last executing test programs:

2.229895807s ago: executing program 1 (id=671):
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2, 0x0, &(0x7f00000004c0)=[{0x0, 0x0, 0x0, 0xd}, {0x2, 0x1}]}, 0x90)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26, 0x0, 0x1}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000280)='GPL\x00', 0x5, 0xe2, &(0x7f00000002c0)=""/226, 0x0, 0x0, '\x00', 0x0, 0x25, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x2}, 0x80)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r1, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e23, 0xfffffffd, @empty}], 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r1, 0x84, 0x17, &(0x7f00000001c0)={0x0, 0x5, 0x1, "fd"}, 0x9)
sendto$inet6(r1, &(0x7f00000000c0)="eb", 0x1, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000340)={0x0, 0x5}, 0x8)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000080)={'syztnl2\x00', &(0x7f0000000600)={'erspan0\x00', <r2=>0x0, 0x1187d2d8546500c8, 0x7, 0x6, 0x3ff, {{0x20, 0x4, 0x3, 0x0, 0x80, 0x66, 0x0, 0xa, 0x4, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @dev={0xac, 0x14, 0x14, 0x41}, {[@ssrr={0x89, 0x1b, 0x7, [@multicast2, @empty, @dev={0xac, 0x14, 0x14, 0x3d}, @remote, @dev={0xac, 0x14, 0x14, 0x2f}, @multicast2]}, @timestamp_prespec={0x44, 0x14, 0x9d, 0x3, 0x0, [{@dev={0xac, 0x14, 0x14, 0x17}, 0xe8}, {@broadcast, 0x7}]}, @noop, @end, @rr={0x7, 0xf, 0xc6, [@broadcast, @multicast1, @multicast1]}, @lsrr={0x83, 0xf, 0xda, [@multicast1, @empty, @dev={0xac, 0x14, 0x14, 0x3a}]}, @rr={0x7, 0x17, 0xbf, [@broadcast, @broadcast, @multicast1, @multicast1, @multicast2]}, @noop, @noop, @ra={0x94, 0x4}]}}}}})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x13, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r2, 0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x8, &(0x7f0000000000), 0x1, 0x51a, &(0x7f0000001200)="$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")
openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x103042, 0x0)
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', r4, &(0x7f0000000980)='./file0\x00', 0x0)
r5 = socket$packet(0x11, 0x3, 0x300)
listen(r5, 0x0)

2.157336493s ago: executing program 3 (id=672):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, 0x0, &(0x7f0000048000), 0x3000000)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x6}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000000)={0x0, 0x8, &(0x7f00000003c0)={&(0x7f0000000400)={0x5c, 0x2, 0x6, 0x801, 0x0, 0x9, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_MAXELEM={0x8, 0x13, 0x0}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}]}, 0x5c}}, 0x24000044)
write$RDMA_USER_CM_CMD_QUERY(0xffffffffffffffff, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r3}, 0x10)
getrandom(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
r6 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000000), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000040)=ANY=[@ANYRESHEX=r5], 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0xeb)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)

1.85069219s ago: executing program 4 (id=678):
r0 = socket$nl_route(0x10, 0x3, 0x0) (async)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x17, 0x204, 0x9, 0xf, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x1}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10) (async)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x2, 0xfff, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10) (async)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000280)='./file0\x00', 0xcd7, &(0x7f0000000a40)=ANY=[@ANYRESDEC=0x0], 0xfd, 0x305, &(0x7f00000004c0)="$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") (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) (async)
r6 = open(&(0x7f00000002c0)='.\x00', 0x0, 0xa1)
fcntl$notify(r6, 0x402, 0x8000003d) (async)
fcntl$setsig(r6, 0xa, 0x21) (async)
utime(&(0x7f0000000180)='./file0\x00', 0x0)
socket(0x10, 0x3, 0x0) (async)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_inet_SIOCGIFADDR(r7, 0x8915, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r8=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newqdisc={0x98, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x40, 0x2, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, [@TCA_NETEM_LOSS={0x1c, 0x5, 0x0, 0x1, [@NETEM_LOSS_GI={0x18, 0x1, {0x445, 0x6, 0x5, 0x24, 0x7}}]}, @TCA_NETEM_ECN={0x8, 0x7, 0x1}]}}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0xfffffffc, 0x1}}, {0x6, 0x2, [0x401]}}]}]}, 0x98}}, 0x0) (async)
r9 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r10 = dup(r9)
write$UHID_INPUT(r10, &(0x7f0000001980)={0x9, {"a2e3ad214fc752f91b2909094bf70e0dd038e7ff7fc6e5539b324c078b089b39323b6d1a0890e0878f0e1ac6e7049b076d959b669a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31300d076d0936cd3b78130daa61d8e809ea889b5802b77f07227227b7ba67e0e78669a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae19397d696d0d758f2dc7d1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000002335875271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1fe90a56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617601000000be70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d595a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9980000000b3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6c82fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c2021d653a5520000008213b704a5000000000000008ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc94681359bad8deff4b05f60cea0da7710a80000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4e38a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2bed9e53803edf1a4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4ceb360c7e658828563e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b4bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034e00000000ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c478b095b68441a34cb51682a8ae4d24ad92f243941ed274549b79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdbe6c4579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93ae62fccfcbb2b75a2183c46eb65ca8124e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43e4fb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e01feffffffffffff83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369d75f2e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aa01b20f7694a00f16e2d0174035a2c22656dc00880acebdbe8ddbd75c2f998d8ac2dfad2ba3a50200000045a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe2907ac0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf463661c953fcad6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7cd419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaeecf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6ea94f88a4facfd4c735a20307c737afae5136651b1b9bd522dcb399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a37684f4113c48859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c105000000302a808d7f5251440613d17ca51055f2f416a44fe180d2d50c312cca7cb14a20dc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb40100000006376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab83c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7ceec7dc808bf653639d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a602000000000000007007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00303000000000000007fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf6529006c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6522fb5f6ffcdd56fed88935fcb75912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae233a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a5bd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08008897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b80c1c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57fa9c0fe662a46b7f71cd47744db86c50b704c98ad90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe360500000000000000b77940b5f07722e47a08d3679507000000000000934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1062dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1df0d07b3d5bd3b01faffd0addbed2881a9700af561ac8c7e36bb2fc4c40e9c766c06817bb903729a7db6ff957697c9ede7885d94ffb0759be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c1484d2f9c55f4901203a9a8a2c3e90f39c3dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000600", 0x1000}}, 0x1006)
r11 = socket(0x200000000000011, 0x2, 0x0)
syz_io_uring_setup(0xf3d, &(0x7f0000000480), &(0x7f0000000080)=<r12=>0x0, &(0x7f0000000540)=<r13=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r12, 0x4, &(0x7f00000001c0)=0xfffffffd, 0x0, 0x4) (async)
syz_io_uring_submit(r12, r13, &(0x7f0000000200)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r11, 0x80, &(0x7f0000000100)=@ll}) (async)
r14 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r10, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r15=>0x0})
sendmsg$NL80211_CMD_GET_SCAN(r11, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r14, 0x112, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8, 0x3, r15}, @void}}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000080}, 0x20000000)

1.779753396s ago: executing program 4 (id=679):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff85000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x9)

1.637501048s ago: executing program 0 (id=682):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000180)=ANY=[], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0xc8d0, &(0x7f0000000040)=ANY=[], 0x5, 0x2e3, &(0x7f0000000280)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000100)={'#! ', './file0', [{0x20, '+!@'}, {0x20, '\x93\xe0\x87\x99\xf7Bw'}, {0x20, '\xe1^\xd8H\a\x1ba \xa1\x91\x8cS^\xad\xe5w\x8b<E\x8d\x83\x1dXJ\xd4M8\xc3\xbf\x86\xd2`ei\x8bQ\v\x1d|\xc5\xfe*\xe4\xb2'}]}, 0x44)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)

