00000005c0)={0x3, 0x1}, 0x8, 0x10, &(0x7f0000000700)={0x5, 0x2, 0x5, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000007c0)}, 0x90)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000800)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x5}, 0x48)

1.627481917s ago: executing program 0 (id=1794):
socket$packet(0x11, 0x2, 0x300)
io_uring_setup(0x64ae, &(0x7f00000000c0))
perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = epoll_create1(0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000002304e800000000000000ea850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x17, 0x0, 0x4, 0x7ffc}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='netlink_extack\x00', r1}, 0x10)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f00005f5000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000005c0)=ANY=[], 0x78}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
r6 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_TIMESTAMPING(r6, 0x1, 0x41, &(0x7f0000000000)=0x9f2, 0x4)
recvfrom$packet(r6, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r7=>0x0})
sendto$packet(r5, &(0x7f0000000180)="05030400d3fc02000000ab5d71acedd7c9560385dcb188a884d7dc049806892f05ce811c88f7", 0x26, 0x0, &(0x7f0000000140)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @dev}, 0x14)
r8 = creat(&(0x7f00000001c0)='./bus\x00', 0x0)
close(r8)
r9 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x0, 0x0, 0x0, 0x4, 0x0)
syz_pidfd_open(r9, 0x0)
mount$9p_fd(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000180), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r8, @ANYBLOB=',wfdno=', @ANYRESHEX=r0])
madvise(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x15)
r10 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r10, 0x1, &(0x7f0000000100)=ANY=[])
r11 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000040)={'macvlan0\x00'})
sendmsg$nl_route(r11, 0x0, 0x0)

1.35012839s ago: executing program 0 (id=1798):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xd, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="b4000000000000006111d8000000000040000000000000009500000000000000522aabf22a97179ce8"], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f0000000500)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
io_setup(0x9, &(0x7f0000000100)=<r1=>0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140), 0x2009c2, 0x0)
io_submit(r1, 0x2, &(0x7f0000000340)=[&(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0, r3}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2, r2, &(0x7f0000000240)="65befa4a0865836604b6780b52c6460496b425786bad447ea8bc4cf73fbf5113ad91841e4ca5ab80ce04a264dbd37d8538d72ca0a7ef786597aa32608218b27dacbc53c4b44ad1dfd9a1ce50be06c7c0f47450c01ad009bc1335c5ccbf165625f1c7f3cbba169fb58f54749e5843b71458599def0115be0e0761", 0x7a, 0xffff, 0x0, 0x2, r3}])
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r7=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r8=>0x0})
sendmsg$nl_route(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="300000001d000100000000000000000007000000", @ANYRES32=r8, @ANYBLOB="000096000a4279f02aa1752af163637f000200aaaaaaaaaa0000000600050001000014"], 0x30}}, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r0, &(0x7f0000000200)={0x40000002})
socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r9, 0x0, 0xca, &(0x7f00000001c0)={0x1, 0x4, 0x0, 0x0, @vifc_lcl_addr=@multicast1, @multicast2}, 0x10)
setsockopt$MRT_FLUSH(r9, 0x0, 0xd4, &(0x7f0000001b40)=0xa, 0x4)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000000)={'bridge_slave_1\x00', &(0x7f0000000680)=@ethtool_per_queue_op={0x4b, 0xf, [0x6, 0x9, 0x9, 0x7, 0x400, 0x5, 0xcc74, 0x100, 0x8f, 0x6, 0x7, 0x8, 0x5, 0x400, 0x9, 0x3a, 0x20000, 0x6, 0x7, 0x7, 0x2, 0x6, 0x1, 0x8, 0xb0, 0x1, 0x5, 0xafb, 0x9, 0x8, 0xc7b8, 0x8, 0x1, 0x7, 0x2, 0x71e, 0x9c00, 0xffffffff, 0x4, 0x6, 0xffffffff, 0xb, 0x2, 0xc2b, 0x6, 0x5, 0x7, 0x9, 0x6, 0x3, 0x9, 0x2, 0x9, 0x10000, 0xfff, 0x7, 0x7, 0xf, 0x7, 0x5890000, 0xdd13, 0x7, 0x9d, 0x1, 0x4, 0x0, 0xc, 0x4, 0x100, 0xd1, 0x80000001, 0x3, 0x4, 0x4, 0x40, 0xc, 0xffff, 0x10000, 0x1ff, 0x2, 0x1, 0x5, 0xa2, 0x8, 0x1, 0xff, 0x85b, 0x7ff, 0x0, 0x80000000, 0x1, 0x5, 0x5, 0xd, 0x7ff, 0x8, 0xfffffff7, 0x4, 0x1, 0x20b, 0xc, 0x0, 0x7, 0x8, 0x9f2, 0x8, 0x31ee, 0x8, 0x9, 0x23ee, 0x7fffffff, 0x1ff, 0xfff, 0x5, 0x8, 0x3, 0x80fd, 0x2, 0x0, 0x40, 0x7ff, 0x49466246, 0x6, 0xffff, 0x2d42, 0x1000, 0x6, 0x6], "8759ba37d5e3d48496e8379bee1230d2c368a81b32258b7d3578ac43d9d2a38cff048cb5ee7a3b8776efd7afff5c86436773606b8a9b3a9fd678a44c0441a4dced8f446b0730cb8955a1701ee5c74f995aa592ba51e037fe466a3debeed06b1f2fff0a4d265890336c23c4656921ed9cb5169aabe7513af0883694c0c87250384fcc8ccfd62d8b84a50c627a3911ff5f26c22c1dfd2704d4a9409d26a4dbfe1bf0ce0d97a7d71e288acf8287565ca6a67356426b9e2acd1bc4308c3f4149197083463dcbb0ef5e718eb2f069f8dd6e3885f4cbbe23308ff5bafcf33def5450b0922787a1588858e1e377bdaf"}})
r10 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
close_range(r10, 0xffffffffffffffff, 0x2)
open$dir(&(0x7f0000000100)='./file0\x00', 0x149800, 0x0)
r11 = epoll_create1(0x0)
mount$9p_fd(0x0, &(0x7f0000000600)='./file0\x00', &(0x7f0000000640), 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r10}, 0x2c, {'wfdno', 0x3d, r11}})
open(&(0x7f0000000000)='./file0\x00', 0x401, 0x0)

1.047537235s ago: executing program 2 (id=1805):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000140)=ANY=[@ANYBLOB="180000000000000000000000000000008500000050000000850000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x11c}}, 0x0)

1.021269387s ago: executing program 3 (id=1807):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
r1 = gettid()
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r2, &(0x7f0000000440)=""/247, 0x26)
prlimit64(0x0, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200))
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_REMOVE(r4, &(0x7f0000002e80)={0x0, 0x0, &(0x7f0000002e40)={&(0x7f0000002e00)={0x24, r5, 0x1, 0x0, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_TOKEN={0x8}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0xff}]}, 0x24}}, 0x400c010)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r2, 0x4040534e, &(0x7f0000000080)={0x1, @time})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f00000006c0)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@nombcache}, {@noload}]}, 0x3, 0x44a, &(0x7f0000001380)="$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")
r6 = openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x52000, 0x0)
openat$cgroup_ro(r6, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmmsg$inet_sctp(r7, &(0x7f0000004700)=[{&(0x7f0000000080)=@in={0x2, 0x0, @dev}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000180)=']', 0x1}], 0x1, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000840000000000004000000000000000002000000000000000840000492ba01200fc000000001600"/56], 0x38}], 0x1, 0x0)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000006c0)={0x0, 0x15c}, 0x1, 0x0, 0x0, 0x40040080}, 0x1)
sendmsg$NL80211_CMD_SET_CQM(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r2, 0xc0605345, 0x0)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r2, 0x40045304, &(0x7f0000000780))
tkill(r1, 0x7)
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='bbr\x00', 0x4)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
syz_clone(0x1000, 0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800006, 0x0, 0x0, 0x0, 0x2)

935.845094ms ago: executing program 2 (id=1808):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x3}, 0x0, 0x9, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket(0x10, 0x2, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000240)={0x0, <r4=>0x0}, &(0x7f0000000280)=0x5)
setreuid(0x0, r4)
r5 = socket(0x400000000010, 0x3, 0x0)
write(r5, &(0x7f0000000040)="3a03000018", 0x5)
r6 = syz_clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000040), 0x2}, 0xa0)
r7 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r7, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r8, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000940)=@newqdisc={0xd8, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_bfifo={{0xa}, {0x8, 0x2, 0x200}}, @qdisc_kind_options=@q_netem={{0xa}, {0x94, 0x2, {{0x0, 0xff13, 0x0, 0x0, 0xfffffffb}, [@TCA_NETEM_RATE={0x14}, @TCA_NETEM_SLOT={0x2c, 0xc, {0x8, 0x0, 0x0, 0x3, 0xbfa9}}, @TCA_NETEM_CORRUPT={0xc, 0x4, {0x0, 0x2}}, @TCA_NETEM_JITTER64={0xc, 0xb, 0x80000000}, @TCA_NETEM_CORR={0x10, 0x1, {0x0, 0x8}}, @TCA_NETEM_DELAY_DIST={0xd, 0x2, "bb31dd582025a5bfe0"}]}}}]}, 0xd8}}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
bind$packet(r0, &(0x7f0000000400)={0x11, 0x0, r8, 0x1, 0x0, 0x6, @remote}, 0x14)
sendto$packet(r0, &(0x7f0000000080)="1555f6acfd136f8ed06375bd86dd", 0xe, 0x0, 0x0, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f00000004c0)={'veth1_to_hsr\x00', <r11=>0x0})
sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=ANY=[@ANYRESHEX=r6, @ANYRES32=0x0, @ANYBLOB="00000000000000005000128009000100766c616e00000000400002800600010000000000340003800c00010000000000000000000c00010094040000000000000c00010000010000000000000c000100040000000000000008000500", @ANYRES32=r11, @ANYBLOB="080003"], 0x80}}, 0x0)

925.209715ms ago: executing program 1 (id=1809):
syz_emit_ethernet(0x0, 0x0, 0x0)
syz_io_uring_setup(0x1b62, &(0x7f0000000440)={0x0, 0x0, 0x3600}, &(0x7f0000000000), &(0x7f0000000200))
socket$kcm(0xa, 0x1, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r0 = socket(0x2000000000000021, 0x2, 0x10000000000002)
connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x8, @local}}, 0x24)
sendmmsg(r0, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000100100000a"], 0x18, 0xe000}, 0x5}], 0x1, 0x0)

903.240137ms ago: executing program 4 (id=1810):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
ptrace(0x21, r3)
r4 = socket(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000580)={'dummy0\x00', <r5=>0x0})
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x25, &(0x7f0000000280)=0x4b4d, 0x4)
bind$packet(r4, &(0x7f0000000080)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x14)
sendto$packet(r4, &(0x7f00000002c0)="913dcf3296db5d6d52d2f3b42d66", 0xe, 0x0, 0x0, 0x0)
recvmsg(r4, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x2000)

859.15352ms ago: executing program 2 (id=1811):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
pipe2$9p(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
fchdir(r3)
close(r3)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
faccessat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x3)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f00000008c0)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@grpjquota}, {@noquota}, {@abort}, {@noload}, {@noload}]}, 0x64, 0x50a, &(0x7f0000000200)="$eJzs3VFrHFsdAPD/bHZr06Y3ueqDXvB6tZW0aHeTxrbBh1pB9Kmg1vcak00I2WRDdtM2oWiKH0AQUcEnffFF8AMIUvDFRxEK+qyoKKKtPvigncvuTtI03U227TabZn8/mMw5Z2b2f86GmZ0zc5gJYGC9FxHXI+JJmqYXImI0K89lU2y1psZ6jx/dm21MSaTpzX8mkWRl25+VZPPT2WYnI+JrX474ZvJ83NrG5tJMpVJey/Kl+vJqqbaxeXFxeWahvFBemZqavDJ9dfry9ERP2nkmIq598a8/+O7PvnTtV5+586dbfz//rUa1RrLlu9vxgvL7LWw1vdD8LnZvsPaSwY6ifLOFmeF2aww9V3L/NdcJAID2Guf4H4yIT0bEhRiNof1PZwEAAIA3UPr5kfhfEpG2d6JDOQAAAPAGyTXHwCa5YjYWYCRyuWKxNYb3w3EqV6nW6p+er66vzLXGyo5FITe/WClPZGOFx6KQNPKTzfTT/KU9+amIeDsivj863MwXZ6uVuX5f/AAAAIABcXpP//8/o63+PwAAAHDMjPW7AgAAAMBrp/8PAAAAx5/+PwAAABxrX7lxozGl2++/nru9sb5UvX1xrlxbKi6vzxZnq2urxYVqdaH5zL7lgz6vUq2ufjZW1u+W6uVavVTb2Ly1XF1fqd9afOYV2AAAAMAhevvjD/6QRMTW54abU8OJ7jbtcjXgqMrvpJJs3ma3/uNbrflfDqlSwKEY6ncFgL7J97sCQN8U+l0BoO+SA5Z3HLzz22z+id7WBwAA6L3xj3a+/5/bd8ut/RcDR56dGAaX+/8wuJr3/7sdyetkAY6VgjMAGHivfP//QGn6QhUCAAB6bqQ5JblidnlvJHK5YjHiTPO1AIVkfrFSnoiItyLi96OFDzTyk80tkwP7DAAAAAAAAAAAAAAAAAAAAAAAAABAS5omkQIAAADHWkTub8mvW8/yHx89N7L3+sCJ5L+jkb0i9M6Pb/7w7ky9vjbZKP/XTnn9R1n5pX5cwQAAAICB8EIv8N/up2/34wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACglx4/uje7PR1m3H98ISLG2sXPx8nm/GQUIuLUv5PI79ouiYihHsQfbvz5SLv4SaNaOyHbxR/uQfyt+/vGj7HsW2gX/3QP4sMge9A4/lxvt//l4r3mvP3+l494Jv+yOh//Yuf4N9Rh/z/TZYx3Hv6i1DH+/Yh38u2PP9vxkw7xz3YZ/xtf39zstCz9ScR429+f5JlYpfryaqm2sXlxcXlmobxQXpmamrwyfXX68vREaX6xUs7+to3xvY/98sl+7T/VIf7YAe0/12X7///w7qMPtZKFdvHPn20T/zc/zdZ4Pn4u++37VJZuLB/fTm+10ru9+/Pfvbtf++c6tP+g///5Ltt/4avf+XOXqwIAh6C2sbk0U6mU145totFLPwLVkDiCiW/39APTNE0b+9QrfE4SR+FraSb6fWQCAAB67elJf79rAgAAAAAAAAAAAAAAAAAAAIPrMB4ntjfm1k4q6cUjtAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeuL9AAAA//+GAdlV")
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f00000000c0)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
write$P9_RVERSION(r2, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)
r4 = dup(r2)
write$P9_RLERRORu(r4, &(0x7f00000001c0)=ANY=[@ANYBLOB="530000000700004600cd", @ANYRES32=r0], 0x53)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[], [], 0x6b}})
socket$inet6_udp(0xa, 0x2, 0x0) (async)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) (async)
pipe2$9p(&(0x7f0000000240), 0x0) (async)
open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901) (async)
fchdir(r3) (async)
close(r3) (async)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0) (async)
faccessat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x3) (async)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f00000008c0)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@grpjquota}, {@noquota}, {@abort}, {@noload}, {@noload}]}, 0x64, 0x50a, &(0x7f0000000200)="$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") (async)
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f00000000c0)=@loop={'/dev/loop', 0x0}, 0x0, 0x0) (async)
write$P9_RVERSION(r2, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15) (async)
dup(r2) (async)
write$P9_RLERRORu(r4, &(0x7f00000001c0)=ANY=[@ANYBLOB="530000000700004600cd", @ANYRES32=r0], 0x53) (async)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[], [], 0x6b}}) (async)

832.221132ms ago: executing program 1 (id=1812):
ioperm(0x0, 0x2, 0x2)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={0xffffffffffffffff, 0xe0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000a40)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000080), 0x0, 0x20006f, &(0x7f0000000b80)=[{}], 0x8, 0x10, &(0x7f00000009c0), 0x0, 0x0, 0x9c, 0x8, 0x8, &(0x7f00000001c0)}}, 0x10)
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0)
read(r0, &(0x7f0000002340)=""/4096, 0x1000)
bind$inet6(0xffffffffffffffff, &(0x7f000047b000)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
listen(0xffffffffffffffff, 0x400000001ffffffd)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x18000, &(0x7f0000000000), 0x80, 0x62d, &(0x7f0000000c40)="$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")
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x58, &(0x7f0000000ac0)={[{@inode_readahead_blks}, {@nogrpid}, {}, {@commit={'commit', 0x3d, 0x7f}}, {@init_itable_val={'init_itable', 0x3d, 0x5}}, {@errors_remount}, {@nobh}, {@grpid}]}, 0xfe, 0x799, &(0x7f00000001c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000140))
getsockopt$inet_int(r1, 0x0, 0xe, 0x0, &(0x7f0000000040))
r2 = open(&(0x7f0000000400)='.\x00', 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000c00)='cpuacct.usage_all\x00', 0x7a05, 0x1700)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000100)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_RESET_TIMEOUT={0x8, 0x4, 0xfffffff8}]}}]}, 0x38}}, 0x0)
getdents(r2, &(0x7f0000001fc0)=""/184, 0xb8)
symlink(&(0x7f00000016c0)='./file0\x00', &(0x7f0000001700)='./file1\x00')

651.534277ms ago: executing program 1 (id=1813):
r0 = socket(0x1e, 0x1, 0x0)
connect$tipc(r0, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
write$binfmt_misc(r0, &(0x7f0000000080)=ANY=[], 0x2000011a)
recvmmsg(r0, &(0x7f0000002dc0)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000200)=""/164, 0xa4}], 0x1, &(0x7f0000000300)=""/40, 0x28}}, {{0x0, 0x0, &(0x7f0000001700)}}], 0x2, 0x0, 0x0)