1.605659591s ago: executing program 0 (id=683):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000002700)=@delchain={0x168, 0x65, 0x0, 0x0, 0x0, {}, [@TCA_CHAIN={0x8, 0xb, 0x1000}, @filter_kind_options=@f_u32={{0x8}, {0x54, 0x2, [@TCA_U32_INDEV={0x14, 0x8, 'veth0_to_team\x00'}, @TCA_U32_INDEV={0x14, 0x8, 'veth0\x00'}, @TCA_U32_HASH={0x8}, @TCA_U32_CLASSID={0x8}, @TCA_U32_MARK={0x10}, @TCA_U32_FLAGS={0x8}]}}, @TCA_RATE={0x6, 0x5, {0x40, 0x1}}, @TCA_RATE={0x6}, @filter_kind_options=@f_cgroup={{0xb}, {0xc4, 0x2, [@TCA_CGROUP_EMATCHES={0xc0, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x2}}, @TCA_EMATCH_TREE_LIST={0xa8, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x14, 0x1, 0x0, 0x0, {{0x3, 0x2, 0x9}, {0x2, 0x1, 0x1, "e2"}}}, @TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0x7, 0x3, 0x3fe5}, {0xfffffffb, 0x100, 0x4, 0x8000}}}, @TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x1069, 0x7, 0x7}, {{0x8, 0x1, 0x1, 0x1}, {0x2, 0x0, 0x1, 0x1}}}}, @TCF_EM_IPT={0x20, 0x1, 0x0, 0x0, {{0x4, 0x9, 0xfc00}, [@TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x2}, @TCA_EM_IPT_MATCH_NAME={0xb}]}}, @TCF_EM_U32={0x1c, 0x1, 0x0, 0x0, {{0x3, 0x3, 0x4}, {0x8, 0x194, 0x518, 0x7}}}, @TCF_EM_META={0x24, 0x1, 0x0, 0x0, {{0x8, 0x4, 0x9}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x2, 0x17}, {0x3ff, 0x3, 0x1}}}, @TCA_EM_META_HDR={0xc, 0x1, {{0x7fff, 0x0, 0x2}, {0x2, 0x8}}}]}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x7}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x168}}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x334}, {&(0x7f00000007c0)=""/154, 0x2c}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

1.583211173s ago: executing program 4 (id=684):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x3}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xffffffffffffff0b)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000001780)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x90)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x200000, 0x1000, 0x10}, 0x20)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x51}, 0x9c)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r2, @ANYRES32, @ANYRES64], 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0xfffffd44, 0x10, 0x0, 0x1}, 0x90)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r4, @ANYRES8=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
getpid()
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f00005f5000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000b00)=ANY=[@ANYBLOB="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"], 0x10}}, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'})
r7 = socket$inet6(0xa, 0x0, 0x0)
r8 = syz_open_dev$usbfs(&(0x7f0000000040), 0x77, 0x101301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r8, 0x8108551b, &(0x7f0000000140)={0x0, 0x0, "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"})
ioctl$USBDEVFS_BULK(r8, 0x80045503, &(0x7f0000000080)={{{0x1, 0x1}}, 0x0, 0x0, 0x0})
r9 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x4d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, &(0x7f0000000180)={<r10=>0x0, 0x7}, &(0x7f00000001c0)=0x8)
syz_emit_ethernet(0x3b6, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x0)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r7, 0x84, 0x77, &(0x7f00000008c0)=ANY=[@ANYRES32=r10, @ANYBLOB="0c000800ffff07800600010402000f0006007f00d7fcada8a9bd878f8d25040a4e060d3c7099dffc8e2037f00bdc2ec18b6c99b650ca57770bb8c1e433408223ca50eb300d904978eab72cc8931958d32aee92d234bd8a34c8e3561ba242"], 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x3}, 0x48)
ioctl$PERF_EVENT_IOC_SET_BPF(r9, 0x40042408, 0xffffffffffffffff)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)

1.573383034s ago: executing program 0 (id=685):
syz_emit_ethernet(0x393, 0x0, &(0x7f0000000340)={0x1, 0x4, [0x48e, 0xccf, 0xb9a, 0xbd5]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000080110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$selinux_load(r2, &(0x7f0000000140)={0xf97cff8c, 0x8, 'SE Linux', "c933fddd030588000fde9f323a6db7"}, 0x1f)

1.546142976s ago: executing program 0 (id=686):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
syz_mount_image$vfat(&(0x7f0000000580), &(0x7f00000005c0)='./file0\x00', 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="00faffffff"], 0x1, 0x576, &(0x7f0000000640)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)

1.542559226s ago: executing program 4 (id=687):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x5d032, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x77, '\x00', 0x0, 0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000007c0)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000000100000024000300b08073e8d44e91e3da922c22438244bb885c69e269c8e9d835b114293a4ddc6e14000200"/70], 0x4c}, 0x1, 0x0, 0x0, 0x4004840}, 0x40000)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r3, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0xa0, r5, 0x6f50036b50163d57, 0x70bd2b, 0x25dfdbff, {}, [@handle=@pci={{0x8}, {0x11}}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_RATE_NODE_NAME={0xe}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_RATE_NODE_NAME={0xe}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x1}]}, 0xa0}, 0x1, 0x0, 0x0, 0x8c0}, 0x4008000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r2}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
preadv(r1, &(0x7f0000000080)=[{&(0x7f0000000000)=""/124, 0x7c}], 0x1, 0x2, 0x3862f2aa)

1.480653912s ago: executing program 4 (id=688):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
mmap(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x7b, 0x12, r0, 0x47c000)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
mlockall(0x1)
accept$inet(0xffffffffffffffff, 0x0, &(0x7f0000000040))
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={0xffffffffffffffff, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
socket$vsock_stream(0x28, 0x1, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000210081044e81f782db44b9040a", 0x11}], 0x1}, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[], 0x33fe0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000ec0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000e80)={<r4=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r3, &(0x7f00000000c0)={0x13, 0x10, 0x8, {0x0, r4, 0x1}}, 0x18)

1.480248362s ago: executing program 0 (id=689):
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, &(0x7f00000002c0)}, 0x20)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b7040000000000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc}, 0x48)

1.367285901s ago: executing program 1 (id=690):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000180)=ANY=[], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0xc8d0, &(0x7f0000000040)=ANY=[], 0x5, 0x2e3, &(0x7f0000000280)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000100)={'#! ', './file0', [{0x20, '+!@'}, {0x20, '\x93\xe0\x87\x99\xf7Bw'}, {0x20, '\xe1^\xd8H\a\x1ba \xa1\x91\x8cS^\xad\xe5w\x8b<E\x8d\x83\x1dXJ\xd4M8\xc3\xbf\x86\xd2`ei\x8bQ\v\x1d|\xc5\xfe*\xe4\xb2'}]}, 0x44)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)

1.328099335s ago: executing program 1 (id=691):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x1d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x267e}, 0x90)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0x1}, 0x62)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
sendmsg$rds(0xffffffffffffffff, 0x0, 0x4000)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
mq_open(0x0, 0x80, 0x100, &(0x7f0000000300)={0x9, 0x9, 0x8, 0x7})
socket$kcm(0xa, 0x2, 0x3a)
r3 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
listen(r3, 0x101)
r4 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r4, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
connect$inet(r4, &(0x7f0000000080)={0x2, 0x4e20, @loopback}, 0x10)
r5 = accept4(r3, 0x0, 0x0, 0x0)
sendmmsg$inet6(r5, &(0x7f0000002780)=[{{0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f0000000480)="fbe286ec23fb1bd83b27c8d2cd648f56", 0x10}, {0x0}, {0x0}], 0x3}}], 0x1, 0x40000)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x24, 0x0, 0x301, 0x70bd2d, 0x25dfdbfe, {{}, {}, {0x8, 0x11, 0xe}}}, 0x24}, 0x1, 0x0, 0x0, 0x4004000}, 0x40019)