607.150661ms ago: executing program 2 (id=1814):
unshare(0x68060200)
pipe(&(0x7f0000000100))
r0 = socket(0x1, 0x803, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080))
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="540000001000030400e2ffffffffff07e4ffffff", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b0001006970766c616e0000140002800600020000000000060001000200000008000500", @ANYRES32=r1], 0x54}}, 0x0)

451.789623ms ago: executing program 2 (id=1815):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_GET_COALESCE(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000400)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$unix(0x1, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
socket$nl_generic(0x10, 0x3, 0x10)
socket$kcm(0x11, 0x200000000000002, 0x300)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
dup3(r1, 0xffffffffffffffff, 0x80000)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3c0000001000030400000006000000005dcc0300", @ANYRES32=r2, @ANYBLOB="71e79fd800000000140012800c0001006d616376746170001400028008000500", @ANYRES32=r3], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newtfilter={0x2c, 0x10, 0xc27, 0x0, 0x0, {0x0, 0x0, 0x74, r2, {0xffe0}, {}, {0xa, 0x1}}, [@TCA_RATE={0x6, 0x5, {0x39, 0x1}}]}, 0x2c}, 0x1, 0xf0ffffffffffff, 0xa00, 0x4004140}, 0x0)

381.550029ms ago: executing program 1 (id=1816):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000200)='/dev/ppp\x00', &(0x7f0000000240)='\\{-\x00', 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x9, 0x8, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70200001400a685b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
mmap(&(0x7f0000543000/0x1000)=nil, 0x1000, 0x0, 0x2031, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000003000000020000000100000fffff7f0006000000000000002e00"], 0x0, 0x33}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000003c0)={&(0x7f0000000800)={0xd8, 0x2, 0x1, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@CTA_PROTOINFO={0x28, 0x4, 0x0, 0x1, @CTA_PROTOINFO_TCP={0x24, 0x1, 0x0, 0x1, [@CTA_PROTOINFO_TCP_WSCALE_REPLY={0x5, 0x3, 0xff}, @CTA_PROTOINFO_TCP_FLAGS_REPLY={0x6, 0x5, {0xd9, 0x1}}, @CTA_PROTOINFO_TCP_FLAGS_REPLY={0x6, 0x5, {0xd5, 0xf6}}, @CTA_PROTOINFO_TCP_FLAGS_ORIGINAL={0x6, 0x4, {0x0, 0xc1}}]}}, @CTA_NAT_DST={0x40, 0xd, 0x0, 0x1, [@CTA_NAT_V4_MAXIP={0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @multicast2}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @private=0xa010102}, @CTA_NAT_PROTO={0x14, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e20}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e23}]}, @CTA_NAT_V4_MINIP={0x8, 0x1, @broadcast}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @multicast2}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x4}, @CTA_LABELS_MASK={0x14, 0x17, [0x0, 0x6, 0x80000001, 0x1fe4d363]}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_MASTER={0x30, 0xe, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}]}, @CTA_ID={0x8, 0xc, 0x1, 0x0, 0x4}]}, 0xd8}, 0x1, 0x0, 0x0, 0x20000000}, 0x8000)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0)
r3 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r3, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e000000850000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x9)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSARP(r5, 0x8955, &(0x7f0000000a80)={{0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x21}}, {0x0, @remote}, 0x1c, {0x2, 0x4e21, @multicast2}, 'veth0\x00'})
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
preadv(r6, &(0x7f0000000040)=[{&(0x7f0000000200)=""/218, 0xda}], 0x1, 0xffff, 0x0)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000180)={'syz_tun\x00'})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000640)={&(0x7f0000000440)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x132, 0x132, 0x8, [@fwd={0x10}, @int={0x1, 0x0, 0x0, 0x1, 0x0, 0x76, 0x0, 0x7f, 0x2}, @datasec={0x7, 0x3, 0x0, 0xf, 0x2, [{0x3, 0x4, 0x9}, {0x5, 0xfffffffc, 0xb7a}, {0x5, 0x3, 0xbb5}], 'l~'}, @enum={0x5, 0x4, 0x0, 0x6, 0x4, [{0x10, 0x8}, {0xe, 0x8001}, {0x9, 0xa017}, {0x0, 0x8}]}, @enum={0xc, 0xa, 0x0, 0x6, 0x4, [{0xc, 0xa}, {0x7, 0xffffffff}, {0x0, 0x6}, {0xd, 0xbd69}, {0xa, 0x3}, {0xa, 0x22d}, {0x1, 0x8}, {0x9, 0x3}, {0x7, 0x9}, {0x2, 0x3}]}, @int={0x2, 0x0, 0x0, 0x1, 0x0, 0x14, 0x0, 0x1, 0x2}, @func_proto={0x0, 0x5, 0x0, 0xd, 0x0, [{0xc, 0x1}, {0x8, 0x3}, {0x10, 0x5}, {0xd, 0x3}, {0xb}]}, @ptr={0xd, 0x0, 0x0, 0x2, 0x1}, @func={0x1, 0x0, 0x0, 0xc, 0x5}]}, {0x0, [0x2e, 0x61, 0x30, 0x0, 0x5f, 0x2e]}}, &(0x7f00000005c0)=""/115, 0x154, 0x73, 0x1, 0x400}, 0x20)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r8, 0x6, 0x0, 0x0, 0x0)
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)
setsockopt$inet6_tcp_TLS_TX(r8, 0x11a, 0x1, &(0x7f0000000180)=@gcm_256={{0x303}, "10eae400367465ec", "5b72e7f351595d23440175126a56eab2840b81a1adc6d8cfc4e551163ff66dec", '#\x00', "000000fc00"}, 0x38)
write(0xffffffffffffffff, &(0x7f0000000100)="1400000052004f7fb3e4bf80a000080000000000", 0x14)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2000004, 0x80010, 0xffffffffffffffff, 0x0)

271.908128ms ago: executing program 0 (id=1817):
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000000c0)="d800000018008103e00312ba0d8105040a600300ff0f040b067c55a1bc000900b80006990700000015000500fef32702d3001500030001400200000901ac040098007f6f9400713fa007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b11602b2a10c11ce1b14d6d930dfe1d9d322fe04000000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad809d5e1cace81ed0b66bce0b42a9ecbee5de6ccd40dd6e4edef3d93452a92307f00000e970300"/216, 0xd8}], 0x1}, 0x0)

180.926056ms ago: executing program 3 (id=1818):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x100010e, &(0x7f00000005c0)={[{@nodelalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4}}, {@resgid}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}, {@errors_remount}, {@init_itable_val={'init_itable', 0x3d, 0x8}}, {@journal_dev={'journal_dev', 0x3d, 0x7fffffff}}, {@auto_da_alloc}]}, 0x2, 0x44f, &(0x7f0000000c00)="$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")

145.116638ms ago: executing program 1 (id=1819):
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f0000000000)) (async)
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f0000000040)) (async)
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f0000000080)) (async, rerun: 32)
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f00000000c0)) (async, rerun: 32)
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f0000000100)) (async)
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f0000000140)) (async)
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f0000000180)) (async, rerun: 64)
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f00000001c0)) (async, rerun: 64)
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f0000000200))
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f0000000240)) (async)
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f0000000280)) (async)
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f00000002c0)) (async)
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f0000000300))
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f0000000340)) (async)
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f0000000380)) (async, rerun: 64)
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000003c0), 0x80, 0x0) (rerun: 64)
ioctl$SNAPSHOT_S2RAM(r0, 0x330b) (async, rerun: 32)
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f0000000400)) (async, rerun: 32)
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f0000000440)) (async)
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f0000000480))
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f00000004c0))
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f0000000500))
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f0000000540)) (async, rerun: 32)
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f0000000580)) (rerun: 32)
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f00000005c0))
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f0000000600))
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f0000000640))
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f0000000680)) (async)
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f00000006c0)) (async)
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f0000000700))

75.086794ms ago: executing program 1 (id=1820):
syz_emit_ethernet(0x0, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x101014}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_emit_ethernet(0xa6, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f00000009c0)=ANY=[@ANYRESOCT], 0x118)
r3 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000001080)={0x0, 0x0, 0x0, {0x0, 0x1}, {0x74, 0x2}, @ramp})
r4 = syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x822b01)
readv(r3, &(0x7f0000000880)=[{&(0x7f0000000800)=""/116, 0x18}], 0x300)
write$char_usb(r4, &(0x7f0000000040)="e2", 0x1068) (fail_nth: 12)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r5 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r5, &(0x7f0000002080)={0xa, 0x0, @dev}, 0x10)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x6)
ioctl$sock_bt_hci(r6, 0x400448c9, 0x0)
getsockopt$IP_SET_OP_GET_BYINDEX(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, 0x0, 0x0)

74.904465ms ago: executing program 3 (id=1821):
syz_read_part_table(0x5fd, &(0x7f0000001a40)="$eJzs2z9olGccB/DvxVzOP9B0cHKpcegkFMXRDFWSU7EQTqUQHLS1iJgpQuCkhwc6tBkUM0jHLlK4ReNkzOBQFIXORRxahAwuBV2kdshbrvc2rfaPR8kNxc9n+T338rvn+/zgWZ/wvzaUarkqar+VDz751/5i9I91O8c6E5MHi6IojiaVHE81Y9++s5hkOK/umh1JRv60z/WvNy9/+fxAtfP4yIv3T9ybH1rbs5Z3k2wZeePRa/1PyaDcGL8/evHSbP1y90e9tbL6cXLz2URj6fD8wuKh6v5T3e8Xkgdlf+9ibMq5NHM+Z3Ny+L+kVl7Jb3fzm+NnHtVbK191nuxa3Vbv3D699+X25St3dydz3Yip1/6XN9+vvqzNX+bPjV2dXmjt23lr67U9zTsPG083/Fz0lJHV9ckFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAwbozfH714abZ+uTl+5lG9tfLF9999dPPZRGPp8PzC4qGR/afKvgdlHS7ruTRzPmdzMjOZyWeZ7T9yuvKP+b9sTp7sWt1W79w+vffl5PKVu7vLvqn1GPZvvD7/3NjV6YXWvp23tl7b07zzsPF0Q69vppZPU+2tawM6CwAAAAAAAAAAAAAAAAAAAG+vicmD26c+bBxNKjm+MclPnw91vxflI/ff3+rvKOsPtWRTkusbk/bzA9XO4yMvRk7cm/+x7G+nlnaSLd8sHUveW8u58JfkyqBHow+/BgAA//8hVpWc")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0xe1)
ioctl$LOOP_CLR_FD(r0, 0x4c01)
syz_mount_image$msdos(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x0, &(0x7f00000004c0)=ANY=[], 0x1, 0x1e9, &(0x7f00000002c0)="$eJzs2k1rVFcYB/Bz05SkCXkppS3Jpoe2i3ZzabIsXSSUBEoHFM0IKkhuyESHGWfC3FnMiItZu/IjuBaX7gTJF8h3cOEuCNFVVl7R0bwRFyrJCPn9NvOHPwPn4cDhWdydf+7frm3k6UbWDkNJEoYWQi/sJWE6DIUPeuHP3/9+ee/y1Wv/L5ZKS5diXF5cmZuPMU7+8vT63Ue/brXHrzyefDIStqdv7OzOP9/+aXtm5/XKrWoeq3lsNNsxi2vNZjtbq1fiejWvpTFerFeyvBKrjbzSOtJv1Jubm92YNdYnxjZblTyPWaMba5VubDdju9WN2c2s2ohpmsaJscCXKD/cK4qwW3y7Goqi+O5BGN8KE8/CVEi+j8kPC8mPq8nPvWRmtyimBn1UToX7P98OPeqjIbzodcqdcv+33y//V1r6K74zffCvV51O+Zv9fq7fx6P9SBh738+f2I+GP37r92+7fy+UjvWzYf30xwcAOHfSuO/E/S5NP9b306H98Nj+Nhxmh89sDD5T3r1Ty+r1SksQBGE/DPpl4iwcXPqgTwIAAAAAAAAAAMCnOIvPCQc9IwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8HV7EwAA///n0Xgk") (fail_nth: 28)

74.395404ms ago: executing program 0 (id=1822):
syz_mount_image$ext4(&(0x7f0000000080)='ext2\x00', &(0x7f0000000840)='./file1\x00', 0x2010442, &(0x7f0000000880)={[{@init_itable}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2}}, {@noquota}, {@init_itable}, {@data_err_abort}, {@resgid}, {@sysvgroups}, {@noacl}, {@nogrpid}]}, 0x10, 0x4d2, &(0x7f00000002c0)="$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") (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async, rerun: 32)
bpf$MAP_CREATE(0x0, 0x0, 0x0) (async, rerun: 32)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bind$rxrpc(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 64)
r0 = socket$netlink(0x10, 0x3, 0x10) (rerun: 64)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r0) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
fsetxattr$security_capability(0xffffffffffffffff, &(0x7f00000001c0), 0x0, 0x0, 0x0) (rerun: 32)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000040), 0x55af) (async)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0)
getxattr(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)=@known='trusted.overlay.metacopy\x00', 0x0, 0x0) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x20040001}, 0x24000084)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @private2}]}, &(0x7f0000000180)=0x10) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=ANY=[@ANYBLOB="14100000000000"], 0x14}}, 0x0)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r3, 0x84, 0x85, &(0x7f0000000000)={r5, @in6={{0xa, 0x4e23, 0x200, @mcast2, 0x5}}}, 0x90) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
r6 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
sched_setscheduler(r6, 0x0, &(0x7f0000000200)=0x2)

43.498387ms ago: executing program 2 (id=1823):
ioperm(0x0, 0x2, 0x2)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={0xffffffffffffffff, 0xe0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000a40)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000080), 0x0, 0x20006f, &(0x7f0000000b80)=[{}], 0x8, 0x10, &(0x7f00000009c0), 0x0, 0x0, 0x9c, 0x8, 0x8, &(0x7f00000001c0)}}, 0x10)
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0)
read(r0, &(0x7f0000002340)=""/4096, 0x1000)
bind$inet6(0xffffffffffffffff, &(0x7f000047b000)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
listen(0xffffffffffffffff, 0x400000001ffffffd)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x18000, &(0x7f0000000000), 0x80, 0x62d, &(0x7f0000000c40)="$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")
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x58, &(0x7f0000000ac0)={[{@inode_readahead_blks}, {@nogrpid}, {}, {@commit={'commit', 0x3d, 0x7f}}, {@init_itable_val={'init_itable', 0x3d, 0x5}}, {@errors_remount}, {@nobh}, {@grpid}]}, 0xfe, 0x799, &(0x7f00000001c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000140))
getsockopt$inet_int(r1, 0x0, 0xe, 0x0, &(0x7f0000000040))
r2 = open(&(0x7f0000000400)='.\x00', 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000c00)='cpuacct.usage_all\x00', 0x7a05, 0x1700)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000100)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_RESET_TIMEOUT={0x8, 0x4, 0xfffffff8}]}}]}, 0x38}}, 0x0)
getdents(r2, &(0x7f0000001fc0)=""/184, 0xb8)
symlink(&(0x7f00000016c0)='./file0\x00', &(0x7f0000001700)='./file1\x00')

36.745517ms ago: executing program 0 (id=1824):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x2, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000144f0e61000000000000000004000000bb7f1a007600feff000020009500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x4, 0x93, &(0x7f0000000100)=""/147, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x61e5cc96}, 0x22)

0s ago: executing program 0 (id=1825):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff}, 0x13f}}, 0x20)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x6, 0xfffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x0, &(0x7f0000000040)=0x7fff, 0x4)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa2c"], 0xfdef)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f00000008c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000d80)={'wpan1\x00', <r4=>0x0})
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r2, &(0x7f0000000ec0)={0x0, 0x0, &(0x7f0000000e80)={&(0x7f0000000380)=ANY=[@ANYBLOB="f389703f18b300dcd2f49d8cfd", @ANYRES16=r3, @ANYBLOB="01000000000000000000150000000c002b80080001000000000008000300", @ANYRES32=r4, @ANYBLOB="24002b800800010000000000040003801400038006000100ffff00000800020000000000"], 0x4c}}, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
r5 = syz_open_dev$loop(&(0x7f0000000280), 0x1, 0x28040)
ioctl$IOC_PR_REGISTER(r5, 0x401870c8, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
symlink(0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x90)
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r6, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000140)={0x15, 0x110, 0xfa00, {r1, 0x0, 0x30, 0x30, 0x0, @in6={0x1b, 0x3, 0x9, @empty}, @ib={0x1b, 0x0, 0x3f9, {"0e080000200000515845830100"}, 0x2}}}, 0x118)
write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f0000000340)={0x7, 0x8, 0xfa00, {r1}}, 0x10)
fcntl$getownex(r0, 0x10, &(0x7f0000000580)={0x0, <r7=>0x0})
ptrace$getenv(0x4201, r7, 0x3ff, &(0x7f00000006c0))
capset(&(0x7f0000000080)={0x19980330}, &(0x7f0000000040)={0x200000, 0x200000})
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x6, &(0x7f00000005c0)=ANY=[@ANYBLOB="05000000000000007b114b00000000008510000002000000850000000500000095003300000000009500a505000000002482fba138928d40d75f7ab957d6b8f1b2a21f084f201aa938ae7357b8735e89aa80bae5f5fbbd945cbe3584d733346ffdd6070cdbde6701cbd045a709d6bea7301d"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xb8000000}, 0x70)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
setreuid(0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000880)={'syztnl0\x00', &(0x7f0000000800)={'ip6gre0\x00', 0x0, 0x4, 0x9, 0x10, 0x9, 0x52, @loopback, @loopback, 0x700, 0x20, 0x8, 0x5}})
write$RDMA_USER_CM_CMD_DESTROY_ID(r0, &(0x7f0000000280)={0x1, 0x10, 0xfa00, {&(0x7f0000000040), r1}}, 0x18)

kernel console output (not intermixed with test programs):

321.529122][ T7936] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  321.537863][ T7936] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  321.546597][ T7936] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  321.556589][ T8107] Process accounting resumed
[  321.588245][ T8094] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 16: comm syz.3.1313: path /1/file1: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  321.615213][ T8094] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 17: comm syz.3.1313: path /1/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  321.637894][ T8094] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 18: comm syz.3.1313: path /1/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  321.660131][ T8094] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 19: comm syz.3.1313: path /1/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  321.713265][ T8094] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 20: comm syz.3.1313: path /1/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  321.753963][ T8094] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 21: comm syz.3.1313: path /1/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  321.791945][ T8115] netdevsim netdevsim4 netdevsim0: set [1, 1] type 2 family 0 port 33466 - 0
[  321.800860][ T8115] netdevsim netdevsim4 netdevsim1: set [1, 1] type 2 family 0 port 33466 - 0
[  321.810013][ T8115] netdevsim netdevsim4 netdevsim2: set [1, 1] type 2 family 0 port 33466 - 0
[  321.819020][ T8115] netdevsim netdevsim4 netdevsim3: set [1, 1] type 2 family 0 port 33466 - 0
[  321.830504][ T8094] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 22: comm syz.3.1313: path /1/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  321.835303][ T8115] netdevsim netdevsim4 netdevsim0: set [1, 2] type 2 family 0 port 41077 - 0
[  321.853586][ T8094] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 23: comm syz.3.1313: path /1/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  321.859429][ T8115] netdevsim netdevsim4 netdevsim1: set [1, 2] type 2 family 0 port 41077 - 0
[  321.888449][ T8115] netdevsim netdevsim4 netdevsim2: set [1, 2] type 2 family 0 port 41077 - 0
[  321.897409][ T8115] netdevsim netdevsim4 netdevsim3: set [1, 2] type 2 family 0 port 41077 - 0
[  321.938195][ T8117] loop0: detected capacity change from 0 to 256
[  321.952983][ T8117] FAT-fs (loop0): Directory bread(block 64) failed
[  321.965260][ T8117] FAT-fs (loop0): Directory bread(block 65) failed
[  321.972573][ T8115] geneve2: entered promiscuous mode
[  321.973483][ T7946] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.977903][ T8115] geneve2: entered allmulticast mode
[  322.005209][ T8117] FAT-fs (loop0): Directory bread(block 66) failed
[  322.018539][ T8117] FAT-fs (loop0): Directory bread(block 67) failed
[  322.037573][ T8119] loop3: detected capacity change from 0 to 1024
[  322.054969][ T8117] FAT-fs (loop0): Directory bread(block 68) failed
[  322.059991][ T8119] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  322.061610][ T8117] FAT-fs (loop0): Directory bread(block 69) failed
[  322.092096][ T8119] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  322.100213][ T8117] FAT-fs (loop0): Directory bread(block 70) failed
[  322.105705][ T8121] loop4: detected capacity change from 0 to 512
[  322.107333][ T8117] FAT-fs (loop0): Directory bread(block 71) failed
[  322.119816][ T8119] EXT4-fs (loop3): orphan cleanup on readonly fs
[  322.132469][ T8119] EXT4-fs error (device loop3): ext4_free_blocks:6590: comm syz.3.1317: Freeing blocks not in datazone - block = 0, count = 4096
[  322.143011][ T8117] FAT-fs (loop0): Directory bread(block 72) failed
[  322.154306][ T8119] EXT4-fs (loop3): 1 orphan inode deleted
[  322.160436][ T8117] FAT-fs (loop0): Directory bread(block 73) failed
[  322.165745][ T8119] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  322.192885][ T1045] IPVS: starting estimator thread 0...
[  322.261966][ T8119] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 16: comm syz.3.1317: path /2/file1: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  322.275001][ T8117] syz.0.1316: attempt to access beyond end of device
[  322.275001][ T8117] loop0: rw=2049, sector=1224, nr_sectors = 4 limit=256
[  322.303363][ T8119] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 17: comm syz.3.1317: path /2/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  322.325664][ T8123] IPVS: using max 2400 ests per chain, 120000 per kthread
[  322.327768][ T8127] netem: change failed
[  322.342577][ T8125] loop4: detected capacity change from 0 to 1024
[  322.350508][ T8125] EXT4-fs: Ignoring removed nomblk_io_submit option
[  322.360975][ T8119] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 18: comm syz.3.1317: path /2/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  322.396218][ T8119] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 19: comm syz.3.1317: path /2/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  322.419642][ T8119] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 20: comm syz.3.1317: path /2/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  322.442951][ T8125] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a043c018, mo2=0002]
[  322.451291][ T8125] System zones: 0-1, 3-12
[  322.451790][ T8119] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 21: comm syz.3.1317: path /2/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  322.457827][ T8139] Unknown options in mask 5
[  322.480806][ T8125] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  322.482503][ T8119] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 22: comm syz.3.1317: path /2/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  322.535242][ T8119] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 23: comm syz.3.1317: path /2/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  322.576082][ T8148] netlink: 10 bytes leftover after parsing attributes in process `syz.1.1326'.
[  322.585231][ T8149] tipc: Started in network mode
[  322.590122][ T8149] tipc: Node identity ac14140f, cluster identity 4711
[  322.602747][ T8150] Process accounting resumed
[  322.610626][ T8149] tipc: New replicast peer: 255.255.255.255
[  322.616769][ T8149] tipc: Enabled bearer <udp:s>, priority 10
[  322.623155][ T8148] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1326'.
[  322.679183][ T7946] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  322.713740][   T29] audit: type=1326 audit(1723965709.810:1128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8154 comm="syz.3.1328" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f00dd509e79 code=0x0
[  322.739037][ T7936] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  322.768158][   T29] audit: type=1400 audit(1723965709.860:1129): avc:  denied  { mount } for  pid=8154 comm="syz.3.1328" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  322.790462][   T29] audit: type=1400 audit(1723965709.870:1130): avc:  denied  { mounton } for  pid=8154 comm="syz.3.1328" path="/3/file0" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=dir permissive=1
[  322.828557][ T8159] loop0: detected capacity change from 0 to 512
[  322.849357][ T8159] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  322.863959][ T8159] ext4 filesystem being mounted at /3/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  322.928048][ T8159] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #19: comm syz.0.1330: corrupted inode contents
[  322.942204][ T8159] EXT4-fs error (device loop0): ext4_dirty_inode:6014: inode #19: comm syz.0.1330: mark_inode_dirty error
[  322.954326][ T8159] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #19: comm syz.0.1330: corrupted inode contents
[  322.960050][ T8168] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1331'.
[  322.975169][ T8168] bond_slave_0: entered promiscuous mode
[  322.980873][ T8168] bond_slave_0: entered allmulticast mode
[  322.988130][ T8159] EXT4-fs error (device loop0): ext4_xattr_delete_inode:3007: inode #19: comm syz.0.1330: mark_inode_dirty error
[  323.000483][ T8159] EXT4-fs error (device loop0): ext4_xattr_delete_inode:3010: inode #19: comm syz.0.1330: mark inode dirty (error -117)
[  323.013207][ T8159] EXT4-fs warning (device loop0): ext4_evict_inode:271: xattr delete (err -117)
[  323.090379][ T7929] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  323.132502][ T8174] loop0: detected capacity change from 0 to 512
[  323.152453][   T29] audit: type=1326 audit(1723965710.250:1131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8173 comm="syz.0.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09548d9e79 code=0x7ffc0000
[  323.230927][ T8185] loop0: detected capacity change from 0 to 1024
[  323.238085][ T8185] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  323.250817][ T8185] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  323.258918][ T8185] EXT4-fs (loop0): orphan cleanup on readonly fs
[  323.266250][ T8185] EXT4-fs error (device loop0): ext4_free_blocks:6590: comm syz.0.1338: Freeing blocks not in datazone - block = 0, count = 4096
[  323.280581][ T8185] EXT4-fs (loop0): 1 orphan inode deleted
[  323.288822][ T8185] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  323.325431][ T8185] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 16: comm syz.0.1338: path /6/file1: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  323.345537][ T8185] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 17: comm syz.0.1338: path /6/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  323.368534][ T8185] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 18: comm syz.0.1338: path /6/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  323.390139][ T8185] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 19: comm syz.0.1338: path /6/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  323.411693][ T8185] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 20: comm syz.0.1338: path /6/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  323.412225][ T8185] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 21: comm syz.0.1338: path /6/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  323.412902][ T8185] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 22: comm syz.0.1338: path /6/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  323.413190][ T8185] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 23: comm syz.0.1338: path /6/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  323.459278][ T8196] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1340'.
[  323.507092][ T7929] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  323.560271][ T8202] loop2: detected capacity change from 0 to 164
[  323.625124][ T8206] loop2: detected capacity change from 0 to 128
[  323.628436][ T8204] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1344'.
[  323.631757][ T8206] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  323.693929][ T8206] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  323.712807][ T8211] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  323.734980][ T3336] tipc: Node number set to 2886997007
[  323.741149][ T8210] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1348'.
[  323.750118][ T8210] wg2: entered promiscuous mode
[  323.755072][ T8210] wg2: entered allmulticast mode
[  323.786153][ T8211] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  323.789349][ T8214] loop2: detected capacity change from 0 to 512
[  323.841320][ T8214] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  323.862053][ T8214] ext4 filesystem being mounted at /11/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  324.086493][ T7933] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.141093][ T8216] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  324.148467][ T8230] loop2: detected capacity change from 0 to 2048
[  324.159847][ T8216] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  324.174012][ T8230] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  324.190168][   T29] kauditd_printk_skb: 49 callbacks suppressed
[  324.190184][   T29] audit: type=1400 audit(1723965711.290:1181): avc:  denied  { read } for  pid=8227 comm="syz.2.1353" path="socket:[30783]" dev="sockfs" ino=30783 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  324.269630][ T8239] loop0: detected capacity change from 0 to 512
[  324.297427][   T29] audit: type=1400 audit(1723965711.400:1182): avc:  denied  { read } for  pid=8227 comm="syz.2.1353" name="/" dev="configfs" ino=209 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  324.319724][   T29] audit: type=1400 audit(1723965711.400:1183): avc:  denied  { open } for  pid=8227 comm="syz.2.1353" path="/12/file0/file0" dev="configfs" ino=209 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  324.343990][   T29] audit: type=1400 audit(1723965711.400:1184): avc:  denied  { search } for  pid=8227 comm="syz.2.1353" name="/" dev="configfs" ino=209 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  324.786058][ T8245] syzkaller0: entered promiscuous mode
[  324.814217][ T8245] syzkaller0 (unregistering): left promiscuous mode
[  324.895220][ T8246] bridge0: port 3(gretap0) entered blocking state
[  324.901739][ T8246] bridge0: port 3(gretap0) entered disabled state
[  324.927711][ T8246] gretap0: entered allmulticast mode
[  324.940476][ T8246] gretap0: entered promiscuous mode
[  324.956894][ T8246] bridge0: port 3(gretap0) entered blocking state
[  324.963442][ T8246] bridge0: port 3(gretap0) entered forwarding state
[  324.973617][ T7933] EXT4-fs error (device loop2): ext4_read_inline_dir:1564: inode #12: block 9: comm syz-executor: path /12/file0/file0: bad entry in directory: rec_len % 4 != 0 - offset=24, inode=13, rec_len=21, size=80 fake=0
[  324.973711][   T29] audit: type=1400 audit(1723965712.070:1185): avc:  denied  { unmount } for  pid=7933 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  325.011551][ T7933] EXT4-fs (loop2): Remounting filesystem read-only
[  325.034825][ T7933] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[  325.064214][ T7933] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[  325.087551][ T7933] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=16
[  325.104335][ T7933] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=16
[  325.136947][ T7933] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=16
[  325.167642][ T7933] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=16
[  325.177122][ T7933] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=17
[  325.186149][ T7933] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=17
[  325.212031][ T7933] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.289511][ T8250] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1359'.
[  325.414332][ T8251] loop4: detected capacity change from 0 to 1024
[  325.579886][ T8255] loop0: detected capacity change from 0 to 512
[  325.587071][ T8255] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  325.600452][ T8255] EXT4-fs (loop0): 1 truncate cleaned up
[  325.606758][ T8255] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  325.667585][ T7929] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.690004][ T8259] loop0: detected capacity change from 0 to 512
[  325.752931][   T29] audit: type=1400 audit(1723965712.850:1186): avc:  denied  { write } for  pid=8263 comm="syz.0.1363" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  325.752957][ T8264] random: crng reseeded on system resumption
[  325.829220][ T8266] loop0: detected capacity change from 0 to 256
[  325.836013][ T8266] vfat: Deprecated parameter 'posix'
[  325.841297][ T8266] FAT-fs: "posix" option is obsolete, not supported now
[  325.950609][   T29] audit: type=1400 audit(1723965713.050:1187): avc:  denied  { nlmsg_write } for  pid=8273 comm="syz.4.1368" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  325.978714][   T29] audit: type=1400 audit(1723965713.050:1188): avc:  denied  { nlmsg_read } for  pid=8273 comm="syz.4.1368" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  326.041180][ T8277] loop4: detected capacity change from 0 to 512
[  326.070621][ T8280] netlink: 'syz.0.1370': attribute type 8 has an invalid length.
[  326.086044][ T8277] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  326.109765][ T8277] ext4 filesystem being mounted at /9/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  326.137145][ T8283] loop0: detected capacity change from 0 to 2048
[  326.168819][   T29] audit: type=1400 audit(1723965713.270:1189): avc:  denied  { mounton } for  pid=8282 comm="syz.0.1371" path="/24/file0/file0" dev="loop0" ino=52 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=dir permissive=1
[  326.212993][   T29] audit: type=1400 audit(1723965713.310:1190): avc:  denied  { getopt } for  pid=8276 comm="syz.4.1369" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  326.454276][ T8297] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1377'.
[  326.785691][ T8221] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  327.025611][ T7936] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  327.048399][ T8306] loop4: detected capacity change from 0 to 1024
[  327.055377][ T8306] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  327.067101][ T8306] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  327.075327][ T8306] EXT4-fs (loop4): orphan cleanup on readonly fs
[  327.082057][ T8306] EXT4-fs error (device loop4): ext4_free_blocks:6590: comm syz.4.1379: Freeing blocks not in datazone - block = 0, count = 4096
[  327.095697][ T8306] EXT4-fs (loop4): 1 orphan inode deleted
[  327.101889][ T8306] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  327.128062][ T8306] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 16: comm syz.4.1379: path /10/file1: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  327.147960][ T8306] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 17: comm syz.4.1379: path /10/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  327.168945][ T8306] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 18: comm syz.4.1379: path /10/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  327.179650][ T8309] loop0: detected capacity change from 0 to 512
[  327.192641][ T8306] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 19: comm syz.4.1379: path /10/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  327.196165][ T8309] EXT4-fs (loop0): unsupported inode size: 4
[  327.218514][ T8306] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 20: comm syz.4.1379: path /10/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  327.221695][ T8309] EXT4-fs (loop0): blocksize: 1024
[  327.249385][ T8306] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 21: comm syz.4.1379: path /10/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  327.270646][ T8306] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 22: comm syz.4.1379: path /10/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  327.293046][ T8312] syzkaller0: entered allmulticast mode