1.235209913s ago: executing program 3 (id=692):
epoll_create1(0x0)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x7, 0x2, 0x1000}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x10)
timer_create(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
timer_gettime(0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000002700)=@delchain={0x220, 0x65, 0x0, 0x0, 0x0, {}, [@TCA_CHAIN={0x8, 0xb, 0x1000}, @filter_kind_options=@f_u32={{0x8}, {0x54, 0x2, [@TCA_U32_INDEV={0x14, 0x8, 'veth0_to_team\x00'}, @TCA_U32_INDEV={0x14, 0x8, 'veth0\x00'}, @TCA_U32_HASH={0x8}, @TCA_U32_CLASSID={0x8}, @TCA_U32_MARK={0x10}, @TCA_U32_FLAGS={0x8}]}}, @TCA_RATE={0x6, 0x5, {0x40, 0x1}}, @TCA_RATE={0x6}, @filter_kind_options=@f_cgroup={{0xb}, {0x17c, 0x2, [@TCA_CGROUP_EMATCHES={0x178, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x2}}, @TCA_EMATCH_TREE_LIST={0xa8, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x14, 0x1, 0x0, 0x0, {{0x3, 0x2, 0x9}, {0x2, 0x1, 0x1, "e2"}}}, @TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0x7, 0x3, 0x3fe5}, {0xfffffffb, 0x100, 0x4, 0x8000}}}, @TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x1069, 0x7, 0x7}, {{0x8, 0x1, 0x1, 0x1}, {0x2, 0x0, 0x1, 0x1}}}}, @TCF_EM_IPT={0x20, 0x1, 0x0, 0x0, {{0x4, 0x9, 0xfc00}, [@TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x2}, @TCA_EM_IPT_MATCH_NAME={0xb}]}}, @TCF_EM_U32={0x1c, 0x1, 0x0, 0x0, {{0x3, 0x3, 0x4}, {0x8, 0x194, 0x518, 0x7}}}, @TCF_EM_META={0x24, 0x1, 0x0, 0x0, {{0x8, 0x4, 0x9}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x2, 0x17}, {0x3ff, 0x3, 0x1}}}, @TCA_EM_META_HDR={0xc, 0x1, {{0x7fff, 0x0, 0x2}, {0x2, 0x8}}}]}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x7}}, @TCA_EMATCH_TREE_LIST={0xbc, 0x2, 0x0, 0x1, [@TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0xfffa, 0x1, 0xfff7}, {0x7, 0x6, 0x2, 0x2, 0x5, 0x2, 0x2}}}, @TCF_EM_META={0x30, 0x2, 0x0, 0x0, {{0x0, 0x4, 0xd}, [@TCA_EM_META_LVALUE={0x4}, @TCA_EM_META_LVALUE={0x14, 0x2, [@TCF_META_TYPE_INT=0xa, @TCF_META_TYPE_INT=0x5, @TCF_META_TYPE_INT=0x6, @TCF_META_TYPE_INT=0x8]}, @TCA_EM_META_HDR={0xc, 0x1, {{0x8, 0x25, 0x1}, {0x1, 0xfe}}}]}}, @TCF_EM_CANID={0x14, 0x2, 0x0, 0x0, {{0x7, 0x7, 0x4000}, {{0x0, 0x1, 0x0, 0x1}, {0x1}}}}, @TCF_EM_NBYTE={0x14, 0x1, 0x0, 0x0, {{0xb457, 0x2, 0x6}, {0x8001, 0x1, 0x0, "05"}}}, @TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0x0, 0x1, 0x304}, {0x8, 0x8001, 0x6, 0x4, 0x3, 0x1, 0x1}}}, @TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0x0, 0x3, 0x1}, {0x4, 0x1, 0xd21, 0x5}}}, @TCF_EM_IPT={0x14, 0x3, 0x0, 0x0, {{0x4, 0x9, 0x8}, [@TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x9}]}}]}]}]}}]}, 0x220}}, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendto(r1, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x334}, {&(0x7f00000007c0)=""/154, 0x2c}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

1.234381683s ago: executing program 3 (id=693):
epoll_create1(0x0)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x7, 0x2, 0x1000}, 0x48)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000002700)=@delchain={0x244, 0x65, 0x0, 0x0, 0x0, {}, [@TCA_CHAIN={0x8, 0xb, 0x1000}, @filter_kind_options=@f_u32={{0x8}, {0x54, 0x2, [@TCA_U32_INDEV={0x14, 0x8, 'veth0_to_team\x00'}, @TCA_U32_INDEV={0x14, 0x8, 'veth0\x00'}, @TCA_U32_HASH={0x8}, @TCA_U32_CLASSID={0x8}, @TCA_U32_MARK={0x10}, @TCA_U32_FLAGS={0x8}]}}, @TCA_RATE={0x6, 0x5, {0x40, 0x1}}, @TCA_RATE={0x6}, @filter_kind_options=@f_cgroup={{0xb}, {0x1a0, 0x2, [@TCA_CGROUP_EMATCHES={0x19c, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x2}}, @TCA_EMATCH_TREE_LIST={0xa8, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x14, 0x1, 0x0, 0x0, {{0x3, 0x2, 0x9}, {0x2, 0x1, 0x1, "e2"}}}, @TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0x7, 0x3, 0x3fe5}, {0xfffffffb, 0x100, 0x4, 0x8000}}}, @TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x1069, 0x7, 0x7}, {{0x8, 0x1, 0x1, 0x1}, {0x2, 0x0, 0x1, 0x1}}}}, @TCF_EM_IPT={0x20, 0x1, 0x0, 0x0, {{0x4, 0x9, 0xfc00}, [@TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x2}, @TCA_EM_IPT_MATCH_NAME={0xb}]}}, @TCF_EM_U32={0x1c, 0x1, 0x0, 0x0, {{0x3, 0x3, 0x4}, {0x8, 0x194, 0x518, 0x7}}}, @TCF_EM_META={0x24, 0x1, 0x0, 0x0, {{0x8, 0x4, 0x9}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x2, 0x17}, {0x3ff, 0x3, 0x1}}}, @TCA_EM_META_HDR={0xc, 0x1, {{0x7fff, 0x0, 0x2}, {0x2, 0x8}}}]}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x7}}, @TCA_EMATCH_TREE_LIST={0xe0, 0x2, 0x0, 0x1, [@TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0xfffa, 0x1, 0xfff7}, {0x7, 0x6, 0x2, 0x2, 0x5, 0x2, 0x2}}}, @TCF_EM_META={0x54, 0x2, 0x0, 0x0, {{0x0, 0x4, 0xd}, [@TCA_EM_META_LVALUE={0x33, 0x2, [@TCF_META_TYPE_INT=0x1, @TCF_META_TYPE_VAR="58a7987a274f0cc3ce", @TCF_META_TYPE_VAR="cac29306dd73c5e626", @TCF_META_TYPE_INT=0x2, @TCF_META_TYPE_INT, @TCF_META_TYPE_VAR="faae9e3b", @TCF_META_TYPE_INT=0x4, @TCF_META_TYPE_VAR="547d4938e2", @TCF_META_TYPE_INT=0x3]}, @TCA_EM_META_LVALUE={0x14, 0x2, [@TCF_META_TYPE_INT=0xa, @TCF_META_TYPE_INT=0x5, @TCF_META_TYPE_INT=0x6, @TCF_META_TYPE_INT=0x8]}]}}, @TCF_EM_CANID={0x14, 0x2, 0x0, 0x0, {{0x7, 0x7, 0x4000}, {{0x0, 0x1, 0x0, 0x1}, {0x1}}}}, @TCF_EM_NBYTE={0x14, 0x1, 0x0, 0x0, {{0xb457, 0x2, 0x6}, {0x8001, 0x1, 0x0, "05"}}}, @TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0x0, 0x1, 0x304}, {0x8, 0x8001, 0x6, 0x4, 0x3, 0x1, 0x1}}}, @TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0x0, 0x3, 0x1}, {0x4, 0x1, 0xd21, 0x5}}}, @TCF_EM_IPT={0x14, 0x3, 0x0, 0x0, {{0x4, 0x9, 0x8}, [@TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x9}]}}]}]}]}}]}, 0x244}}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x334}, {&(0x7f00000007c0)=""/154, 0x2c}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

1.205477495s ago: executing program 3 (id=694):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff85000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x9)

1.15576332s ago: executing program 0 (id=695):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0xc8d0, &(0x7f0000000040)=ANY=[], 0x5, 0x2e3, &(0x7f0000000280)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000100)={'#! ', './file0', [{0x20, '+!@'}, {0x20, '\x93\xe0\x87\x99\xf7Bw'}, {0x20, '\xe1^\xd8H\a\x1ba \xa1\x91\x8cS^\xad\xe5w\x8b<E\x8d\x83\x1dXJ\xd4M8\xc3\xbf\x86\xd2`ei\x8bQ\v\x1d|\xc5\xfe*\xe4\xb2'}]}, 0x44)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)