[  327.304446][ T8306] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 23: comm syz.4.1379: path /10/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  327.456207][ T4843] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  327.511586][ T7936] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  327.581998][ T4843] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  327.674703][ T8326] loop0: detected capacity change from 0 to 256
[  327.704272][ T8326] FAT-fs (loop0): Directory bread(block 64) failed
[  327.732558][ T8326] FAT-fs (loop0): Directory bread(block 65) failed
[  327.746759][ T8326] FAT-fs (loop0): Directory bread(block 66) failed
[  327.763703][ T8326] FAT-fs (loop0): Directory bread(block 67) failed
[  327.777128][ T8326] FAT-fs (loop0): Directory bread(block 68) failed
[  327.792481][ T4843] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  327.811845][ T8326] FAT-fs (loop0): Directory bread(block 69) failed
[  327.823215][ T8326] FAT-fs (loop0): Directory bread(block 70) failed
[  327.848513][ T8326] FAT-fs (loop0): Directory bread(block 71) failed
[  327.873133][ T8326] FAT-fs (loop0): Directory bread(block 72) failed
[  327.903249][ T8326] FAT-fs (loop0): Directory bread(block 73) failed
[  327.954152][ T4843] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  328.192329][ T8344] loop2: detected capacity change from 0 to 512
[  328.200289][ T4843] bridge_slave_1: left allmulticast mode
[  328.205983][ T4843] bridge_slave_1: left promiscuous mode
[  328.211661][ T4843] bridge0: port 2(bridge_slave_1) entered disabled state
[  328.220041][ T4843] bridge_slave_0: left allmulticast mode
[  328.222464][ T8348] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  328.225745][ T4843] bridge_slave_0: left promiscuous mode
[  328.239853][ T4843] bridge0: port 1(bridge_slave_0) entered disabled state
[  328.240719][ T8344] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  328.259688][ T8348] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  328.261533][ T8344] ext4 filesystem being mounted at /17/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  328.291448][ T7933] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  328.408559][ T4843] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  328.419481][ T4843] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  328.431281][ T4843] bond0 (unregistering): Released all slaves
[  328.613332][ T8346] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1392'.
[  328.689261][ T4843] hsr_slave_0: left promiscuous mode
[  328.728863][ T4843] hsr_slave_1: left promiscuous mode
[  328.752596][ T4843] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  328.760226][ T4843] batman_adv: batadv0: Removing interface: batadv_slave_0
[  328.770600][ T4843] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  328.778343][ T4843] batman_adv: batadv0: Removing interface: batadv_slave_1
[  328.796968][ T4843] veth1_macvtap: left promiscuous mode
[  328.802496][ T4843] veth0_macvtap: left promiscuous mode
[  328.808171][ T4843] veth1_vlan: left promiscuous mode
[  328.813539][ T4843] veth0_vlan: left promiscuous mode
[  328.846795][ T8361] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=61200 sclass=netlink_route_socket pid=8361 comm=syz.0.1394
[  328.870668][ T8368] loop4: detected capacity change from 0 to 1024
[  328.878429][ T8368] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  328.889428][ T8368] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  328.898014][ T8368] EXT4-fs (loop4): orphan cleanup on readonly fs
[  328.904706][ T8368] EXT4-fs error (device loop4): ext4_free_blocks:6590: comm syz.4.1397: Freeing blocks not in datazone - block = 0, count = 4096
[  328.919717][ T8368] EXT4-fs (loop4): 1 orphan inode deleted
[  328.931847][ T8368] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  328.953887][ T4843] team0 (unregistering): Port device team_slave_1 removed
[  328.966099][ T4843] team0 (unregistering): Port device team_slave_0 removed
[  328.967319][ T8368] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 16: comm syz.4.1397: path /14/file1: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  328.996300][ T8368] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 17: comm syz.4.1397: path /14/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  329.016717][ T8368] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 18: comm syz.4.1397: path /14/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  329.037456][ T8368] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 19: comm syz.4.1397: path /14/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  329.056161][ T8369] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1394'.
[  329.065363][ T8368] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 20: comm syz.4.1397: path /14/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  329.087266][ T8368] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 21: comm syz.4.1397: path /14/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  329.108574][ T8368] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 22: comm syz.4.1397: path /14/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  329.130799][ T8368] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 23: comm syz.4.1397: path /14/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  329.365522][ T7936] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  329.382195][ T8323] chnl_net:caif_netlink_parms(): no params data found
[  329.470836][ T8323] bridge0: port 1(bridge_slave_0) entered blocking state
[  329.478183][ T8323] bridge0: port 1(bridge_slave_0) entered disabled state
[  329.488033][ T8323] bridge_slave_0: entered allmulticast mode
[  329.494725][ T8323] bridge_slave_0: entered promiscuous mode
[  329.502525][ T8323] bridge0: port 2(bridge_slave_1) entered blocking state
[  329.509785][ T8323] bridge0: port 2(bridge_slave_1) entered disabled state
[  329.519093][ T8323] bridge_slave_1: entered allmulticast mode
[  329.525732][ T8323] bridge_slave_1: entered promiscuous mode
[  329.761874][ T8323] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  329.774892][ T8323] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  329.813676][ T8323] team0: Port device team_slave_0 added
[  329.858849][ T8323] team0: Port device team_slave_1 added
[  329.892177][ T8323] batman_adv: batadv0: Adding interface: batadv_slave_0
[  329.899300][ T8323] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  329.925492][ T8323] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  329.935941][ T8384] netlink: 264 bytes leftover after parsing attributes in process `syz.4.1399'.
[  329.956443][ T8323] batman_adv: batadv0: Adding interface: batadv_slave_1
[  329.963429][ T8323] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  329.989540][ T8323] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  330.018702][ T8388] loop4: detected capacity change from 0 to 2048
[  330.156440][ T8388] Alternate GPT is invalid, using primary GPT.
[  330.163061][ T8388]  loop4: p1 p2 p3
[  330.170576][ T8323] hsr_slave_0: entered promiscuous mode
[  330.274249][ T8390] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1402'.
[  330.305293][ T8323] hsr_slave_1: entered promiscuous mode
[  330.753735][ T8323] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  330.763097][ T8323] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  330.772101][ T8323] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  330.786979][ T8323] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  330.834603][ T8323] 8021q: adding VLAN 0 to HW filter on device bond0
[  330.844129][ T8408] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1407'.
[  330.857355][ T8323] 8021q: adding VLAN 0 to HW filter on device team0
[  330.881870][ T8323] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  330.892528][ T8323] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  330.991039][ T4843] bridge0: port 1(bridge_slave_0) entered blocking state
[  330.998277][ T4843] bridge0: port 1(bridge_slave_0) entered forwarding state
[  331.007675][ T4843] bridge0: port 2(bridge_slave_1) entered blocking state
[  331.014753][ T4843] bridge0: port 2(bridge_slave_1) entered forwarding state
[  331.065589][ T8415] batadv_slave_1: entered promiscuous mode
[  331.075917][ T8420] FAULT_INJECTION: forcing a failure.
[  331.075917][ T8420] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  331.089064][ T8420] CPU: 1 UID: 0 PID: 8420 Comm: syz.0.1406 Not tainted 6.11.0-rc3-syzkaller-00321-g810996a36309 #0
[  331.099757][ T8420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  331.109919][ T8420] Call Trace:
[  331.113209][ T8420]  <TASK>
[  331.116204][ T8420]  dump_stack_lvl+0xf2/0x150
[  331.120872][ T8420]  dump_stack+0x15/0x20
[  331.125068][ T8420]  should_fail_ex+0x229/0x230
[  331.129802][ T8420]  should_fail+0xb/0x10
[  331.134067][ T8420]  should_fail_usercopy+0x1a/0x20
[  331.139173][ T8420]  _copy_from_user+0x1e/0xd0
[  331.143877][ T8420]  input_event_from_user+0x126/0x1e0
[  331.143983][ T8417] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1410'.
[  331.149185][ T8420]  ? input_inject_event+0xe1/0x100
[  331.149211][ T8420]  evdev_write+0x288/0x420
[  331.149236][ T8420]  ? __pfx_evdev_write+0x10/0x10
[  331.172750][ T8420]  vfs_write+0x28b/0x900
[  331.177068][ T8420]  ? __fget_files+0x1da/0x210
[  331.181776][ T8420]  ksys_write+0xeb/0x1b0
[  331.186224][ T8420]  __x64_sys_write+0x42/0x50
[  331.190829][ T8420]  x64_sys_call+0x27dd/0x2d60
[  331.195523][ T8420]  do_syscall_64+0xc9/0x1c0
[  331.200040][ T8420]  ? clear_bhb_loop+0x55/0xb0
[  331.204849][ T8420]  ? clear_bhb_loop+0x55/0xb0
[  331.209538][ T8420]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  331.215447][ T8420] RIP: 0033:0x7f09548d9e79
[  331.219890][ T8420] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  331.239595][ T8420] RSP: 002b:00007f0953536038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  331.248031][ T8420] RAX: ffffffffffffffda RBX: 00007f0954a76058 RCX: 00007f09548d9e79
[  331.256008][ T8420] RDX: 0000000000001068 RSI: 0000000020000040 RDI: 0000000000000007
[  331.264005][ T8420] RBP: 00007f0953536090 R08: 0000000000000000 R09: 0000000000000000
[  331.272061][ T8420] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  331.280067][ T8420] R13: 0000000000000001 R14: 00007f0954a76058 R15: 00007ffc461a14f8
[  331.288051][ T8420]  </TASK>
[  331.298786][   T29] kauditd_printk_skb: 3 callbacks suppressed
[  331.298803][   T29] audit: type=1326 audit(1723965718.390:1194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8414 comm="syz.1.1410" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa1a9b09e79 code=0x0
[  331.360522][ T8415] syzkaller0: entered promiscuous mode
[  331.374194][ T8323] 8021q: adding VLAN 0 to HW filter on device batadv0
[  331.381947][ T8422] bridge0: port 3(gretap0) entered blocking state
[  331.388491][ T8422] bridge0: port 3(gretap0) entered disabled state
[  331.395243][ T8422] gretap0: entered allmulticast mode
[  331.401345][ T8422] gretap0: entered promiscuous mode
[  331.416178][ T8422] bridge0: port 3(gretap0) entered blocking state
[  331.422709][ T8422] bridge0: port 3(gretap0) entered forwarding state
[  331.449404][ T8412] syzkaller0: left promiscuous mode
[  331.454862][ T8412] batadv_slave_1: left promiscuous mode
[  331.463427][ T8427] syz_tun: entered promiscuous mode
[  331.540404][ T8438] loop4: detected capacity change from 0 to 2048
[  331.610552][ T8323] veth0_vlan: entered promiscuous mode
[  331.619367][ T8447] loop4: detected capacity change from 0 to 256
[  331.622514][ T8323] veth1_vlan: entered promiscuous mode
[  331.627378][ T8447] vfat: Deprecated parameter 'posix'
[  331.636475][ T8447] FAT-fs: "posix" option is obsolete, not supported now
[  331.687466][ T8323] veth0_macvtap: entered promiscuous mode
[  331.712848][ T8323] veth1_macvtap: entered promiscuous mode
[  331.727823][ T8451] dummy0: entered promiscuous mode
[  331.736999][ T8323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  331.738381][ T8455] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  331.747475][ T8323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  331.762181][ T8455] loop0: detected capacity change from 0 to 164
[  331.767801][ T8323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  331.784583][ T8323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  331.794475][ T8323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  331.806263][ T8323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  331.816672][ T8455] rock: corrupted directory entry. extent=41, offset=65536, size=8
[  331.824713][ T8323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  331.835159][ T8323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  331.845064][ T8323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  331.851392][   T29] audit: type=1400 audit(1723965718.920:1195): avc:  denied  { mount } for  pid=8454 comm="syz.0.1420" name="/" dev="loop0" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[  331.855504][ T8323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  331.855517][ T8323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  331.855532][ T8323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  331.908339][ T8323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  331.918774][ T8323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  331.933670][ T8323] batman_adv: batadv0: Interface activated: batadv_slave_0
[  331.954615][ T8451] syzkaller0: entered promiscuous mode
[  331.966714][ T8459] Unknown options in mask 5
[  331.973502][ T8456] syzkaller0 (unregistering): left promiscuous mode
[  331.979560][   T29] audit: type=1400 audit(1723965719.050:1196): avc:  denied  { unmount } for  pid=7929 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[  332.010219][   T29] audit: type=1400 audit(1723965719.110:1197): avc:  denied  { shutdown } for  pid=8448 comm="syz.2.1417" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  332.045315][ T8323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  332.045338][ T8323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  332.045377][ T8323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  332.045463][ T8323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  332.045475][ T8323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  332.045491][ T8323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  332.045508][ T8323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  332.045524][ T8323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  332.045535][ T8323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  332.045550][ T8323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  332.045561][ T8323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  332.045581][ T8323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  332.045592][ T8323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  332.045607][ T8323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  332.046652][ T8323] batman_adv: batadv0: Interface activated: batadv_slave_1
[  332.048148][ T8323] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  332.048194][ T8323] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  332.048310][ T8323] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  332.048391][ T8323] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  332.065624][ T8466] SELinux:  Context system_u:object_r:getty_exec_t:s0 is not valid (left unmapped).
[  332.074002][   T29] audit: type=1400 audit(1723965719.170:1198): avc:  denied  { mac_admin } for  pid=8464 comm="syz.1.1423" capability=33  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  332.074031][   T29] audit: type=1400 audit(1723965719.170:1199): avc:  denied  { relabelto } for  pid=8464 comm="syz.1.1423" name="tty1" dev="devtmpfs" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 trawcon="system_u:object_r:getty_exec_t:s0"
[  332.074060][   T29] audit: type=1400 audit(1723965719.170:1200): avc:  denied  { associate } for  pid=8464 comm="syz.1.1423" name="tty1" dev="devtmpfs" ino=19 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1 srawcon="system_u:object_r:getty_exec_t:s0"
[  332.074117][   T29] audit: type=1400 audit(1723965719.170:1201): avc:  denied  { ioctl } for  pid=8464 comm="syz.1.1423" path="/dev/tty1" dev="devtmpfs" ino=19 ioctlcmd=0x4b60 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 trawcon="system_u:object_r:getty_exec_t:s0"
[  332.078833][ T8450] dummy0: left promiscuous mode
[  332.220587][ T8479] loop4: detected capacity change from 0 to 2048
[  332.434066][ T8483] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[  332.446850][ T8488] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1430'.
[  332.487699][   T29] audit: type=1400 audit(1723965719.590:1202): avc:  denied  { ioctl } for  pid=8486 comm="syz.0.1430" path="/dev/nvram" dev="devtmpfs" ino=98 ioctlcmd=0x5878 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  332.538014][   T29] audit: type=1326 audit(1723965719.640:1203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8486 comm="syz.0.1430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09548d9e79 code=0x7ffc0000
[  332.542528][ T8488] loop0: detected capacity change from 0 to 512
[  332.579456][ T8494] loop3: detected capacity change from 0 to 128
[  332.588486][ T8488] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  332.606710][ T8494] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  332.618734][ T8488] EXT4-fs (loop0): 1 truncate cleaned up
[  332.624857][ T8488] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  332.655062][ T8494] loop3: detected capacity change from 128 to 0
[  332.667813][ T8506] netem: change failed
[  332.671962][ T8504] netlink: 'syz.2.1437': attribute type 10 has an invalid length.
[  332.682109][ T8494] syz.3.1433: attempt to access beyond end of device
[  332.682109][ T8494] loop3: rw=524288, sector=33, nr_sectors = 1 limit=0
[  332.704378][ T8494] syz.3.1433: attempt to access beyond end of device
[  332.704378][ T8494] loop3: rw=524288, sector=34, nr_sectors = 1 limit=0
[  332.712389][ T8504] team0: Failed to send options change via netlink (err -105)
[  332.718320][ T8494] syz.3.1433: attempt to access beyond end of device
[  332.718320][ T8494] loop3: rw=524288, sector=35, nr_sectors = 1 limit=0
[  332.725271][ T8504] team0: Port device netdevsim1 added
[  332.744900][ T8494] syz.3.1433: attempt to access beyond end of device
[  332.744900][ T8494] loop3: rw=524288, sector=36, nr_sectors = 1 limit=0
[  332.759539][ T8494] syz.3.1433: attempt to access beyond end of device
[  332.759539][ T8494] loop3: rw=524288, sector=37, nr_sectors = 1 limit=0
[  332.773713][ T8494] syz.3.1433: attempt to access beyond end of device
[  332.773713][ T8494] loop3: rw=524288, sector=38, nr_sectors = 1 limit=0
[  332.787642][ T8494] syz.3.1433: attempt to access beyond end of device
[  332.787642][ T8494] loop3: rw=524288, sector=39, nr_sectors = 1 limit=0
[  332.815017][ T8494] syz.3.1433: attempt to access beyond end of device
[  332.815017][ T8494] loop3: rw=524288, sector=40, nr_sectors = 1 limit=0
[  332.832856][ T8494] syz.3.1433: attempt to access beyond end of device
[  332.832856][ T8494] loop3: rw=0, sector=33, nr_sectors = 1 limit=0
[  332.840651][ T8504] loop2: detected capacity change from 0 to 512
[  332.849214][ T8494] FAT-fs (loop3): Directory bread(block 33) failed
[  332.861662][ T8504] EXT4-fs (loop2): filesystem is read-only
[  332.873852][ T8494] syz.3.1433: attempt to access beyond end of device
[  332.873852][ T8494] loop3: rw=0, sector=34, nr_sectors = 1 limit=0
[  332.896472][ T8494] FAT-fs (loop3): Directory bread(block 34) failed
[  332.903307][ T8530] loop2: detected capacity change from 0 to 2048
[  332.911617][ T8494] FAT-fs (loop3): Directory bread(block 35) failed
[  332.918397][ T8494] FAT-fs (loop3): Directory bread(block 36) failed
[  332.925284][ T8494] FAT-fs (loop3): Directory bread(block 37) failed
[  332.931883][ T8494] FAT-fs (loop3): Directory bread(block 38) failed
[  332.939137][ T8530]  loop2: p1 < > p4
[  332.941773][ T8532] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1443'.
[  332.943299][ T8494] FAT-fs (loop3): Directory bread(block 39) failed
[  332.958588][ T8530] loop2: p4 size 8388608 extends beyond EOD, truncated
[  332.964315][ T8494] FAT-fs (loop3): Directory bread(block 40) failed
[  332.975692][ T8530] FAULT_INJECTION: forcing a failure.
[  332.975692][ T8530] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  332.980278][ T8494] FAT-fs (loop3): FAT read failed (blocknr 32)
[  332.988791][ T8530] CPU: 0 UID: 0 PID: 8530 Comm: syz.2.1442 Not tainted 6.11.0-rc3-syzkaller-00321-g810996a36309 #0
[  332.988896][ T8530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  332.988908][ T8530] Call Trace:
[  332.988914][ T8530]  <TASK>
[  332.988920][ T8530]  dump_stack_lvl+0xf2/0x150
[  333.026681][ T8530]  dump_stack+0x15/0x20
[  333.030860][ T8530]  should_fail_ex+0x229/0x230
[  333.035682][ T8530]  should_fail+0xb/0x10
[  333.039897][ T8530]  should_fail_usercopy+0x1a/0x20
[  333.044979][ T8530]  copy_page_from_iter_atomic+0x22a/0xda0
[  333.050772][ T8530]  ? shmem_write_begin+0xa0/0x1c0
[  333.055860][ T8530]  ? shmem_write_begin+0x10c/0x1c0
[  333.061118][ T8530]  generic_perform_write+0x323/0x580
[  333.066423][ T8530]  shmem_file_write_iter+0xc8/0xf0
[  333.071611][ T8530]  vfs_write+0x78f/0x900
[  333.075910][ T8530]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  333.081751][ T8530]  ksys_write+0xeb/0x1b0
[  333.086031][ T8530]  __x64_sys_write+0x42/0x50
[  333.090666][ T8530]  x64_sys_call+0x27dd/0x2d60
[  333.095353][ T8530]  do_syscall_64+0xc9/0x1c0
[  333.099950][ T8530]  ? clear_bhb_loop+0x55/0xb0
[  333.104701][ T8530]  ? clear_bhb_loop+0x55/0xb0
[  333.109392][ T8530]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  333.115341][ T8530] RIP: 0033:0x7f954c07895f
[  333.119788][ T8530] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[  333.139396][ T8530] RSP: 002b:00007f954acf6df0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  333.147811][ T8530] RAX: ffffffffffffffda RBX: 0000000000010000 RCX: 00007f954c07895f
[  333.155849][ T8530] RDX: 0000000000010000 RSI: 00007f95428d7000 RDI: 0000000000000005
[  333.163818][ T8530] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000001e3
[  333.171838][ T8530] R10: 00000000000001d0 R11: 0000000000000293 R12: 0000000000000005
[  333.179915][ T8530] R13: 00007f954acf6ef0 R14: 00007f954acf6eb0 R15: 00007f95428d7000
[  333.187892][ T8530]  </TASK>
[  333.201528][ T8323] FAT-fs (loop3): Directory bread(block 33) failed
[  333.223648][   T28] FAT-fs (loop3): bread failed in fat_clusters_flush
[  333.230725][ T8323] FAT-fs (loop3): unable to read boot sector to mark fs as dirty
[  333.254885][ T8537] loop2: detected capacity change from 0 to 512
[  333.274501][ T7929] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.328282][ T8545] IPv6: Can't replace route, no match found
[  333.356035][ T8547] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1450'.
[  333.416407][ T8553] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=49429 sclass=netlink_xfrm_socket pid=8553 comm=syz.0.1453
[  333.471035][ T8560] loop4: detected capacity change from 0 to 2048
[  333.500938][ T8560] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  333.526533][ T8569] loop2: detected capacity change from 0 to 512
[  333.533524][ T8569] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  333.548675][ T8571] loop0: detected capacity change from 0 to 256
[  333.570760][ T7936] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.583160][ T8569] EXT4-fs (loop2): 1 truncate cleaned up
[  333.592896][ T8569] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  333.609685][ T8571] FAT-fs (loop0): Directory bread(block 64) failed
[  333.616573][ T8571] FAT-fs (loop0): Directory bread(block 65) failed
[  333.623116][ T8571] FAT-fs (loop0): Directory bread(block 66) failed
[  333.631681][ T8571] FAT-fs (loop0): Directory bread(block 67) failed
[  333.638298][ T8571] FAT-fs (loop0): Directory bread(block 68) failed
[  333.642920][ T8580] loop4: detected capacity change from 0 to 2048
[  333.644871][ T8571] FAT-fs (loop0): Directory bread(block 69) failed
[  333.663246][ T8571] FAT-fs (loop0): Directory bread(block 70) failed
[  333.675626][ T8571] FAT-fs (loop0): Directory bread(block 71) failed
[  333.683641][ T8571] FAT-fs (loop0): Directory bread(block 72) failed
[  333.690504][ T8571] FAT-fs (loop0): Directory bread(block 73) failed
[  333.705356][ T8571] FAULT_INJECTION: forcing a failure.
[  333.705356][ T8571] name failslab, interval 1, probability 0, space 0, times 0
[  333.718058][ T8571] CPU: 1 UID: 0 PID: 8571 Comm: syz.0.1457 Not tainted 6.11.0-rc3-syzkaller-00321-g810996a36309 #0
[  333.728746][ T8571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  333.738835][ T8571] Call Trace:
[  333.742132][ T8571]  <TASK>
[  333.745140][ T8571]  dump_stack_lvl+0xf2/0x150
[  333.749752][ T8571]  dump_stack+0x15/0x20
[  333.753990][ T8571]  should_fail_ex+0x229/0x230
[  333.758850][ T8571]  ? skb_clone+0x154/0x1f0
[  333.763276][ T8571]  should_failslab+0x8f/0xb0
[  333.767883][ T8571]  kmem_cache_alloc_noprof+0x4c/0x290
[  333.773332][ T8571]  skb_clone+0x154/0x1f0
[  333.777631][ T8571]  __netlink_deliver_tap+0x2bd/0x4c0
[  333.782945][ T8571]  netlink_unicast+0x64a/0x670
[  333.787730][ T8571]  netlink_sendmsg+0x5cc/0x6e0
[  333.792514][ T8571]  ? __pfx_netlink_sendmsg+0x10/0x10
[  333.797837][ T8571]  __sock_sendmsg+0x140/0x180
[  333.802619][ T8571]  ____sys_sendmsg+0x312/0x410
[  333.807395][ T8571]  __sys_sendmsg+0x1e9/0x280
[  333.812039][ T8571]  __x64_sys_sendmsg+0x46/0x50
[  333.816918][ T8571]  x64_sys_call+0x2689/0x2d60
[  333.821619][ T8571]  do_syscall_64+0xc9/0x1c0
[  333.826233][ T8571]  ? clear_bhb_loop+0x55/0xb0
[  333.831007][ T8571]  ? clear_bhb_loop+0x55/0xb0
[  333.835695][ T8571]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  333.841598][ T8571] RIP: 0033:0x7f09548d9e79
[  333.846013][ T8571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  333.866415][ T8571] RSP: 002b:00007f0953557038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  333.874901][ T8571] RAX: ffffffffffffffda RBX: 00007f0954a75f80 RCX: 00007f09548d9e79
[  333.882952][ T8571] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000008
[  333.890941][ T8571] RBP: 00007f0953557090 R08: 0000000000000000 R09: 0000000000000000
[  333.899184][ T8571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  333.907159][ T8571] R13: 0000000000000000 R14: 00007f0954a75f80 R15: 00007ffc461a14f8
[  333.915181][ T8571]  </TASK>
[  333.941533][ T8584] loop4: detected capacity change from 0 to 128
[  333.949994][ T8584] x_tables: ip_tables: udp match: only valid for protocol 17
[  333.985335][ T8587] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1464'.
[  333.988947][ T8588] mmap: syz.4.1465 (8588) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  333.994368][ T8587] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1464'.
[  334.015393][ T8587] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1464'.
[  334.059097][ T8594] dummy0: entered promiscuous mode
[  334.067282][ T8594] dummy0: left promiscuous mode
[  334.077968][ T8597] netem: change failed
[  334.099129][ T8599] loop0: detected capacity change from 0 to 256
[  334.113083][ T8599] FAT-fs (loop0): Directory bread(block 64) failed
[  334.119911][ T8599] FAT-fs (loop0): Directory bread(block 65) failed
[  334.126972][ T8599] FAT-fs (loop0): Directory bread(block 66) failed
[  334.133682][ T8599] FAT-fs (loop0): Directory bread(block 67) failed
[  334.140573][ T8599] FAT-fs (loop0): Directory bread(block 68) failed
[  334.147316][ T8599] FAT-fs (loop0): Directory bread(block 69) failed
[  334.153938][ T8599] FAT-fs (loop0): Directory bread(block 70) failed
[  334.160560][ T8599] FAT-fs (loop0): Directory bread(block 71) failed
[  334.167294][ T8599] FAT-fs (loop0): Directory bread(block 72) failed
[  334.173922][ T8599] FAT-fs (loop0): Directory bread(block 73) failed
[  334.188496][ T8601] netlink: 'syz.4.1471': attribute type 13 has an invalid length.
[  334.196374][ T8601] netlink: 152 bytes leftover after parsing attributes in process `syz.4.1471'.
[  334.216769][ T8601] erspan0: refused to change device tx_queue_len
[  334.223162][ T8601] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  334.261811][ T8606] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1472'.
[  334.278026][ T8606] loop0: detected capacity change from 0 to 128
[  334.306644][ T8608] loop4: detected capacity change from 0 to 2048
[  334.317993][ T8610] loop0: detected capacity change from 0 to 256
[  334.332443][ T8610] FAT-fs (loop0): Directory bread(block 64) failed
[  334.341033][ T8610] FAT-fs (loop0): Directory bread(block 65) failed
[  334.347644][ T8610] FAT-fs (loop0): Directory bread(block 66) failed
[  334.354669][ T8610] FAT-fs (loop0): Directory bread(block 67) failed
[  334.361906][ T8610] FAT-fs (loop0): Directory bread(block 68) failed
[  334.371517][ T8610] FAT-fs (loop0): Directory bread(block 69) failed
[  334.378495][ T8610] FAT-fs (loop0): Directory bread(block 70) failed
[  334.385780][ T8610] FAT-fs (loop0): Directory bread(block 71) failed
[  334.392417][ T8610] FAT-fs (loop0): Directory bread(block 72) failed
[  334.395680][ T7933] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  334.401500][ T8610] FAT-fs (loop0): Directory bread(block 73) failed
[  334.435943][ T8613] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1476'.
[  334.491770][ T8620] netlink: 376 bytes leftover after parsing attributes in process `syz.1.1478'.
[  334.547484][ T8619] loop0: detected capacity change from 0 to 2048
[  334.571271][ T8625] loop2: detected capacity change from 0 to 2048
[  334.574256][ T8619] loop0: detected capacity change from 0 to 512
[  334.635612][ T8625]  loop2: p1 < > p4
[  334.649864][ T8625] loop2: p4 size 8388608 extends beyond EOD, truncated
[  334.704112][ T8636] loop4: detected capacity change from 0 to 512
[  334.710809][ T8636] EXT4-fs: Ignoring removed i_version option
[  334.716870][ T8636] EXT4-fs: Ignoring removed oldalloc option
[  334.723267][ T8636] EXT4-fs: Mount option(s) incompatible with ext2
[  334.731482][ T8636] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  334.998897][ T8659] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1492'.
[  335.122966][ T8660] loop4: detected capacity change from 0 to 1024
[  335.362564][ T8677] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1501'.
[  335.371664][ T8677] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1501'.
[  335.543749][ T8695] loop2: detected capacity change from 0 to 512
[  335.552469][ T8695] EXT4-fs: mb_optimize_scan should be set to 0 or 1.
[  335.637890][ T8701] loop2: detected capacity change from 0 to 2048
[  336.053718][ T8712] netlink: 'syz.2.1514': attribute type 2 has an invalid length.
[  336.061738][ T8712] netlink: 'syz.2.1514': attribute type 1 has an invalid length.
[  336.090119][ T8715] Cannot find set identified by id 0 to match
[  336.115599][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  336.128764][ T8718] syzkaller0: entered promiscuous mode
[  336.137287][ T8718] syzkaller0 (unregistering): left promiscuous mode
[  336.253422][ T8723] loop2: detected capacity change from 0 to 512
[  336.266764][ T8723] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  336.279362][ T8723] ext4 filesystem being mounted at /46/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  336.305889][ T7933] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  336.934819][ T8745] loop2: detected capacity change from 0 to 2048
[  337.012615][ T8751] loop4: detected capacity change from 0 to 512
[  337.033633][ T8751] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  337.047889][ T8751] ext4 filesystem being mounted at /46/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  337.082086][ T7936] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  337.093689][ T8757] loop2: detected capacity change from 0 to 2048
[  337.124395][ T8759] loop4: detected capacity change from 0 to 2048
[  337.138724][ T8757]  loop2: p1 p2 p3
[  337.156190][ T8759] Alternate GPT is invalid, using primary GPT.
[  337.162667][ T8759]  loop4: p1 p2 p3
[  337.287903][ T8761] loop0: detected capacity change from 0 to 512
[  337.429791][ T8780] loop2: detected capacity change from 0 to 2048
[  337.520858][ T8788] FAULT_INJECTION: forcing a failure.
[  337.520858][ T8788] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  337.534037][ T8788] CPU: 1 UID: 0 PID: 8788 Comm: syz.4.1542 Not tainted 6.11.0-rc3-syzkaller-00321-g810996a36309 #0
[  337.544729][ T8788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  337.554828][ T8788] Call Trace:
[  337.558117][ T8788]  <TASK>
[  337.561060][ T8788]  dump_stack_lvl+0xf2/0x150
[  337.565745][ T8788]  dump_stack+0x15/0x20
[  337.569926][ T8788]  should_fail_ex+0x229/0x230
[  337.574665][ T8788]  should_fail+0xb/0x10
[  337.578851][ T8788]  should_fail_usercopy+0x1a/0x20
[  337.583985][ T8788]  _copy_from_user+0x1e/0xd0
[  337.588608][ T8788]  copy_msghdr_from_user+0x54/0x2a0
[  337.593838][ T8788]  __sys_sendmsg+0x17d/0x280
[  337.598465][ T8788]  __x64_sys_sendmsg+0x46/0x50
[  337.603298][ T8788]  x64_sys_call+0x2689/0x2d60
[  337.608069][ T8788]  do_syscall_64+0xc9/0x1c0
[  337.612637][ T8788]  ? clear_bhb_loop+0x55/0xb0
[  337.617495][ T8788]  ? clear_bhb_loop+0x55/0xb0
[  337.622198][ T8788]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.628118][ T8788] RIP: 0033:0x7fde165d9e79
[  337.632541][ T8788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  337.652166][ T8788] RSP: 002b:00007fde15257038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  337.660693][ T8788] RAX: ffffffffffffffda RBX: 00007fde16775f80 RCX: 00007fde165d9e79
[  337.668685][ T8788] RDX: 0000000000000000 RSI: 00000000200003c0 RDI: 0000000000000004
[  337.676680][ T8788] RBP: 00007fde15257090 R08: 0000000000000000 R09: 0000000000000000
[  337.684664][ T8788] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  337.692852][ T8788] R13: 0000000000000000 R14: 00007fde16775f80 R15: 00007ffdceee8868
[  337.700925][ T8788]  </TASK>
[  337.758050][ T8790] loop4: detected capacity change from 0 to 2048
[  337.778156][ T8790] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  337.794150][    C1] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  337.858885][   T29] kauditd_printk_skb: 99 callbacks suppressed
[  337.858902][   T29] audit: type=1326 audit(1723965724.960:1303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8789 comm="syz.4.1543" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fde165d9e79 code=0x0
[  338.166635][   T29] audit: type=1400 audit(1723965725.270:1304): avc:  denied  { listen } for  pid=8820 comm="syz.1.1551" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  338.192294][   T29] audit: type=1400 audit(1723965725.290:1305): avc:  denied  { getopt } for  pid=8820 comm="syz.1.1551" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  338.259903][   T29] audit: type=1400 audit(1723965725.360:1306): avc:  denied  { ioctl } for  pid=8820 comm="syz.1.1551" path="socket:[33877]" dev="sockfs" ino=33877 ioctlcmd=0x8905 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  338.308915][   T29] audit: type=1326 audit(1723965725.410:1307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8825 comm="syz.2.1553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f954c079e79 code=0x7ffc0000
[  338.355012][   T29] audit: type=1326 audit(1723965725.430:1308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8825 comm="syz.2.1553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f954c079e79 code=0x7ffc0000
[  338.378687][   T29] audit: type=1326 audit(1723965725.440:1309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8825 comm="syz.2.1553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f954c079e79 code=0x7ffc0000
[  338.402020][   T29] audit: type=1326 audit(1723965725.440:1310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8825 comm="syz.2.1553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f954c079e79 code=0x7ffc0000
[  338.425563][   T29] audit: type=1326 audit(1723965725.440:1311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8825 comm="syz.2.1553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f954c079e79 code=0x7ffc0000
[  338.450498][   T29] audit: type=1326 audit(1723965725.450:1312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8825 comm="syz.2.1553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=145 compat=0 ip=0x7f954c079e79 code=0x7ffc0000
[  338.718389][ T7936] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  338.761201][ T8857] Unknown options in mask 5
[  338.767118][ T8844] FAULT_INJECTION: forcing a failure.
[  338.767118][ T8844] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  338.780299][ T8844] CPU: 1 UID: 0 PID: 8844 Comm: syz.2.1556 Not tainted 6.11.0-rc3-syzkaller-00321-g810996a36309 #0
[  338.791018][ T8844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  338.801084][ T8844] Call Trace:
[  338.804372][ T8844]  <TASK>
[  338.807310][ T8844]  dump_stack_lvl+0xf2/0x150
[  338.811958][ T8844]  dump_stack+0x15/0x20
[  338.816162][ T8844]  should_fail_ex+0x229/0x230
[  338.820909][ T8844]  should_fail+0xb/0x10
[  338.825156][ T8844]  should_fail_usercopy+0x1a/0x20
[  338.830215][ T8844]  _copy_from_user+0x1e/0xd0
[  338.834894][ T8844]  input_event_from_user+0x126/0x1e0
[  338.840228][ T8844]  ? input_inject_event+0xe1/0x100
[  338.845358][ T8844]  evdev_write+0x288/0x420
[  338.849857][ T8844]  ? __pfx_evdev_write+0x10/0x10
[  338.854820][ T8844]  vfs_write+0x28b/0x900
[  338.859115][ T8844]  ? __fget_files+0x1da/0x210
[  338.863821][ T8844]  ksys_write+0xeb/0x1b0
[  338.868099][ T8844]  __x64_sys_write+0x42/0x50
[  338.872751][ T8844]  x64_sys_call+0x27dd/0x2d60
[  338.877455][ T8844]  do_syscall_64+0xc9/0x1c0
[  338.882017][ T8844]  ? clear_bhb_loop+0x55/0xb0
[  338.886735][ T8844]  ? clear_bhb_loop+0x55/0xb0
[  338.891466][ T8844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  338.897421][ T8844] RIP: 0033:0x7f954c079e79