1.082929976s ago: executing program 2 (id=698):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
mkdir(&(0x7f0000000300)='./file0\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000004540)=[{{&(0x7f0000000040)={0x2, 0x4e22, @multicast1}, 0x10, 0x0}, 0xee0000b0}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f00000017c0)=[{0x0}], 0x1}}], 0x3, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x9, 0x0, 0x7ffc0004}]})
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fchmod(r0, 0x0)

723.819637ms ago: executing program 2 (id=699):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
semtimedop(0x0, &(0x7f0000000200)=[{0x4, 0x8002}, {}], 0x2, 0x0)
r0 = accept4$llc(0xffffffffffffffff, &(0x7f0000000740)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f0000000780)=0x10, 0x80400)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000800)={0x8, &(0x7f00000007c0)=[{0x6, 0xf8, 0x7f, 0xf3}, {0x6, 0xff, 0x0, 0x9}, {0x2, 0x8, 0x7, 0x8000}, {0xae6a, 0x9, 0x9b, 0x1}, {0x7c, 0x5, 0x3, 0x6}, {0x3, 0x3, 0x9, 0x13b5}, {0x4, 0x8, 0xe1}, {0xfffe, 0x9, 0xfc, 0x4}]}, 0x10) (async)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000800)={0x8, &(0x7f00000007c0)=[{0x6, 0xf8, 0x7f, 0xf3}, {0x6, 0xff, 0x0, 0x9}, {0x2, 0x8, 0x7, 0x8000}, {0xae6a, 0x9, 0x9b, 0x1}, {0x7c, 0x5, 0x3, 0x6}, {0x3, 0x3, 0x9, 0x13b5}, {0x4, 0x8, 0xe1}, {0xfffe, 0x9, 0xfc, 0x4}]}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xa, 0x2, 0x9, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x48) (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xa, 0x2, 0x9, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x4, &(0x7f0000000700)={0x4, &(0x7f00000006c0)=[{0xd7, 0x10, 0x1, 0x9}, {0x7, 0x53, 0x4, 0x5}, {0x2, 0x2e, 0x6, 0x4}, {0x3ff, 0x9, 0x9, 0x1}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r1}, &(0x7f0000000200), &(0x7f0000000280)}, 0x20) (async)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r1}, &(0x7f0000000200), &(0x7f0000000280)}, 0x20)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000180)={'\x00', 0x112}) (async)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000180)={'\x00', 0x112})
ioctl$TUNSETQUEUE(r4, 0x400454d9, &(0x7f0000000100)={'vlan0\x00', 0x400}) (async)
ioctl$TUNSETQUEUE(r4, 0x400454d9, &(0x7f0000000100)={'vlan0\x00', 0x400})
close(r4)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f0000000940)='cq_alloc_error\x00', r7}, 0x72)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r6}, &(0x7f0000000000), &(0x7f00000005c0)=r7}, 0x20) (async)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r6}, &(0x7f0000000000), &(0x7f00000005c0)=r7}, 0x20)
syz_read_part_table(0x5df, &(0x7f0000000000)="$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") (async)
syz_read_part_table(0x5df, &(0x7f0000000000)="$eJzs3DGIE1kYB/CXIBEFETs7gykichAh3UkEDXGQgAnBQ4s70c4t0qyVRYxgQCzMNhE5Gy0UYQ1aaCUiCCImFkIqUXavuN1l2eJY2CawLHMEZrvjYG/JHQe/Hzx4b97/zcfHMOVM4H8tHf6I4zgVQoj37vz0T/OVs+ey9dONCyGkwi8hhN/zs79OdlJJYvuuR5P1YrIuvt3TvDcf3en2Dhx+nd38nE72byVjZfjw8q6bY+qOXT/+/sh4dOhNNTwenBqc3N+8dK2fL7f7X+qvzjzNPtt+7oUp1X9Z+njwdmc26t4ozXyNWkvRanpjPTr/4FEhM9du5NdOJLkrU6rf3LqYef7kQ7mzvK/4qVqr9V58v59rVd51bo6GuW/ju1eT3MI/eLsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPj3Hbt+/P2R8ejQm2p4PDg1OLm/eelaP19u97/UX515mn12NMkVplT/Zenjwdud2ah7ozTzNWotRavpjfXo/INHhcxcu5FfO5HkrvzV4TiO27us39y6mHn+5EO5s7yv+Klaq/VefL+fa1XedW6Ohrlv47tXk9zC3l0WAgAAAAAAAAAAAAAAAAAAgL9ROXsuWz/duDCZ/xxC+GHmx7nJPE6+d08lue3/ACxOrqdDKL7d07w3H93p9g4cfp3d/Pxbkr+VjJXhw8v/QTvs0J8BAAD//9odjZ8=")
fsetxattr$security_selinux(r5, &(0x7f0000000000), &(0x7f0000000040)='u:r:untrusted_app:s0:c512,c768\x00', 0x1f, 0x0) (async)
fsetxattr$security_selinux(r5, &(0x7f0000000000), &(0x7f0000000040)='u:r:untrusted_app:s0:c512,c768\x00', 0x1f, 0x0)
r8 = fsopen(&(0x7f0000000980)='xfs\x00', 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000008c0)={r1, 0x58, &(0x7f0000000840)={0x0, <r9=>0x0}}, 0x10)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000900)={r9, 0x2, 0x10}, 0xc)
setsockopt$ARPT_SO_SET_REPLACE(r5, 0x0, 0x60, &(0x7f0000000f80)={'filter\x00', 0x7, 0x4, 0x4e0, 0x1e8, 0x1e8, 0x0, 0x3f8, 0x3f8, 0x3f8, 0x4, &(0x7f0000000680), {[{{@arp={@loopback, @remote, 0xffffff00, 0xffffff00, 0xd, 0x6, {@mac=@remote, {[0xff, 0x0, 0x0, 0xff]}}, {@mac=@broadcast, {[0xff, 0xff, 0x0, 0x0, 0x0, 0xff]}}, 0x7, 0x4, 0xeaa2, 0x2, 0x32, 0x100, 'vlan1\x00', 'netdevsim0\x00', {}, {0xff}, 0x0, 0x6a}, 0xc0, 0x1e8}, @unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x8000, 'system_u:object_r:hald_exec_t:s0\x00'}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@random="18d659f55cd2", @mac=@random="352f4f955bc4", @local, @empty, 0xf}}}, {{@arp={@dev={0xac, 0x14, 0x14, 0x31}, @empty, 0xffffffff, 0xff, 0x5, 0x1, {@empty, {[0x0, 0x686faa9f41ca6688, 0xff, 0x0, 0x0, 0xff]}}, {@empty, {[0xad3da9801bc183bf, 0x0, 0x0, 0xff, 0xff, 0xff]}}, 0x6, 0x1, 0xfffa, 0x0, 0x1, 0x7fff, 'bridge0\x00', 'wg1\x00', {}, {0xff}, 0x0, 0x11}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x1, 0xcb, {0x2}}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x530) (async)
setsockopt$ARPT_SO_SET_REPLACE(r5, 0x0, 0x60, &(0x7f0000000f80)={'filter\x00', 0x7, 0x4, 0x4e0, 0x1e8, 0x1e8, 0x0, 0x3f8, 0x3f8, 0x3f8, 0x4, &(0x7f0000000680), {[{{@arp={@loopback, @remote, 0xffffff00, 0xffffff00, 0xd, 0x6, {@mac=@remote, {[0xff, 0x0, 0x0, 0xff]}}, {@mac=@broadcast, {[0xff, 0xff, 0x0, 0x0, 0x0, 0xff]}}, 0x7, 0x4, 0xeaa2, 0x2, 0x32, 0x100, 'vlan1\x00', 'netdevsim0\x00', {}, {0xff}, 0x0, 0x6a}, 0xc0, 0x1e8}, @unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x8000, 'system_u:object_r:hald_exec_t:s0\x00'}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@random="18d659f55cd2", @mac=@random="352f4f955bc4", @local, @empty, 0xf}}}, {{@arp={@dev={0xac, 0x14, 0x14, 0x31}, @empty, 0xffffffff, 0xff, 0x5, 0x1, {@empty, {[0x0, 0x686faa9f41ca6688, 0xff, 0x0, 0x0, 0xff]}}, {@empty, {[0xad3da9801bc183bf, 0x0, 0x0, 0xff, 0xff, 0xff]}}, 0x6, 0x1, 0xfffa, 0x0, 0x1, 0x7fff, 'bridge0\x00', 'wg1\x00', {}, {0xff}, 0x0, 0x11}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x1, 0xcb, {0x2}}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x530)
fsconfig$FSCONFIG_CMD_CREATE(r8, 0x6, 0x0, 0x0, 0x0)
r10 = fsmount(r8, 0x0, 0x0)
mknodat$loop(r10, &(0x7f0000000100)='./file0\x00', 0x0, 0x1) (async)
mknodat$loop(r10, &(0x7f0000000100)='./file0\x00', 0x0, 0x1)
name_to_handle_at(r10, &(0x7f0000000080)='./file0\x00', &(0x7f0000000580)=@raw={0xc00}, 0xfffffffffffffffe, 0x0)