[  338.901917][ T8844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  338.921619][ T8844] RSP: 002b:00007f954acf7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  338.930130][ T8844] RAX: ffffffffffffffda RBX: 00007f954c215f80 RCX: 00007f954c079e79
[  338.938122][ T8844] RDX: 0000000000001068 RSI: 0000000020000040 RDI: 0000000000000007
[  338.946203][ T8844] RBP: 00007f954acf7090 R08: 0000000000000000 R09: 0000000000000000
[  338.954193][ T8844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  338.962181][ T8844] R13: 0000000000000000 R14: 00007f954c215f80 R15: 00007fff9df71e18
[  338.970259][ T8844]  </TASK>
[  338.985301][ T8863] macvlan2: entered allmulticast mode
[  339.135748][ T8872] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  339.143091][ T8872] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[  339.418140][ T8882] __nla_validate_parse: 3 callbacks suppressed
[  339.418160][ T8882] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1570'.
[  339.623586][   T50] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  339.640055][ T8859] loop4: detected capacity change from 0 to 1024
[  339.674118][ T8859] EXT4-fs: Ignoring removed orlov option
[  339.680929][ T8859] EXT4-fs: Ignoring removed nomblk_io_submit option
[  339.724356][ T8859] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a84ec018, mo2=0002]
[  339.746285][ T8900] loop0: detected capacity change from 0 to 512
[  339.765444][ T8859] System zones: 0-1, 3-36
[  339.803352][ T8859] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  339.838312][ T8902] loop2: detected capacity change from 0 to 2048
[  339.878777][ T8917] IPv6: Can't replace route, no match found
[  339.907882][ T8902]  loop2: p1 < > p4
[  339.921892][ T8902] loop2: p4 size 8388608 extends beyond EOD, truncated
[  340.000028][ T8902] FAULT_INJECTION: forcing a failure.
[  340.000028][ T8902] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  340.013390][ T8902] CPU: 0 UID: 0 PID: 8902 Comm: syz.2.1576 Not tainted 6.11.0-rc3-syzkaller-00321-g810996a36309 #0
[  340.024277][ T8902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  340.034340][ T8902] Call Trace:
[  340.037675][ T8902]  <TASK>
[  340.040634][ T8902]  dump_stack_lvl+0xf2/0x150
[  340.045367][ T8902]  dump_stack+0x15/0x20
[  340.049546][ T8902]  should_fail_ex+0x229/0x230
[  340.054389][ T8902]  should_fail_alloc_page+0xfd/0x110
[  340.059705][ T8902]  __alloc_pages_noprof+0x109/0x360
[  340.065024][ T8902]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  340.070636][ T8902]  folio_alloc_mpol_noprof+0x36/0x70
[  340.075949][ T8902]  shmem_get_folio_gfp+0x3eb/0xd80
[  340.081114][ T8902]  shmem_write_begin+0xa0/0x1c0
[  340.085997][ T8902]  generic_perform_write+0x1b4/0x580
[  340.091454][ T8902]  shmem_file_write_iter+0xc8/0xf0
[  340.096603][ T8902]  vfs_write+0x78f/0x900
[  340.100944][ T8902]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  340.106822][ T8902]  ksys_write+0xeb/0x1b0
[  340.111132][ T8902]  __x64_sys_write+0x42/0x50
[  340.115919][ T8902]  x64_sys_call+0x27dd/0x2d60
[  340.120683][ T8902]  do_syscall_64+0xc9/0x1c0
[  340.125203][ T8902]  ? clear_bhb_loop+0x55/0xb0
[  340.129927][ T8902]  ? clear_bhb_loop+0x55/0xb0
[  340.134630][ T8902]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.140542][ T8902] RIP: 0033:0x7f954c07895f
[  340.145014][ T8902] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[  340.164640][ T8902] RSP: 002b:00007f954acf6df0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  340.173062][ T8902] RAX: ffffffffffffffda RBX: 0000000000010000 RCX: 00007f954c07895f
[  340.181114][ T8902] RDX: 0000000000010000 RSI: 00007f95428d7000 RDI: 0000000000000005
[  340.189143][ T8902] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000001e3
[  340.197249][ T8902] R10: 00000000000001d0 R11: 0000000000000293 R12: 0000000000000005
[  340.205246][ T8902] R13: 00007f954acf6ef0 R14: 00007f954acf6eb0 R15: 00007f95428d7000
[  340.213241][ T8902]  </TASK>
[  340.248137][ T8895] chnl_net:caif_netlink_parms(): no params data found
[  340.323504][ T8926] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1580'.
[  340.445982][ T8927] loop0: detected capacity change from 0 to 1024
[  340.488458][ T8895] bridge0: port 1(bridge_slave_0) entered blocking state
[  340.495627][ T8895] bridge0: port 1(bridge_slave_0) entered disabled state
[  340.504972][ T8895] bridge_slave_0: entered allmulticast mode
[  340.511739][ T8895] bridge_slave_0: entered promiscuous mode
[  340.521183][ T8895] bridge0: port 2(bridge_slave_1) entered blocking state
[  340.528423][ T8895] bridge0: port 2(bridge_slave_1) entered disabled state
[  340.562613][ T8895] bridge_slave_1: entered allmulticast mode
[  340.569389][ T8895] bridge_slave_1: entered promiscuous mode
[  340.588914][ T8895] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  340.607180][ T8895] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  340.671007][ T8895] team0: Port device team_slave_0 added
[  340.683308][ T8895] team0: Port device team_slave_1 added
[  340.717304][ T8895] batman_adv: batadv0: Adding interface: batadv_slave_0
[  340.724319][ T8895] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  340.750388][ T8895] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  340.762223][ T8895] batman_adv: batadv0: Adding interface: batadv_slave_1
[  340.769206][ T8895] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  340.795166][ T8895] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  340.855625][   T50] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  340.888872][ T8895] hsr_slave_0: entered promiscuous mode
[  340.896959][ T8895] hsr_slave_1: entered promiscuous mode
[  340.902993][ T8895] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  340.917229][ T8895] Cannot create hsr debugfs directory
[  340.956750][   T50] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  341.019044][   T50] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  341.108443][ T8944] loop0: detected capacity change from 0 to 256
[  341.166275][ T8944] FAT-fs (loop0): Directory bread(block 64) failed
[  341.181108][ T8944] FAT-fs (loop0): Directory bread(block 65) failed
[  341.186139][ T8946] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1588'.
[  341.201449][ T8944] FAT-fs (loop0): Directory bread(block 66) failed
[  341.208200][ T8946] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1588'.
[  341.217193][ T8946] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1588'.
[  341.226304][ T8944] FAT-fs (loop0): Directory bread(block 67) failed
[  341.232925][ T8944] FAT-fs (loop0): Directory bread(block 68) failed
[  341.233204][   T50] bridge_slave_1: left allmulticast mode
[  341.239549][ T8944] FAT-fs (loop0): Directory bread(block 69) failed
[  341.245137][   T50] bridge_slave_1: left promiscuous mode
[  341.251653][ T8944] FAT-fs (loop0): Directory bread(block 70) failed
[  341.257332][   T50] bridge0: port 2(bridge_slave_1) entered disabled state
[  341.263747][ T8944] FAT-fs (loop0): Directory bread(block 71) failed
[  341.291603][ T8944] FAT-fs (loop0): Directory bread(block 72) failed
[  341.300127][   T50] bridge_slave_0: left allmulticast mode
[  341.301614][ T8944] FAT-fs (loop0): Directory bread(block 73) failed
[  341.305823][   T50] bridge_slave_0: left promiscuous mode
[  341.318152][   T50] bridge0: port 1(bridge_slave_0) entered disabled state
[  341.458526][   T50] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  341.471511][   T50] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  341.482696][   T50] bond0 (unregistering): Released all slaves
[  341.501566][ T8944] FAULT_INJECTION: forcing a failure.
[  341.501566][ T8944] name failslab, interval 1, probability 0, space 0, times 0
[  341.514337][ T8944] CPU: 1 UID: 0 PID: 8944 Comm: syz.0.1587 Not tainted 6.11.0-rc3-syzkaller-00321-g810996a36309 #0
[  341.525061][ T8944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  341.535136][ T8944] Call Trace:
[  341.538476][ T8944]  <TASK>
[  341.541431][ T8944]  dump_stack_lvl+0xf2/0x150
[  341.546097][ T8944]  dump_stack+0x15/0x20
[  341.550281][ T8944]  should_fail_ex+0x229/0x230
[  341.554995][ T8944]  ? fib6_info_alloc+0x2c/0x90
[  341.559787][ T8944]  should_failslab+0x8f/0xb0
[  341.564487][ T8944]  __kmalloc_noprof+0xa5/0x370
[  341.569293][ T8944]  fib6_info_alloc+0x2c/0x90
[  341.573989][ T8944]  ip6_route_info_create+0x34c/0xba0
[  341.579360][ T8944]  inet6_rtm_newroute+0x3c1/0x11c0
[  341.584584][ T8944]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  341.590152][ T8944]  rtnetlink_rcv_msg+0x6aa/0x710
[  341.595122][ T8944]  ? ref_tracker_free+0x3a5/0x410
[  341.600175][ T8944]  ? __dev_queue_xmit+0x161/0x1fe0
[  341.605400][ T8944]  netlink_rcv_skb+0x12c/0x230
[  341.610190][ T8944]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  341.615700][ T8944]  rtnetlink_rcv+0x1c/0x30
[  341.620212][ T8944]  netlink_unicast+0x599/0x670
[  341.625032][ T8944]  netlink_sendmsg+0x5cc/0x6e0
[  341.629875][ T8944]  ? __pfx_netlink_sendmsg+0x10/0x10
[  341.635234][ T8944]  __sock_sendmsg+0x140/0x180
[  341.639963][ T8944]  ____sys_sendmsg+0x312/0x410
[  341.644813][ T8944]  __sys_sendmsg+0x1e9/0x280
[  341.649535][ T8944]  __x64_sys_sendmsg+0x46/0x50
[  341.654327][ T8944]  x64_sys_call+0x2689/0x2d60
[  341.659025][ T8944]  do_syscall_64+0xc9/0x1c0
[  341.663635][ T8944]  ? clear_bhb_loop+0x55/0xb0
[  341.668340][ T8944]  ? clear_bhb_loop+0x55/0xb0
[  341.673141][ T8944]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  341.679082][ T8944] RIP: 0033:0x7f09548d9e79
[  341.683597][ T8944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  341.703340][ T8944] RSP: 002b:00007f0953557038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  341.711771][ T8944] RAX: ffffffffffffffda RBX: 00007f0954a75f80 RCX: 00007f09548d9e79
[  341.719766][ T8944] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000008
[  341.727808][ T8944] RBP: 00007f0953557090 R08: 0000000000000000 R09: 0000000000000000
[  341.735819][ T8944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  341.743894][ T8944] R13: 0000000000000000 R14: 00007f0954a75f80 R15: 00007ffc461a14f8
[  341.752015][ T8944]  </TASK>
[  341.755413][ T8952] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1589'.
[  341.818379][ T7936] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  341.848406][   T50] hsr_slave_0: left promiscuous mode
[  341.856784][   T50] hsr_slave_1: left promiscuous mode
[  341.858998][ T8967] loop4: detected capacity change from 0 to 128
[  341.869445][ T8967] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  341.883399][   T50] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  341.883465][ T8967] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  341.900198][   T50] batman_adv: batadv0: Removing interface: batadv_slave_0
[  341.909247][   T50] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  341.916735][   T50] batman_adv: batadv0: Removing interface: batadv_slave_1
[  341.938201][   T50] veth1_macvtap: left promiscuous mode
[  341.943704][   T50] veth0_macvtap: left promiscuous mode
[  341.949308][   T50] veth1_vlan: left promiscuous mode
[  341.954639][   T50] veth0_vlan: left promiscuous mode
[  341.963938][ T8970] loop4: detected capacity change from 0 to 2048
[  341.964071][ T8971] loop0: detected capacity change from 0 to 128
[  342.134054][ T8974] netlink: 'syz.4.1596': attribute type 3 has an invalid length.
[  342.142006][ T8974] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1596'.
[  342.171369][   T50] team0 (unregistering): Port device team_slave_1 removed
[  342.183745][   T50] team0 (unregistering): Port device team_slave_0 removed
[  342.235926][ T8964] netem: change failed
[  342.240129][ T8968] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1594'.
[  342.320149][ T8991] loop4: detected capacity change from 0 to 512
[  342.336750][ T8895] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  342.343455][ T8991] EXT4-fs: test_dummy_encryption option not supported
[  342.354551][ T8895] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  342.377170][ T8991] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1602'.
[  342.387206][ T8997] loop0: detected capacity change from 0 to 2048
[  342.394344][ T8895] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  342.398687][ T8895] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  342.473476][ T9006] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1610'.
[  342.562289][ T9016] loop2: detected capacity change from 0 to 512
[  342.562609][ T8895] 8021q: adding VLAN 0 to HW filter on device bond0
[  342.578544][ T9016] EXT4-fs: mb_optimize_scan should be set to 0 or 1.
[  342.594140][ T9021] loop4: detected capacity change from 0 to 128
[  342.616159][ T8895] 8021q: adding VLAN 0 to HW filter on device team0
[  342.652616][ T3278] bridge0: port 1(bridge_slave_0) entered blocking state
[  342.659808][ T3278] bridge0: port 1(bridge_slave_0) entered forwarding state
[  342.670243][ T3278] bridge0: port 2(bridge_slave_1) entered blocking state
[  342.677361][ T3278] bridge0: port 2(bridge_slave_1) entered forwarding state
[  342.711263][ T9033] loop4: detected capacity change from 0 to 2048
[  342.721016][ T8895] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  342.731554][ T8895] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  342.753978][ T9035] Cannot find set identified by id 0 to match
[  342.761425][ T9037] loop2: detected capacity change from 0 to 512
[  342.797692][ T9039] syzkaller0: entered promiscuous mode
[  342.811294][ T9039] syzkaller0 (unregistering): left promiscuous mode
[  342.837129][ T9037] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  342.871125][ T9037] ext4 filesystem being mounted at /76/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  342.890637][   T29] kauditd_printk_skb: 24 callbacks suppressed
[  342.890730][   T29] audit: type=1400 audit(1723965729.990:1337): avc:  denied  { map } for  pid=9054 comm="syz.4.1625" path="socket:[34620]" dev="sockfs" ino=34620 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  342.921281][ T8895] 8021q: adding VLAN 0 to HW filter on device batadv0
[  342.938609][ T9049] bridge0: port 3(gretap0) entered blocking state
[  342.945174][ T9049] bridge0: port 3(gretap0) entered disabled state
[  342.961663][ T9049] gretap0: entered allmulticast mode
[  342.977442][ T9049] gretap0: entered promiscuous mode
[  342.982930][ T9049] bridge0: port 3(gretap0) entered blocking state
[  342.989417][ T9049] bridge0: port 3(gretap0) entered forwarding state
[  343.002208][   T29] audit: type=1400 audit(1723965730.100:1338): avc:  denied  { ioctl } for  pid=9072 comm="syz.0.1630" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=33587 ioctlcmd=0x662b scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  343.034019][ T7933] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  343.087207][ T8895] veth0_vlan: entered promiscuous mode
[  343.102475][ T8895] veth1_vlan: entered promiscuous mode
[  343.119619][ T8895] veth0_macvtap: entered promiscuous mode
[  343.132841][ T8895] veth1_macvtap: entered promiscuous mode
[  343.144398][ T8895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  343.154957][ T8895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.164911][ T8895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  343.175391][ T8895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.185332][ T8895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  343.195819][ T8895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.205810][ T8895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  343.216260][ T8895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.226178][ T8895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  343.236752][ T8895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.246639][ T8895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  343.257072][ T8895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.266921][ T8895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  343.277412][ T8895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.294760][ T8895] batman_adv: batadv0: Interface activated: batadv_slave_0
[  343.310370][ T9088] loop2: detected capacity change from 0 to 2048
[  343.317799][ T8895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  343.328304][ T8895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.338321][ T8895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  343.349092][ T8895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.359136][ T8895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  343.369596][ T8895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.379447][ T8895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  343.389894][ T8895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.399771][ T8895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  343.410262][ T8895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.420290][ T8895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  343.430939][ T8895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.440775][ T8895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  343.451278][ T8895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.463915][ T8895] batman_adv: batadv0: Interface activated: batadv_slave_1
[  343.489812][ T8895] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  343.498580][ T8895] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  343.507443][ T8895] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  343.516209][ T8895] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  343.640422][ T9101] loop4: detected capacity change from 0 to 1024
[  343.891521][ T9126] team0: entered promiscuous mode
[  343.896649][ T9126] team_slave_0: entered promiscuous mode
[  343.902396][ T9126] team_slave_1: entered promiscuous mode
[  343.909424][ T9124] team0: left promiscuous mode
[  343.914414][ T9124] team_slave_0: left promiscuous mode
[  343.920126][ T9124] team_slave_1: left promiscuous mode
[  343.931161][ T9134] FAULT_INJECTION: forcing a failure.
[  343.931161][ T9134] name failslab, interval 1, probability 0, space 0, times 0
[  343.943872][ T9134] CPU: 0 UID: 0 PID: 9134 Comm: syz.0.1650 Not tainted 6.11.0-rc3-syzkaller-00321-g810996a36309 #0
[  343.954610][ T9134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  343.964691][ T9134] Call Trace:
[  343.967975][ T9134]  <TASK>
[  343.970913][ T9134]  dump_stack_lvl+0xf2/0x150
[  343.975567][ T9134]  dump_stack+0x15/0x20
[  343.979758][ T9134]  should_fail_ex+0x229/0x230
[  343.981190][ T9131] loop2: detected capacity change from 0 to 1024
[  343.984505][ T9134]  ? __alloc_skb+0x10b/0x310
[  343.991209][ T9131] EXT4-fs: Ignoring removed orlov option
[  343.995396][ T9134]  should_failslab+0x8f/0xb0
[  343.995434][ T9134]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  343.995463][ T9134]  __alloc_skb+0x10b/0x310
[  343.995502][ T9134]  netlink_alloc_large_skb+0xad/0xe0
[  343.995524][ T9134]  netlink_sendmsg+0x3b4/0x6e0
[  343.995553][ T9134]  ? __pfx_netlink_sendmsg+0x10/0x10
[  344.031309][ T9134]  __sock_sendmsg+0x140/0x180
[  344.036016][ T9134]  ____sys_sendmsg+0x312/0x410
[  344.040814][ T9134]  __sys_sendmsg+0x1e9/0x280
[  344.045660][ T9134]  __x64_sys_sendmsg+0x46/0x50
[  344.050465][ T9134]  x64_sys_call+0x2689/0x2d60
[  344.055197][ T9134]  do_syscall_64+0xc9/0x1c0
[  344.059906][ T9134]  ? clear_bhb_loop+0x55/0xb0
[  344.064646][ T9134]  ? clear_bhb_loop+0x55/0xb0
[  344.069433][ T9134]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  344.075359][ T9134] RIP: 0033:0x7f09548d9e79
[  344.079787][ T9134] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  344.099436][ T9134] RSP: 002b:00007f0953557038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  344.107859][ T9134] RAX: ffffffffffffffda RBX: 00007f0954a75f80 RCX: 00007f09548d9e79
[  344.115846][ T9134] RDX: 0000000000000000 RSI: 00000000200003c0 RDI: 0000000000000004
[  344.123821][ T9134] RBP: 00007f0953557090 R08: 0000000000000000 R09: 0000000000000000
[  344.131861][ T9134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  344.139830][ T9134] R13: 0000000000000000 R14: 00007f0954a75f80 R15: 00007ffc461a14f8
[  344.147894][ T9134]  </TASK>
[  344.164273][ T9138] loop4: detected capacity change from 0 to 1024
[  344.167764][ T9131] EXT4-fs warning (device loop2): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop2.
[  344.176363][ T9138] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  344.231483][ T9146] loop0: detected capacity change from 0 to 512
[  344.256579][ T7936] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  344.306013][ T9153] loop3: detected capacity change from 0 to 512
[  344.322032][ T9155] SELinux:  Context system_u: is not valid (left unmapped).
[  344.322081][   T29] audit: type=1400 audit(1723965731.420:1339): avc:  denied  { relabelfrom } for  pid=9154 comm="syz.4.1655" name="" dev="pipefs" ino=34768 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  344.352088][   T29] audit: type=1400 audit(1723965731.460:1340): avc:  denied  { relabelto } for  pid=9154 comm="syz.4.1655" name="" dev="pipefs" ino=34768 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=fifo_file permissive=1 trawcon="system_u:"
[  344.394644][ T9153] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  344.414813][ T9153] ext4 filesystem being mounted at /3/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  344.434455][ T8895] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  344.466365][   T29] audit: type=1400 audit(1723965731.570:1341): avc:  denied  { bind } for  pid=9162 comm="syz.4.1658" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  344.485676][   T29] audit: type=1400 audit(1723965731.570:1342): avc:  denied  { listen } for  pid=9162 comm="syz.4.1658" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  344.505159][   T29] audit: type=1400 audit(1723965731.570:1343): avc:  denied  { accept } for  pid=9162 comm="syz.4.1658" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  344.564306][   T29] audit: type=1400 audit(1723965731.590:1344): avc:  denied  { read } for  pid=9165 comm="syz.1.1660" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  344.568531][ T9177] loop2: detected capacity change from 0 to 256
[  344.588843][   T29] audit: type=1400 audit(1723965731.590:1345): avc:  denied  { open } for  pid=9165 comm="syz.1.1660" path="/dev/loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  344.597719][ T9177] vfat: Deprecated parameter 'posix'
[  344.619948][   T29] audit: type=1326 audit(1723965731.630:1346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9165 comm="syz.1.1660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1a9b09e79 code=0x7ffc0000
[  344.649177][ T9177] FAT-fs: "posix" option is obsolete, not supported now
[  344.770993][ T9181] syz_tun: entered promiscuous mode
[  344.826138][ T9186] __nla_validate_parse: 10 callbacks suppressed
[  344.826155][ T9186] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1662'.
[  344.960763][ T9187] loop4: detected capacity change from 0 to 1024
[  344.968237][ T9188] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1667'.
[  345.057331][ T9193] xt_NFQUEUE: number of total queues is 0
[  345.108034][ T9198] Unknown options in mask 5
[  345.176637][ T9213] netlink: 'syz.3.1670': attribute type 2 has an invalid length.
[  345.425735][ T9226] netlink: 388 bytes leftover after parsing attributes in process `syz.2.1674'.
[  345.536452][ T9237] loop0: detected capacity change from 0 to 2048
[  345.731442][ T9253] loop2: detected capacity change from 0 to 128
[  345.748186][ T9253] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  345.765732][ T9253] ext4 filesystem being mounted at /87/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  346.249795][ T9282] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1689'.
[  346.262202][ T9279] FAULT_INJECTION: forcing a failure.
[  346.262202][ T9279] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  346.275389][ T9279] CPU: 1 UID: 0 PID: 9279 Comm: syz.1.1686 Not tainted 6.11.0-rc3-syzkaller-00321-g810996a36309 #0
[  346.286118][ T9279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  346.289511][ T9282] team_slave_0: entered promiscuous mode
[  346.296207][ T9279] Call Trace:
[  346.296217][ T9279]  <TASK>
[  346.296226][ T9279]  dump_stack_lvl+0xf2/0x150
[  346.301900][ T9282] team_slave_1: entered promiscuous mode
[  346.305150][ T9279]  dump_stack+0x15/0x20
[  346.322720][ T9279]  should_fail_ex+0x229/0x230
[  346.327440][ T9279]  should_fail+0xb/0x10
[  346.331705][ T9279]  should_fail_usercopy+0x1a/0x20
[  346.336781][ T9279]  _copy_from_user+0x1e/0xd0
[  346.341247][ T9282] macvtap1: entered promiscuous mode
[  346.341437][ T9279]  input_event_from_user+0x126/0x1e0
[  346.346801][ T9282] team0: entered promiscuous mode
[  346.351992][ T9279]  ? input_inject_event+0xe1/0x100
[  346.352026][ T9279]  evdev_write+0x288/0x420
[  346.357287][ T9282] macvtap1: entered allmulticast mode
[  346.362130][ T9279]  ? __pfx_evdev_write+0x10/0x10
[  346.366578][ T9282] team0: entered allmulticast mode
[  346.371893][ T9279]  vfs_write+0x28b/0x900
[  346.376864][ T9282] team_slave_0: entered allmulticast mode
[  346.381914][ T9279]  ? __fget_files+0x1da/0x210
[  346.386172][ T9282] team_slave_1: entered allmulticast mode
[  346.391851][ T9279]  ksys_write+0xeb/0x1b0
[  346.406975][ T9279]  __x64_sys_write+0x42/0x50
[  346.411618][ T9279]  x64_sys_call+0x27dd/0x2d60
[  346.416425][ T9279]  do_syscall_64+0xc9/0x1c0
[  346.421112][ T9279]  ? clear_bhb_loop+0x55/0xb0
[  346.423019][ T9282] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  346.425833][ T9279]  ? clear_bhb_loop+0x55/0xb0
[  346.437452][ T9279]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.443392][ T9279] RIP: 0033:0x7fa1a9b09e79
[  346.447946][ T9279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  346.467627][ T9279] RSP: 002b:00007fa1a8766038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  346.476309][ T9279] RAX: ffffffffffffffda RBX: 00007fa1a9ca6058 RCX: 00007fa1a9b09e79
[  346.484289][ T9279] RDX: 0000000000001068 RSI: 0000000020000040 RDI: 0000000000000007
[  346.492282][ T9279] RBP: 00007fa1a8766090 R08: 0000000000000000 R09: 0000000000000000
[  346.500468][ T9279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  346.508452][ T9279] R13: 0000000000000000 R14: 00007fa1a9ca6058 R15: 00007ffe9636a148
[  346.516591][ T9279]  </TASK>
[  346.528836][ T9280] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1688'.
[  346.579151][ T7933] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  346.636259][ T9294] IPv6: Can't replace route, no match found
[  346.702377][ T9296] loop3: detected capacity change from 0 to 2048
[  346.728540][ T9298] loop2: detected capacity change from 0 to 2048
[  346.843057][ T9298]  loop2: p1 < > p4
[  346.854735][ T9298] loop2: p4 size 8388608 extends beyond EOD, truncated
[  346.883783][ T9298] FAULT_INJECTION: forcing a failure.
[  346.883783][ T9298] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  346.897043][ T9298] CPU: 1 UID: 0 PID: 9298 Comm: syz.2.1694 Not tainted 6.11.0-rc3-syzkaller-00321-g810996a36309 #0
[  346.907769][ T9298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  346.917914][ T9298] Call Trace:
[  346.921212][ T9298]  <TASK>
[  346.924178][ T9298]  dump_stack_lvl+0xf2/0x150
[  346.928803][ T9298]  dump_stack+0x15/0x20
[  346.932985][ T9298]  should_fail_ex+0x229/0x230
[  346.937792][ T9298]  should_fail+0xb/0x10
[  346.942031][ T9298]  should_fail_usercopy+0x1a/0x20
[  346.947126][ T9298]  copy_page_from_iter_atomic+0x22a/0xda0
[  346.952870][ T9298]  ? shmem_write_begin+0xa0/0x1c0
[  346.957961][ T9298]  ? shmem_write_begin+0x10c/0x1c0
[  346.963102][ T9298]  generic_perform_write+0x323/0x580
[  346.968473][ T9298]  shmem_file_write_iter+0xc8/0xf0
[  346.973660][ T9298]  vfs_write+0x78f/0x900
[  346.977942][ T9298]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  346.983774][ T9298]  ksys_write+0xeb/0x1b0
[  346.988029][ T9298]  __x64_sys_write+0x42/0x50
[  346.992684][ T9298]  x64_sys_call+0x27dd/0x2d60
[  346.997405][ T9298]  do_syscall_64+0xc9/0x1c0
[  347.001985][ T9298]  ? clear_bhb_loop+0x55/0xb0
[  347.006704][ T9298]  ? clear_bhb_loop+0x55/0xb0
[  347.011486][ T9298]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  347.017427][ T9298] RIP: 0033:0x7f954c07895f
[  347.021843][ T9298] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[  347.041471][ T9298] RSP: 002b:00007f954acf6df0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  347.050062][ T9298] RAX: ffffffffffffffda RBX: 0000000000010000 RCX: 00007f954c07895f
[  347.058098][ T9298] RDX: 0000000000010000 RSI: 00007f95428d7000 RDI: 0000000000000005
[  347.066086][ T9298] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000001e3
[  347.074124][ T9298] R10: 00000000000001d0 R11: 0000000000000293 R12: 0000000000000005
[  347.082155][ T9298] R13: 00007f954acf6ef0 R14: 00007f954acf6eb0 R15: 00007f95428d7000
[  347.090224][ T9298]  </TASK>
[  347.133400][ T9300] loop0: detected capacity change from 0 to 2048
[  347.165358][    C0] ip6_tunnel: ip6gretap0: Local routing loop detected!
[  347.221807][ T9300] EXT4-fs (loop0): failed to open journal device unknown-block(0,0) -6
[  347.238974][ T9311] 9pnet_fd: Insufficient options for proto=fd
[  347.270854][ T9311] loop2: detected capacity change from 0 to 512
[  347.280264][ T9316] 9pnet: p9_errstr2errno: server reported unknown error �����S�1�Q�W�{���t;��_}��
�
[  347.307409][ T9311] EXT4-fs error (device loop2): ext4_orphan_get:1391: inode #15: comm syz.2.1698: casefold flag without casefold feature
[  347.320747][ T9324] SELinux:  Context system_u:object_r:net_conf_t:s0 is not valid (left unmapped).
[  347.331202][ T9311] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.1698: couldn't read orphan inode 15 (err -117)
[  347.352181][ T9311] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  347.359065][ T9328] loop3: detected capacity change from 0 to 1024
[  347.379532][ T9328] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  347.407164][ T9328] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  347.416971][ T9330] FAULT_INJECTION: forcing a failure.
[  347.416971][ T9330] name failslab, interval 1, probability 0, space 0, times 0
[  347.429778][ T9330] CPU: 1 UID: 0 PID: 9330 Comm: syz.1.1703 Not tainted 6.11.0-rc3-syzkaller-00321-g810996a36309 #0
[  347.440541][ T9330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  347.450691][ T9330] Call Trace:
[  347.453970][ T9330]  <TASK>
[  347.456925][ T9330]  dump_stack_lvl+0xf2/0x150
[  347.461633][ T9330]  dump_stack+0x15/0x20
[  347.465800][ T9330]  should_fail_ex+0x229/0x230
[  347.470510][ T9330]  ? inet6_rtm_newroute+0x646/0x11c0
[  347.475845][ T9330]  should_failslab+0x8f/0xb0
[  347.480546][ T9330]  __kmalloc_cache_noprof+0x4b/0x2a0
[  347.485839][ T9330]  inet6_rtm_newroute+0x646/0x11c0
[  347.490992][ T9330]  ? cgroup_rstat_updated+0x99/0x550
[  347.496279][ T9330]  ? __mod_memcg_lruvec_state+0x124/0x210
[  347.502059][ T9330]  ? __memcg_slab_free_hook+0xc9/0x1e0
[  347.507534][ T9330]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  347.513090][ T9330]  rtnetlink_rcv_msg+0x6aa/0x710
[  347.518043][ T9330]  ? ref_tracker_free+0x3a5/0x410
[  347.523147][ T9330]  ? __dev_queue_xmit+0x161/0x1fe0
[  347.528280][ T9330]  netlink_rcv_skb+0x12c/0x230
[  347.533109][ T9330]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  347.538703][ T9330]  rtnetlink_rcv+0x1c/0x30
[  347.543180][ T9330]  netlink_unicast+0x599/0x670
[  347.548041][ T9330]  netlink_sendmsg+0x5cc/0x6e0
[  347.552886][ T9330]  ? __pfx_netlink_sendmsg+0x10/0x10
[  347.558292][ T9330]  __sock_sendmsg+0x140/0x180
[  347.563051][ T9330]  ____sys_sendmsg+0x312/0x410
[  347.567860][ T9330]  __sys_sendmsg+0x1e9/0x280
[  347.572529][ T9330]  __x64_sys_sendmsg+0x46/0x50
[  347.577344][ T9330]  x64_sys_call+0x2689/0x2d60
[  347.582030][ T9330]  do_syscall_64+0xc9/0x1c0
[  347.586561][ T9330]  ? clear_bhb_loop+0x55/0xb0
[  347.591246][ T9330]  ? clear_bhb_loop+0x55/0xb0
[  347.595946][ T9330]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  347.601934][ T9330] RIP: 0033:0x7fa1a9b09e79
[  347.606412][ T9330] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  347.626059][ T9330] RSP: 002b:00007fa1a8787038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  347.634552][ T9330] RAX: ffffffffffffffda RBX: 00007fa1a9ca5f80 RCX: 00007fa1a9b09e79
[  347.642526][ T9330] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000007
[  347.650503][ T9330] RBP: 00007fa1a8787090 R08: 0000000000000000 R09: 0000000000000000
[  347.658551][ T9330] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  347.666666][ T9330] R13: 0000000000000000 R14: 00007fa1a9ca5f80 R15: 00007ffe9636a148
[  347.674706][ T9330]  </TASK>
[  347.695638][ T9328] EXT4-fs (loop3): orphan cleanup on readonly fs
[  347.719021][ T9328] EXT4-fs error (device loop3): ext4_free_blocks:6590: comm syz.3.1702: Freeing blocks not in datazone - block = 0, count = 4096
[  347.732572][ T9336] loop4: detected capacity change from 0 to 2048
[  347.764196][ T9328] EXT4-fs (loop3): 1 orphan inode deleted
[  347.772435][ T9328] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  347.805987][    C0] ip6_tunnel: ip6gretap0: Local routing loop detected!
[  347.840858][ T9344] netem: change failed
[  347.855993][ T7933] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  347.897041][ T9346] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1711'.
[  347.900463][ T9328] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 16: comm syz.3.1702: path /13/file1: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  347.946326][ T9328] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 17: comm syz.3.1702: path /13/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  347.990038][ T9328] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 18: comm syz.3.1702: path /13/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  348.030424][ T9348] loop2: detected capacity change from 0 to 8192
[  348.048174][ T9328] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 19: comm syz.3.1702: path /13/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  348.085496][ T9328] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 20: comm syz.3.1702: path /13/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  348.107409][ T9328] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 21: comm syz.3.1702: path /13/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  348.118075][ T9367] netlink: 376 bytes leftover after parsing attributes in process `syz.4.1717'.
[  348.145065][ T9328] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 22: comm syz.3.1702: path /13/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  348.171394][ T9328] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 23: comm syz.3.1702: path /13/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  348.192807][ T9369] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1718'.
[  348.201913][ T9369] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1718'.
[  348.241796][ T8895] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  348.256920][ T9372] loop4: detected capacity change from 0 to 256
[  348.269668][ T9372] FAT-fs (loop4): Directory bread(block 64) failed
[  348.278342][ T9372] FAT-fs (loop4): Directory bread(block 65) failed
[  348.288449][ T9372] FAT-fs (loop4): Directory bread(block 66) failed
[  348.304998][ T9372] FAT-fs (loop4): Directory bread(block 67) failed
[  348.319587][ T9372] FAT-fs (loop4): Directory bread(block 68) failed
[  348.326275][ T9372] FAT-fs (loop4): Directory bread(block 69) failed
[  348.332853][ T9372] FAT-fs (loop4): Directory bread(block 70) failed
[  348.339773][ T9372] FAT-fs (loop4): Directory bread(block 71) failed
[  348.346421][ T9372] FAT-fs (loop4): Directory bread(block 72) failed
[  348.364954][ T9372] FAT-fs (loop4): Directory bread(block 73) failed
[  348.454021][   T29] kauditd_printk_skb: 50 callbacks suppressed
[  348.454076][   T29] audit: type=1400 audit(1723965735.550:1397): avc:  denied  { write } for  pid=3406 comm="kworker/0:6" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=36186 scontext=system_u:system_r:kernel_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  348.522404][ T9387] loop3: detected capacity change from 0 to 512
[  348.536172][ T9387] EXT4-fs (loop3): inodes count not valid: 23 vs 32
[  348.549304][ T9383] loop4: detected capacity change from 0 to 2048
[  348.783982][ T9398] loop2: detected capacity change from 0 to 128
[  348.812574][   T29] audit: type=1400 audit(1723965735.910:1398): avc:  denied  { read } for  pid=9399 comm="syz.3.1730" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  348.845043][    C0] ip6_tunnel: ip6gretap0: Local routing loop detected!
[  348.891854][   T29] audit: type=1400 audit(1723965735.910:1399): avc:  denied  { open } for  pid=9399 comm="syz.3.1730" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  348.960541][ T9405] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1734'.
[  348.995122][ T9409] loop4: detected capacity change from 0 to 512
[  349.014032][ T9409] EXT4-fs: mb_optimize_scan should be set to 0 or 1.
[  349.033117][ T9411] loop3: detected capacity change from 0 to 512
[  349.057417][ T9411] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  349.067843][ T9413] Cannot find set identified by id 0 to match
[  349.119371][ T9411] EXT4-fs (loop3): 1 truncate cleaned up
[  349.157454][ T9411] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  349.336854][ T9425] loop4: detected capacity change from 0 to 2048
[  349.479690][ T9429] loop2: detected capacity change from 0 to 1024
[  349.567390][ T8895] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  349.772572][ T9435] bridge0: port 3(veth5) entered blocking state
[  349.779000][ T9435] bridge0: port 3(veth5) entered disabled state
[  349.807086][ T9435] veth5: entered allmulticast mode
[  349.813306][ T9435] veth5: entered promiscuous mode
[  349.840457][ T9438] loop3: detected capacity change from 0 to 512
[  349.861553][ T9438] ext4: Unknown parameter 'smackfshat'