673.105031ms ago: executing program 3 (id=700):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000080110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0, r1}, 0x10)
r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$selinux_load(r2, &(0x7f0000000140)={0xf97cff8c, 0x8, 'SE Linux', "c933fddd030588000fde9f323a6db7a1"}, 0x20)

636.923475ms ago: executing program 3 (id=701):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000002400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000e00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x2, &(0x7f0000000200)=@raw=[@call={0x85, 0x0, 0x0, 0xae}, @exit], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10}, 0x80)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'vxcan0\x00', <r1=>0x0})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000300))
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000f80)=ANY=[@ANYRES8], &(0x7f0000000740)=""/50, 0x70, 0x32, 0x0, 0x9}, 0x20)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000080)={0xffffffffffffffff, 0x20, &(0x7f0000000400)={&(0x7f0000000980)=""/128, 0x80, <r3=>0x0, &(0x7f0000000700)=""/33, 0x21}}, 0x10)
r4 = mq_open(&(0x7f0000000040)='!\x7f\x00\xca\x00\x00\x00\f\x00\x00\x01E!T\xeeux\x00', 0x6e93ebbbcc0884f2, 0x4, &(0x7f0000000000)={0x0, 0x1, 0x8, 0x7})
mq_timedreceive(r4, 0x0, 0xfffffffffffffee3, 0x1, 0x0)
mq_timedreceive(r4, &(0x7f0000001180)=""/209, 0xd1, 0x200000000000, 0x0)
mq_timedsend(r4, 0x0, 0x0, 0x3ed7, &(0x7f0000000140)={0x0, 0x989680})
r5 = openat(0xffffffffffffff9c, &(0x7f0000004a00)='./file0\x00', 0x478982, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000c80)={{0xffffffffffffffff, <r6=>0xffffffffffffffff}, &(0x7f0000000800), &(0x7f0000000840)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000bc0)={0x1d, 0x18, &(0x7f00000008c0)=ANY=[@ANYBLOB="0383800018000000852000000500000018120000", @ANYRES32=r6, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000000132050007000000b7080000000000007b8af8ff00000000b7080000060000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7050000080000008500ee4cc089386b26790000c5000000184104000400"/48], 0x0, 0x10000, 0x18, &(0x7f0000000a40)=""/24, 0x41000, 0x29, '\x00', r1, 0x35, r2, 0x8, &(0x7f0000000a80)={0x9, 0x4}, 0x8, 0x10, &(0x7f0000000ac0)={0x2, 0x4, 0xb0eb, 0x665ea0e}, 0x10, 0x0, 0xffffffffffffffff, 0x6, &(0x7f0000000b00)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r5, r5, r5], &(0x7f0000000b40)=[{0x0, 0x2, 0x4, 0xa}, {0x1, 0x3, 0x0, 0xb}, {0x0, 0x2, 0x0, 0x4}, {0x4, 0x5, 0x0, 0x4}, {0x5, 0x2, 0x7, 0x8}, {0x3, 0x1, 0x1}], 0x10, 0x2}, 0x90)
recvmmsg(r0, &(0x7f0000005a40), 0x3, 0x0, &(0x7f0000005b80)={0x77359400})
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r5, 0xc0189372, &(0x7f0000000380))
clock_gettime(0x0, &(0x7f0000000880)={<r7=>0x0, <r8=>0x0})
sendmsg$can_bcm(r5, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f0000000e80)=ANY=[@ANYBLOB="0300eb00000800000900000000000000f95770f23d718d7476d9cfb608b8ec4a64d02bc2731dd5f9b10dfe6b2fec2882343725be08eb4f9baeba9aba43fa277967", @ANYRES64=r7, @ANYRES64=r8/1000+10000, @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYBLOB="040000c0010000000100002005000000da0b804bc522cde3"], 0x48}}, 0x4000800)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0xc, 0x4, &(0x7f0000000780)=ANY=[], 0x0, 0x0, 0x20, &(0x7f0000000180)=""/32, 0x41100, 0x0, '\x00', r1, 0xd, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0x5, 0x5}, 0x8, 0x10, 0x0, 0x0, r3, 0xffffffffffffffff, 0x3, 0x0, &(0x7f0000000380)=[{0x0, 0x5, 0x1, 0x3}, {0x0, 0x5, 0x3, 0x2}, {0x5, 0x1, 0xe, 0x3}]}, 0x90)
r9 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r9, 0x89f3, &(0x7f0000000380)={'ip6gre0\x00', &(0x7f00000002c0)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x15, 0x8001, 0x0, @empty, @mcast2, 0x7, 0x0, 0x0, 0x7}})
ioctl$EXT4_IOC_CHECKPOINT(0xffffffffffffffff, 0x4004662b, &(0x7f0000000000)=0x2)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000580)={0x0, 0x6, 0x18}, 0xc)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xc, 0x4, 0x4, 0x12}, 0x48)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000300)={@map=r10, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r11 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r12 = dup(r11)
write$UHID_INPUT(r12, &(0x7f0000001980)={0xc, {"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", 0x1000}}, 0x1006)
openat$incfs(0xffffffffffffff9c, &(0x7f00000005c0)='.pending_reads\x00', 0x4000, 0x40)

523.161545ms ago: executing program 4 (id=702):
r0 = epoll_create1(0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count', 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x7, 0x2, 0x1000}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r3}, 0x10)
timer_create(0x0, 0x0, &(0x7f00000002c0)=<r4=>0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0xc}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r7}, 0x10)
syz_open_procfs(0x0, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000800)=ANY=[@ANYBLOB="5c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800e00010069703665727370616e0000002000028006000200300000001400060000000000000000000000ffff7f00000108000a00", @ANYRES32], 0x5c}}, 0x0)
timer_gettime(r4, &(0x7f0000000400))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f00000000c0)={0xe000001a})
read$char_usb(r1, &(0x7f0000000b00)=""/182, 0xb6)
ppoll(&(0x7f0000000780)=[{r0}], 0x1, 0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000002700)=@delchain={0x250, 0x65, 0x0, 0x0, 0x0, {}, [@TCA_CHAIN={0x8, 0xb, 0x1000}, @filter_kind_options=@f_u32={{0x8}, {0x54, 0x2, [@TCA_U32_INDEV={0x14, 0x8, 'veth0_to_team\x00'}, @TCA_U32_INDEV={0x14, 0x8, 'veth0\x00'}, @TCA_U32_HASH={0x8}, @TCA_U32_CLASSID={0x8}, @TCA_U32_MARK={0x10}, @TCA_U32_FLAGS={0x8}]}}, @TCA_RATE={0x6, 0x5, {0x40, 0x1}}, @TCA_RATE={0x6}, @filter_kind_options=@f_cgroup={{0xb}, {0x1ac, 0x2, [@TCA_CGROUP_EMATCHES={0x1a8, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x2}}, @TCA_EMATCH_TREE_LIST={0xa8, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x14, 0x1, 0x0, 0x0, {{0x3, 0x2, 0x9}, {0x2, 0x1, 0x1, "e2"}}}, @TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0x7, 0x3, 0x3fe5}, {0xfffffffb, 0x100, 0x4, 0x8000}}}, @TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x1069, 0x7, 0x7}, {{0x8, 0x1, 0x1, 0x1}, {0x2, 0x0, 0x1, 0x1}}}}, @TCF_EM_IPT={0x20, 0x1, 0x0, 0x0, {{0x4, 0x9, 0xfc00}, [@TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x2}, @TCA_EM_IPT_MATCH_NAME={0xb}]}}, @TCF_EM_U32={0x1c, 0x1, 0x0, 0x0, {{0x3, 0x3, 0x4}, {0x8, 0x194, 0x518, 0x7}}}, @TCF_EM_META={0x24, 0x1, 0x0, 0x0, {{0x8, 0x4, 0x9}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x2, 0x17}, {0x3ff, 0x3, 0x1}}}, @TCA_EM_META_HDR={0xc, 0x1, {{0x7fff, 0x0, 0x2}, {0x2, 0x8}}}]}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x7}}, @TCA_EMATCH_TREE_LIST={0xec, 0x2, 0x0, 0x1, [@TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0xfffa, 0x1, 0xfff7}, {0x7, 0x6, 0x2, 0x2, 0x5, 0x2, 0x2}}}, @TCF_EM_META={0x60, 0x2, 0x0, 0x0, {{0x0, 0x4, 0xd}, [@TCA_EM_META_LVALUE={0x33, 0x2, [@TCF_META_TYPE_INT=0x1, @TCF_META_TYPE_VAR="58a7987a274f0cc3ce", @TCF_META_TYPE_VAR="cac29306dd73c5e626", @TCF_META_TYPE_INT=0x2, @TCF_META_TYPE_INT, @TCF_META_TYPE_VAR="faae9e3b", @TCF_META_TYPE_INT=0x4, @TCF_META_TYPE_VAR="547d4938e2", @TCF_META_TYPE_INT=0x3]}, @TCA_EM_META_LVALUE={0x14, 0x2, [@TCF_META_TYPE_INT=0xa, @TCF_META_TYPE_INT=0x5, @TCF_META_TYPE_INT=0x6, @TCF_META_TYPE_INT=0x8]}, @TCA_EM_META_HDR={0xc, 0x1, {{0x8, 0x25, 0x1}, {0x1, 0xfe}}}]}}, @TCF_EM_CANID={0x14, 0x2, 0x0, 0x0, {{0x7, 0x7, 0x4000}, {{0x0, 0x1, 0x0, 0x1}, {0x1}}}}, @TCF_EM_NBYTE={0x14, 0x1, 0x0, 0x0, {{0xb457, 0x2, 0x6}, {0x8001, 0x2, 0x0, "0588"}}}, @TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0x0, 0x1, 0x304}, {0x8, 0x8001, 0x6, 0x4, 0x3, 0x1, 0x1}}}, @TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0x0, 0x3, 0x1}, {0x4, 0x1, 0xd21, 0x5}}}, @TCF_EM_IPT={0x14, 0x3, 0x0, 0x0, {{0x4, 0x9, 0x8}, [@TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x9}]}}]}]}]}}]}, 0x250}}, 0x0)
ioctl$USBDEVFS_FORBID_SUSPEND(r1, 0x5521)
r9 = socket(0x10, 0x803, 0x0)
sendto(r9, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r9, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x334}, {&(0x7f00000007c0)=""/154, 0x2c}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x10)
r10 = socket$isdn(0x22, 0x2, 0x23)
r11 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x40, 0x0)
dup2(r11, r10)

435.829382ms ago: executing program 2 (id=703):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f00000011c0)={'vxcan0\x00', <r4=>0x0})
bind$can_j1939(r3, &(0x7f0000001200)={0x1d, r4}, 0x18)
connect$can_j1939(r3, &(0x7f0000000080)={0x1d, r4}, 0x18)
writev(r3, &(0x7f0000000240)=[{&(0x7f0000000000)='h', 0xfdef}], 0x1)
r5 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000240)={'vxcan0\x00'})
sendmsg$nl_route_sched(r2, 0x0, 0x0)

293.194094ms ago: executing program 1 (id=704):
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448de, 0x0)
bind$bt_hci(r0, &(0x7f00000011c0)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
r1 = inotify_init()
inotify_add_watch(r1, &(0x7f0000000000)='.\x00', 0x400017e)
r2 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r2, 0x402, 0x8000003d)
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
sendfile(r3, r3, 0x0, 0x80000000)
ioctl$BLKTRACESTART(r3, 0x1274, 0x0)

267.666596ms ago: executing program 2 (id=705):
epoll_create1(0x0)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000002700)=@delchain={0x244, 0x65, 0x0, 0x0, 0x0, {}, [@TCA_CHAIN={0x8, 0xb, 0x1000}, @filter_kind_options=@f_u32={{0x8}, {0x54, 0x2, [@TCA_U32_INDEV={0x14, 0x8, 'veth0_to_team\x00'}, @TCA_U32_INDEV={0x14, 0x8, 'veth0\x00'}, @TCA_U32_HASH={0x8}, @TCA_U32_CLASSID={0x8}, @TCA_U32_MARK={0x10}, @TCA_U32_FLAGS={0x8}]}}, @TCA_RATE={0x6, 0x5, {0x40, 0x1}}, @TCA_RATE={0x6}, @filter_kind_options=@f_cgroup={{0xb}, {0x1a0, 0x2, [@TCA_CGROUP_EMATCHES={0x19c, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x2}}, @TCA_EMATCH_TREE_LIST={0xa8, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x14, 0x1, 0x0, 0x0, {{0x3, 0x2, 0x9}, {0x2, 0x1, 0x1, "e2"}}}, @TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0x7, 0x3, 0x3fe5}, {0xfffffffb, 0x100, 0x4, 0x8000}}}, @TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x1069, 0x7, 0x7}, {{0x8, 0x1, 0x1, 0x1}, {0x2, 0x0, 0x1, 0x1}}}}, @TCF_EM_IPT={0x20, 0x1, 0x0, 0x0, {{0x4, 0x9, 0xfc00}, [@TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x2}, @TCA_EM_IPT_MATCH_NAME={0xb}]}}, @TCF_EM_U32={0x1c, 0x1, 0x0, 0x0, {{0x3, 0x3, 0x4}, {0x8, 0x194, 0x518, 0x7}}}, @TCF_EM_META={0x24, 0x1, 0x0, 0x0, {{0x8, 0x4, 0x9}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x2, 0x17}, {0x3ff, 0x3, 0x1}}}, @TCA_EM_META_HDR={0xc, 0x1, {{0x7fff, 0x0, 0x2}, {0x2, 0x8}}}]}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x7}}, @TCA_EMATCH_TREE_LIST={0xe0, 0x2, 0x0, 0x1, [@TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0xfffa, 0x1, 0xfff7}, {0x7, 0x6, 0x2, 0x2, 0x5, 0x2, 0x2}}}, @TCF_EM_META={0x54, 0x2, 0x0, 0x0, {{0x0, 0x4, 0xd}, [@TCA_EM_META_LVALUE={0x33, 0x2, [@TCF_META_TYPE_INT=0x1, @TCF_META_TYPE_VAR="58a7987a274f0cc3ce", @TCF_META_TYPE_VAR="cac29306dd73c5e626", @TCF_META_TYPE_INT=0x2, @TCF_META_TYPE_INT, @TCF_META_TYPE_VAR="faae9e3b", @TCF_META_TYPE_INT=0x4, @TCF_META_TYPE_VAR="547d4938e2", @TCF_META_TYPE_INT=0x3]}, @TCA_EM_META_LVALUE={0x14, 0x2, [@TCF_META_TYPE_INT=0xa, @TCF_META_TYPE_INT=0x5, @TCF_META_TYPE_INT=0x6, @TCF_META_TYPE_INT=0x8]}]}}, @TCF_EM_CANID={0x14, 0x2, 0x0, 0x0, {{0x7, 0x7, 0x4000}, {{0x0, 0x1, 0x0, 0x1}, {0x1}}}}, @TCF_EM_NBYTE={0x14, 0x1, 0x0, 0x0, {{0xb457, 0x2, 0x6}, {0x8001, 0x1, 0x0, "05"}}}, @TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0x0, 0x1, 0x304}, {0x8, 0x8001, 0x6, 0x4, 0x3, 0x1, 0x1}}}, @TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0x0, 0x3, 0x1}, {0x4, 0x1, 0xd21, 0x5}}}, @TCF_EM_IPT={0x14, 0x3, 0x0, 0x0, {{0x4, 0x9, 0x8}, [@TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x9}]}}]}]}]}}]}, 0x244}}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x334}, {&(0x7f00000007c0)=""/154, 0x2c}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