[  349.871602][ T9437] syzkaller0: entered promiscuous mode
[  349.880130][ T9437] syzkaller0 (unregistering): left promiscuous mode
[  349.886962][    C0] ip6_tunnel: ip6gretap0: Local routing loop detected!
[  349.904082][   T29] audit: type=1400 audit(1723965737.000:1400): avc:  denied  { append } for  pid=9434 comm="syz.3.1744" name="event2" dev="devtmpfs" ino=224 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  349.961592][ T9448] netlink: 'syz.3.1748': attribute type 2 has an invalid length.
[  349.969464][ T9448] netlink: 'syz.3.1748': attribute type 1 has an invalid length.
[  350.049687][ T9451] loop2: detected capacity change from 0 to 512
[  350.074710][ T9456] __nla_validate_parse: 3 callbacks suppressed
[  350.074730][ T9456] netlink: 272 bytes leftover after parsing attributes in process `syz.4.1751'.
[  350.106610][ T9451] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  350.150069][ T9451] ext4 filesystem being mounted at /97/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  350.189759][ T9466] loop4: detected capacity change from 0 to 1024
[  350.225173][ T9466] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  350.251072][ T9468] loop3: detected capacity change from 0 to 2048
[  350.272178][ T7933] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  350.284035][ T9466] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  350.322064][ T9466] EXT4-fs (loop4): orphan cleanup on readonly fs
[  350.337396][ T9473] SELinux:  Context �g is not valid (left unmapped).
[  350.362488][ T9466] EXT4-fs error (device loop4): ext4_free_blocks:6590: comm syz.4.1753: Freeing blocks not in datazone - block = 0, count = 4096
[  350.400683][ T9466] EXT4-fs (loop4): 1 orphan inode deleted
[  350.410877][ T9466] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  350.503931][ T9478] loop2: detected capacity change from 0 to 2048
[  350.516827][ T9466] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 16: comm syz.4.1753: path /87/file1: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  350.540230][ T9466] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 17: comm syz.4.1753: path /87/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  350.578677][ T9478] Alternate GPT is invalid, using primary GPT.
[  350.585070][ T9478]  loop2: p1 p2 p3
[  350.595130][ T9466] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 18: comm syz.4.1753: path /87/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  350.636284][ T9466] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 19: comm syz.4.1753: path /87/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  350.689588][ T9466] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 20: comm syz.4.1753: path /87/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  350.823252][ T9498] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1760'.
[  350.947942][ T9499] loop0: detected capacity change from 0 to 1024
[  351.080546][ T9466] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 21: comm syz.4.1753: path /87/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  351.408242][ T7936] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  351.548359][ T9511] loop4: detected capacity change from 0 to 512
[  351.725427][ T9510] loop0: detected capacity change from 0 to 2048
[  351.786396][ T9519] loop3: detected capacity change from 0 to 512
[  351.793137][ T9511] EXT4-fs warning (device loop4): ext4_block_to_path:107: block 3279945729 > max in inode 13
[  351.833458][ T9511] EXT4-fs warning (device loop4): ext4_block_to_path:107: block 3279945730 > max in inode 13
[  351.882317][ T9519] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  351.913423][ T9511] EXT4-fs (loop4): 1 truncate cleaned up
[  351.943357][ T9511] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  351.971334][ T9519] ext4 filesystem being mounted at /35/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  352.063387][ T8895] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  352.108492][ T7936] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  352.671029][ T9543] syzkaller0: entered promiscuous mode
[  352.716572][ T9543] syzkaller0 (unregistering): left promiscuous mode
[  352.805255][ T9544] bridge0: port 4(gretap0) entered blocking state
[  352.811816][ T9544] bridge0: port 4(gretap0) entered disabled state
[  352.837397][ T9544] gretap0: entered allmulticast mode
[  352.847942][ T9544] gretap0: entered promiscuous mode
[  352.859755][ T9544] bridge0: port 4(gretap0) entered blocking state
[  352.866255][ T9544] bridge0: port 4(gretap0) entered forwarding state
[  352.915522][ T9560] loop2: detected capacity change from 0 to 512
[  352.994419][   T29] audit: type=1326 audit(1723965740.090:1401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9573 comm="syz.3.1785" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fec0cd69e79 code=0x0
[  353.062167][ T9581] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1785'.
[  353.233999][ T9594] loop4: detected capacity change from 0 to 128
[  353.253423][ T9594] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  353.275218][ T9594] ext4 filesystem being mounted at /96/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  353.374719][ T9594] bridge0: port 1(bridge_slave_0) entered disabled state
[  353.387950][ T9594] bridge0: port 1(bridge_slave_0) entered blocking state
[  353.395064][ T9594] bridge0: port 1(bridge_slave_0) entered forwarding state
[  353.551170][ T9611] ieee802154 phy0 wpan0: encryption failed: -90
[  353.574872][ T9612] program syz.0.1794 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  353.691378][ T9619] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1798'.
[  353.709872][ T9619] pimreg: entered allmulticast mode
[  353.718313][ T9619] pimreg: left allmulticast mode
[  353.768954][   T29] audit: type=1400 audit(1723965740.870:1402): avc:  denied  { mounton } for  pid=9618 comm="syz.0.1798" path="/116/file0" dev="tmpfs" ino=643 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1
[  353.869126][ T9629] netem: change failed
[  353.884037][   T29] audit: type=1326 audit(1723965740.980:1403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9626 comm="syz.1.1801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1a9b09e79 code=0x7ffc0000
[  353.907557][   T29] audit: type=1326 audit(1723965740.980:1404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9626 comm="syz.1.1801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=305 compat=0 ip=0x7fa1a9b09e79 code=0x7ffc0000
[  353.931063][   T29] audit: type=1326 audit(1723965740.980:1405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9626 comm="syz.1.1801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1a9b09e79 code=0x7ffc0000
[  354.027475][   T29] audit: type=1326 audit(1723965741.130:1406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9640 comm="syz.1.1806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1a9b09e79 code=0x7ffc0000
[  354.051085][   T29] audit: type=1326 audit(1723965741.130:1407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9640 comm="syz.1.1806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1a9b09e79 code=0x7ffc0000
[  354.083536][   T29] audit: type=1326 audit(1723965741.130:1408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9640 comm="syz.1.1806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=305 compat=0 ip=0x7fa1a9b09e79 code=0x7ffc0000
[  354.107050][   T29] audit: type=1326 audit(1723965741.130:1409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9640 comm="syz.1.1806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1a9b09e79 code=0x7ffc0000
[  354.130497][   T29] audit: type=1326 audit(1723965741.130:1410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9640 comm="syz.1.1806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1a9b09e79 code=0x7ffc0000
[  354.158912][ T7936] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  354.171353][ T9650] loop2: detected capacity change from 0 to 512
[  354.179152][ T9650] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  354.191800][ T9650] EXT4-fs (loop2): orphan cleanup on readonly fs
[  354.198964][ T9650] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1811: bg 0: block 248: padding at end of block bitmap is not set
[  354.217271][ T9650] Quota error (device loop2): write_blk: dquota write failed
[  354.220118][ T9657] loop3: detected capacity change from 0 to 512
[  354.224706][ T9650] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.1811: Failed to acquire dquot type 1
[  354.231553][ T9657] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  354.264068][ T9650] EXT4-fs (loop2): 1 truncate cleaned up
[  354.271917][ T9650] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  354.284720][ T9650] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  354.297767][ T9657] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.1807: corrupted in-inode xattr: e_name out of bounds
[  354.316531][ T9657] EXT4-fs (loop3): 1 truncate cleaned up
[  354.322702][ T9657] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  354.342187][ T9650] 9pnet: p9_errstr2errno: server reported unknown error �
[  354.351181][ T9650] syz.2.1811 (9650) used greatest stack depth: 9408 bytes left
[  354.414378][ T9668] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1814'.
[  354.660044][ T9674] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1815'.
[  354.719604][ T9674] team_slave_0: entered promiscuous mode
[  354.725359][ T9674] team_slave_1: entered promiscuous mode
[  354.731174][ T9674] netdevsim netdevsim2 netdevsim1: entered promiscuous mode
[  354.769111][ T9674] macvtap1: entered promiscuous mode
[  354.774460][ T9674] team0: entered promiscuous mode
[  354.779970][ T9674] macvtap1: entered allmulticast mode
[  354.785400][ T9674] team0: entered allmulticast mode
[  354.790514][ T9674] team_slave_0: entered allmulticast mode
[  354.796305][ T9674] team_slave_1: entered allmulticast mode
[  354.802019][ T9674] netdevsim netdevsim2 netdevsim1: entered allmulticast mode
[  354.813086][ T9674] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  354.829549][ T8895] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  354.852963][ T9678] IPv6: Can't replace route, no match found
[  354.858315][ T9682] loop3: detected capacity change from 0 to 512
[  354.866187][ T9682] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  354.883000][ T9682] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  354.914307][ T8895] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  354.950831][ T9699] loop3: detected capacity change from 0 to 2048
[  355.027775][ T9699]  loop3: p1 < > p4
[  355.028093][ T9706] loop2: detected capacity change from 0 to 1024
[  355.032204][ T9699] loop3: p4 size 8388608 extends beyond EOD, truncated
[  355.046289][ T9706] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  355.059025][ T9706] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  355.067118][ T9706] EXT4-fs (loop2): orphan cleanup on readonly fs
[  355.068180][ T9699] FAULT_INJECTION: forcing a failure.
[  355.068180][ T9699] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  355.073744][ T9706] EXT4-fs error (device loop2): ext4_free_blocks:6590: comm syz.2.1823: Freeing blocks not in datazone - block = 0, count = 4096
[  355.086763][ T9699] CPU: 1 UID: 0 PID: 9699 Comm: syz.3.1821 Not tainted 6.11.0-rc3-syzkaller-00321-g810996a36309 #0
[  355.086791][ T9699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  355.086803][ T9699] Call Trace:
[  355.086809][ T9699]  <TASK>
[  355.086815][ T9699]  dump_stack_lvl+0xf2/0x150
[  355.086850][ T9699]  dump_stack+0x15/0x20
[  355.135862][ T9699]  should_fail_ex+0x229/0x230
[  355.140634][ T9699]  should_fail_alloc_page+0xfd/0x110
[  355.146058][ T9699]  __alloc_pages_noprof+0x109/0x360
[  355.151342][ T9699]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  355.156716][ T9699]  folio_alloc_mpol_noprof+0x36/0x70
[  355.162055][ T9699]  shmem_get_folio_gfp+0x3eb/0xd80
[  355.167174][ T9699]  shmem_write_begin+0xa0/0x1c0
[  355.172029][ T9699]  generic_perform_write+0x1b4/0x580
[  355.177358][ T9699]  shmem_file_write_iter+0xc8/0xf0
[  355.182502][ T9699]  vfs_write+0x78f/0x900
[  355.186817][ T9699]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  355.192708][ T9699]  ksys_write+0xeb/0x1b0
[  355.197005][ T9699]  __x64_sys_write+0x42/0x50
[  355.201609][ T9699]  x64_sys_call+0x27dd/0x2d60
[  355.206358][ T9699]  do_syscall_64+0xc9/0x1c0
[  355.210878][ T9699]  ? clear_bhb_loop+0x55/0xb0
[  355.215598][ T9699]  ? clear_bhb_loop+0x55/0xb0
[  355.220345][ T9699]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.226268][ T9699] RIP: 0033:0x7fec0cd6895f
[  355.230714][ T9699] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[  355.250330][ T9699] RSP: 002b:00007fec0b9e0df0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  355.258749][ T9699] RAX: ffffffffffffffda RBX: 0000000000010000 RCX: 00007fec0cd6895f
[  355.266801][ T9699] RDX: 0000000000010000 RSI: 00007fec035c1000 RDI: 0000000000000005
[  355.274791][ T9699] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000001e3
[  355.282776][ T9699] R10: 00000000000001d0 R11: 0000000000000293 R12: 0000000000000005
[  355.290759][ T9699] R13: 00007fec0b9e0ef0 R14: 00007fec0b9e0eb0 R15: 00007fec035c1000
[  355.298745][ T9699]  </TASK>
[  355.302630][ T9705] FAULT_INJECTION: forcing a failure.
[  355.302630][ T9705] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  355.315805][ T9705] CPU: 0 UID: 0 PID: 9705 Comm: syz.1.1820 Not tainted 6.11.0-rc3-syzkaller-00321-g810996a36309 #0
[  355.326658][ T9705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  355.336734][ T9705] Call Trace:
[  355.340022][ T9705]  <TASK>
[  355.342991][ T9705]  dump_stack_lvl+0xf2/0x150
[  355.347698][ T9705]  dump_stack+0x15/0x20
[  355.351951][ T9705]  should_fail_ex+0x229/0x230
[  355.356752][ T9705]  should_fail+0xb/0x10
[  355.360951][ T9705]  should_fail_usercopy+0x1a/0x20
[  355.366048][ T9705]  _copy_from_user+0x1e/0xd0
[  355.370668][ T9705]  input_event_from_user+0x126/0x1e0
[  355.376046][ T9705]  ? input_inject_event+0xe1/0x100
[  355.381336][ T9705]  evdev_write+0x288/0x420
[  355.385985][ T9705]  ? __pfx_evdev_write+0x10/0x10
[  355.390961][ T9705]  vfs_write+0x28b/0x900
[  355.395243][ T9705]  ? __fget_files+0x1da/0x210
[  355.399951][ T9705]  ksys_write+0xeb/0x1b0
[  355.404300][ T9705]  __x64_sys_write+0x42/0x50
[  355.408931][ T9705]  x64_sys_call+0x27dd/0x2d60
[  355.413638][ T9705]  do_syscall_64+0xc9/0x1c0
[  355.418176][ T9705]  ? clear_bhb_loop+0x55/0xb0
[  355.422953][ T9705]  ? clear_bhb_loop+0x55/0xb0
[  355.427665][ T9705]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.433691][ T9705] RIP: 0033:0x7fa1a9b09e79
[  355.438233][ T9705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  355.457866][ T9705] RSP: 002b:00007fa1a8766038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  355.466301][ T9705] RAX: ffffffffffffffda RBX: 00007fa1a9ca6058 RCX: 00007fa1a9b09e79
[  355.474284][ T9705] RDX: 0000000000001068 RSI: 0000000020000040 RDI: 0000000000000007
[  355.482273][ T9705] RBP: 00007fa1a8766090 R08: 0000000000000000 R09: 0000000000000000
[  355.490260][ T9705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  355.498236][ T9705] R13: 0000000000000000 R14: 00007fa1a9ca6058 R15: 00007ffe9636a148
[  355.506259][ T9705]  </TASK>
[  355.531151][ T9710] ucma_write: process 342 (syz.0.1825) changed security contexts after opening file descriptor, this is not allowed.
[  355.545060][ T9706] EXT4-fs (loop2): 1 orphan inode deleted
[  355.551592][ T9706] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  355.576301][ T7936] ==================================================================
[  355.584398][ T7936] BUG: KCSAN: data-race in shmem_getattr / shmem_recalc_inode
[  355.591929][ T7936] 
[  355.594259][ T7936] read-write to 0xffff888121a742f8 of 8 bytes by task 9670 on cpu 1:
[  355.602325][ T7936]  shmem_recalc_inode+0x36/0x1b0
[  355.607281][ T7936]  shmem_get_folio_gfp+0x7e4/0xd80
[  355.612415][ T7936]  shmem_write_begin+0xa0/0x1c0
[  355.617284][ T7936]  generic_perform_write+0x1b4/0x580
[  355.622599][ T7936]  shmem_file_write_iter+0xc8/0xf0
[  355.627816][ T7936]  __kernel_write_iter+0x24f/0x4e0
[  355.632959][ T7936]  dump_user_range+0x3a7/0x550
[  355.637759][ T7936]  elf_core_dump+0x1aeb/0x1c30
[  355.642555][ T7936]  do_coredump+0xfa7/0x1810
[  355.647090][ T7936]  get_signal+0xdc1/0x1080
[  355.651523][ T7936]  arch_do_signal_or_restart+0x95/0x4b0
[  355.657084][ T7936]  syscall_exit_to_user_mode+0x59/0x130
[  355.662654][ T7936]  do_syscall_64+0xd6/0x1c0
[  355.667176][ T7936]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.673075][ T7936] 
[  355.675405][ T7936] read to 0xffff888121a742f8 of 8 bytes by task 7936 on cpu 0:
[  355.682950][ T7936]  shmem_getattr+0x42/0x200
[  355.687470][ T7936]  vfs_getattr+0x19b/0x1e0
[  355.691897][ T7936]  vfs_statx+0x134/0x2f0
[  355.696156][ T7936]  vfs_fstatat+0xec/0x110
[  355.700492][ T7936]  __se_sys_newfstatat+0x58/0x260
[  355.705542][ T7936]  __x64_sys_newfstatat+0x55/0x70
[  355.710601][ T7936]  x64_sys_call+0x141f/0x2d60
[  355.715296][ T7936]  do_syscall_64+0xc9/0x1c0
[  355.719820][ T7936]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.725731][ T7936] 
[  355.728056][ T7936] value changed: 0x000000000000237f -> 0x0000000000002382
[  355.735169][ T7936] 
[  355.737509][ T7936] Reported by Kernel Concurrency Sanitizer on:
[  355.743677][ T7936] CPU: 0 UID: 0 PID: 7936 Comm: syz-executor Not tainted 6.11.0-rc3-syzkaller-00321-g810996a36309 #0
[  355.754545][ T7936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  355.764968][ T7936] ==================================================================
[  355.828333][ T9706] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 16: comm syz.2.1823: path /110/file1: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  355.859745][ T9706] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 17: comm syz.2.1823: path /110/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  355.931686][ T9706] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 18: comm syz.2.1823: path /110/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  355.954307][ T9706] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 19: comm syz.2.1823: path /110/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  355.977909][ T9706] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 20: comm syz.2.1823: path /110/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  355.998417][ T9706] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 21: comm syz.2.1823: path /110/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  356.019777][ T9706] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 22: comm syz.2.1823: path /110/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  356.040273][ T9706] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 23: comm syz.2.1823: path /110/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  356.080762][ T7933] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.