267.153756ms ago: executing program 1 (id=706):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0xc8d0, &(0x7f0000000040)=ANY=[], 0x5, 0x2e3, &(0x7f0000000280)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000100)={'#! ', './file0', [{0x20, '+!@'}, {0x20, '\x93\xe0\x87\x99\xf7Bw'}, {0x20, '\xe1^\xd8H\a\x1ba \xa1\x91\x8cS^\xad\xe5w\x8b<E\x8d\x83\x1dXJ\xd4M8\xc3\xbf\x86\xd2`ei\x8bQ\v\x1d|\xc5\xfe*\xe4\xb2'}]}, 0x44)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)

223.31453ms ago: executing program 1 (id=707):
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
write$binfmt_elf64(r1, &(0x7f0000001340)=ANY=[], 0xa89)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000200)=0x6, 0x4)
sendto$inet(r1, &(0x7f00000002c0)="e2b3b8c51d71eadd2cf9dda251607cf2ac834ad26f541d5e9aa46cff60ba3d1ba4e90b24a30075ff6423ae78237d68331d7e125b57ef23912b3f43376608d71bd2be176d4f54c54f91176ff4e6ce2d6ad7c2eb", 0x53, 0x8c1, 0x0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000500)=0x100000001, 0x4)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000440)=@gcm_128={{0x304}, "e453f079df21d540", "1ec2d524d78682576ec2d9e13dad1018", "993161e3", "be0692db0b429ee8"}, 0x28)
write$binfmt_script(r2, &(0x7f0000001300), 0x8f)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4)
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000300)={'wg0\x00', <r6=>0x0})
sendto$packet(r5, &(0x7f0000000180)="0b03feff4f00020002004788aa96a13bb1000011000088ca1a00", 0x1fffc, 0x0, &(0x7f0000000140)={0x11, 0x0, r6}, 0x14)
futex(&(0x7f00000000c0), 0x5, 0x0, 0x0, &(0x7f0000004000), 0xb1004000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})

35.842957ms ago: executing program 2 (id=708):
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, &(0x7f00000002c0)}, 0x20)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b7040000000000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc}, 0x48)

0s ago: executing program 2 (id=709):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff85000000040000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x9)

kernel console output (not intermixed with test programs):

6eb0 R15: 0000000020000440
[   46.843896][ T4731]  </TASK>
[   46.849068][ T4728] vlan2: left allmulticast mode
[   46.859419][ T4733] SELinux: failed to load policy
[   46.881203][ T4736] loop1: detected capacity change from 0 to 256
[   46.897119][ T4738] loop4: detected capacity change from 0 to 256
[   46.916115][ T4741] SELinux:  policydb version -570608695 does not match my version range 15-33
[   46.925013][ T4741] SELinux: failed to load policy
[   46.970728][ T4748] syz.2.206[4748] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   46.970787][ T4748] syz.2.206[4748] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   46.974552][ T4739] loop4: detected capacity change from 0 to 512
[   47.003750][ T4748] xt_TPROXY: Can be used only with -p tcp or -p udp
[   47.013154][ T4739] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   47.014443][ T4748] netlink: 24 bytes leftover after parsing attributes in process `syz.2.206'.
[   47.036765][ T4739] EXT4-fs (loop4): 1 truncate cleaned up
[   47.042734][ T4739] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.080843][ T4327] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.138812][ T4759] loop4: detected capacity change from 0 to 512
[   47.149678][ T4758] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[   47.156321][ T4758] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   47.163941][ T4758] vhci_hcd vhci_hcd.0: Device attached
[   47.174885][ T4759] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.192026][ T4763] loop0: detected capacity change from 0 to 2048
[   47.200208][ T4759] ext4 filesystem being mounted at /12/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   47.212422][ T4759] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.282622][ T4768] netlink: 580 bytes leftover after parsing attributes in process `syz.2.211'.
[   47.347202][ T4774] SELinux: failed to load policy
[   47.375010][ T4779] syz.4.216[4779] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   47.375161][ T4779] syz.4.216[4779] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   47.388177][ T4779] FAULT_INJECTION: forcing a failure.
[   47.388177][ T4779] name failslab, interval 1, probability 0, space 0, times 0
[   47.412112][ T4779] CPU: 1 UID: 0 PID: 4779 Comm: syz.4.216 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0
[   47.422922][ T4779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   47.426183][ T4776] loop2: detected capacity change from 0 to 512
[   47.433053][ T4779] Call Trace:
[   47.433065][ T4779]  <TASK>
[   47.445493][ T4779]  dump_stack_lvl+0xf2/0x150
[   47.450126][ T4779]  dump_stack+0x15/0x20
[   47.454412][ T4779]  should_fail_ex+0x229/0x230
[   47.459201][ T4779]  ? __se_sys_memfd_create+0x230/0x600
[   47.464651][ T4779]  should_failslab+0x8f/0xb0
[   47.469385][ T4779]  __kmalloc_noprof+0xa5/0x370
[   47.474242][ T4779]  __se_sys_memfd_create+0x230/0x600
[   47.479522][ T4779]  __x64_sys_memfd_create+0x31/0x40
[   47.484818][ T4779]  x64_sys_call+0x2891/0x2d60
[   47.489486][ T4779]  do_syscall_64+0xc9/0x1c0
[   47.494065][ T4779]  ? clear_bhb_loop+0x55/0xb0
[   47.498776][ T4779]  ? clear_bhb_loop+0x55/0xb0
[   47.503453][ T4779]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   47.509369][ T4779] RIP: 0033:0x7f75ac06cef9
[   47.513841][ T4779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   47.533439][ T4779] RSP: 002b:00007f75aace6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   47.541839][ T4779] RAX: ffffffffffffffda RBX: 000000000000052e RCX: 00007f75ac06cef9
[   47.549797][ T4779] RDX: 00007f75aace6ef0 RSI: 0000000000000000 RDI: 00007f75ac0df839
[   47.557777][ T4779] RBP: 0000000020000640 R08: 00007f75aace6bb7 R09: 00007f75aace6e40
[   47.565736][ T4779] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000000
[   47.573739][ T4779] R13: 00007f75aace6ef0 R14: 00007f75aace6eb0 R15: 00000000200001c0
[   47.581703][ T4779]  </TASK>
[   47.586161][  T981] usb 3-1: new high-speed USB device number 2 using vhci_hcd
[   47.595518][ T4760] vhci_hcd: connection reset by peer
[   47.603288][ T3540] vhci_hcd: stop threads
[   47.604159][ T4776] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   47.607578][ T3540] vhci_hcd: release socket
[   47.607636][ T3540] vhci_hcd: disconnect device
[   47.620147][ T4776] ext4 filesystem being mounted at /11/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   47.651448][ T4776] __quota_error: 194 callbacks suppressed
[   47.651462][ T4776] Quota error (device loop2): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8
[   47.670039][ T4776] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   47.680344][ T4776] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.215: Failed to acquire dquot type 0
[   47.712327][ T3530] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.725192][ T4378] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   47.789689][ T3530] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.830487][ T3530] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.890383][ T3530] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.943466][ T4803] chnl_net:caif_netlink_parms(): no params data found
[   47.976688][ T3530] bridge_slave_1: left allmulticast mode
[   47.982454][ T3530] bridge_slave_1: left promiscuous mode
[   47.988313][ T3530] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.997443][ T3530] bridge_slave_0: left allmulticast mode
[   48.003185][ T3530] bridge_slave_0: left promiscuous mode
[   48.008918][ T3530] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.099032][ T3530] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   48.110201][ T3530] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   48.132385][ T3530] bond0 (unregistering): Released all slaves
[   48.190106][ T4803] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.197268][ T4803] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.204223][ T4872] syz.1.221[4872] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   48.204326][ T4872] syz.1.221[4872] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   48.204593][ T4803] bridge_slave_0: entered allmulticast mode
[   48.237585][ T4872] xt_TPROXY: Can be used only with -p tcp or -p udp
[   48.244620][   T29] audit: type=1326 audit(1725775920.124:849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4871 comm="syz.1.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f199293cef9 code=0x7ffc0000
[   48.267920][   T29] audit: type=1326 audit(1725775920.124:850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4871 comm="syz.1.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f199293cef9 code=0x7ffc0000
[   48.291271][   T29] audit: type=1326 audit(1725775920.124:851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4871 comm="syz.1.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f199293cef9 code=0x7ffc0000
[   48.305677][ T4803] bridge_slave_0: entered promiscuous mode
[   48.314677][   T29] audit: type=1326 audit(1725775920.124:852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4871 comm="syz.1.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f199293cef9 code=0x7ffc0000
[   48.324270][ T4803] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.343573][   T29] audit: type=1326 audit(1725775920.124:853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4871 comm="syz.1.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f199293cef9 code=0x7ffc0000
[   48.350648][ T4803] bridge0: port 2(bridge_slave_1) entered disabled state
[   48.373749][   T29] audit: type=1326 audit(1725775920.124:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4871 comm="syz.1.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f199293cef9 code=0x7ffc0000
[   48.384031][ T4803] bridge_slave_1: entered allmulticast mode
[   48.404092][   T29] audit: type=1326 audit(1725775920.124:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4871 comm="syz.1.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f199293cef9 code=0x7ffc0000
[   48.404117][   T29] audit: type=1326 audit(1725775920.124:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4871 comm="syz.1.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f199293cef9 code=0x7ffc0000
[   48.412417][ T4803] bridge_slave_1: entered promiscuous mode
[   48.568865][ T4872] netlink: 24 bytes leftover after parsing attributes in process `syz.1.221'.
[   48.600594][ T3530] hsr_slave_0: left promiscuous mode
[   48.615587][ T3530] hsr_slave_1: left promiscuous mode
[   48.628477][ T3530] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   48.636000][ T3530] batman_adv: batadv0: Removing interface: batadv_slave_0
[   48.676949][ T3530] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   48.684378][ T3530] batman_adv: batadv0: Removing interface: batadv_slave_1
[   48.710627][ T3530] veth1_macvtap: left promiscuous mode
[   48.716239][ T3530] veth0_macvtap: left promiscuous mode
[   48.721868][ T3530] veth1_vlan: left promiscuous mode
[   48.727120][ T3530] veth0_vlan: left promiscuous mode
[   48.895149][ T3530] team0 (unregistering): Port device team_slave_1 removed
[   48.907405][ T3530] team0 (unregistering): Port device team_slave_0 removed
[   48.952728][ T4803] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   48.962157][ T4943] netlink: 'syz.2.225': attribute type 1 has an invalid length.
[   48.967251][ T4952] loop1: detected capacity change from 0 to 2048
[   48.969856][ T4943] netlink: 'syz.2.225': attribute type 4 has an invalid length.
[   48.979960][ T4952] EXT4-fs: test_dummy_encryption option not supported
[   48.983815][ T4943] netlink: 15334 bytes leftover after parsing attributes in process `syz.2.225'.
[   49.057456][ T4803] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   49.090827][ T4965] SELinux:  policydb version -570608695 does not match my version range 15-33
[   49.103609][ T4965] SELinux: failed to load policy
[   49.127032][ T4803] team0: Port device team_slave_0 added
[   49.146896][ T4803] team0: Port device team_slave_1 added
[   49.175326][ T4803] batman_adv: batadv0: Adding interface: batadv_slave_0
[   49.182413][ T4803] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   49.208373][ T4803] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   49.223465][ T4962] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   49.223770][ T4803] batman_adv: batadv0: Adding interface: batadv_slave_1
[   49.237477][ T4803] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   49.246592][ T4962] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[   49.263530][ T4803] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   49.381987][ T4803] hsr_slave_0: entered promiscuous mode
[   49.390221][ T4803] hsr_slave_1: entered promiscuous mode
[   49.397610][ T4803] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   49.405520][ T4803] Cannot create hsr debugfs directory
[   49.407332][ T4989] syz.2.233[4989] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   49.416170][ T4989] syz.2.233[4989] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   49.432362][ T4991] loop1: detected capacity change from 0 to 128
[   49.436236][ T4989] xt_TPROXY: Can be used only with -p tcp or -p udp
[   49.477850][ T4989] netlink: 24 bytes leftover after parsing attributes in process `syz.2.233'.
[   49.555356][ T3530] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.594407][ T4946] chnl_net:caif_netlink_parms(): no params data found
[   49.627549][ T3530] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.644222][ T5009] netlink: 4 bytes leftover after parsing attributes in process `syz.2.236'.
[   49.694645][ T3530] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.747488][ T4946] bridge0: port 1(bridge_slave_0) entered blocking state
[   49.754562][ T4946] bridge0: port 1(bridge_slave_0) entered disabled state
[   49.761781][ T4946] bridge_slave_0: entered allmulticast mode
[   49.768326][ T4946] bridge_slave_0: entered promiscuous mode
[   49.777971][ T3530] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.791058][ T4946] bridge0: port 2(bridge_slave_1) entered blocking state
[   49.798199][ T4946] bridge0: port 2(bridge_slave_1) entered disabled state
[   49.805924][ T4946] bridge_slave_1: entered allmulticast mode
[   49.812316][ T4946] bridge_slave_1: entered promiscuous mode
[   49.840786][ T4946] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   49.851212][ T4946] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   49.891998][ T4946] team0: Port device team_slave_0 added
[   49.910111][ T3530] bridge_slave_1: left allmulticast mode
[   49.916002][ T3530] bridge_slave_1: left promiscuous mode
[   49.921643][ T3530] bridge0: port 2(bridge_slave_1) entered disabled state
[   49.934873][ T3530] bridge_slave_0: left allmulticast mode
[   49.940658][ T3530] bridge_slave_0: left promiscuous mode
[   49.946368][ T3530] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.069139][ T3530] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   50.079468][ T3530] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   50.089736][ T3530] bond0 (unregistering): Released all slaves
[   50.098179][ T4946] team0: Port device team_slave_1 added
[   50.125631][ T4946] batman_adv: batadv0: Adding interface: batadv_slave_0
[   50.132722][ T4946] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   50.158840][ T4946] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   50.170099][ T4946] batman_adv: batadv0: Adding interface: batadv_slave_1
[   50.177262][ T4946] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   50.203309][ T4946] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   50.233525][ T4946] hsr_slave_0: entered promiscuous mode
[   50.239511][ T4946] hsr_slave_1: entered promiscuous mode
[   50.245394][ T4946] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   50.252956][ T4946] Cannot create hsr debugfs directory
[   50.297142][ T4803] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   50.308145][ T3530] hsr_slave_0: left promiscuous mode
[   50.314763][ T3530] hsr_slave_1: left promiscuous mode
[   50.320865][ T3530] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   50.328424][ T3530] batman_adv: batadv0: Removing interface: batadv_slave_0
[   50.337066][ T3530] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   50.344504][ T3530] batman_adv: batadv0: Removing interface: batadv_slave_1
[   50.353231][ T3530] veth1_macvtap: left promiscuous mode
[   50.358913][ T3530] veth0_macvtap: left promiscuous mode
[   50.364449][ T3530] veth1_vlan: left promiscuous mode
[   50.369793][ T3530] veth0_vlan: left promiscuous mode
[   50.449924][ T3530] team0 (unregistering): Port device team_slave_1 removed
[   50.460111][ T3530] team0 (unregistering): Port device team_slave_0 removed
[   50.514842][ T4803] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   50.523525][ T4803] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   50.544814][ T4803] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   50.590948][ T4803] 8021q: adding VLAN 0 to HW filter on device bond0
[   50.607112][ T4803] 8021q: adding VLAN 0 to HW filter on device team0
[   50.619063][   T28] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.626150][   T28] bridge0: port 1(bridge_slave_0) entered forwarding state
[   50.649381][ T4803] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   50.659847][ T4803] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   50.683627][   T28] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.690810][   T28] bridge0: port 2(bridge_slave_1) entered forwarding state
[   50.693183][ T5089] SELinux:  policydb version -570608695 does not match my version range 15-33
[   50.707429][ T5089] SELinux: failed to load policy
[   50.739312][ T5092] SELinux:  policydb version -570608695 does not match my version range 15-33
[   50.749740][ T5092] SELinux: failed to load policy
[   50.822313][ T4803] 8021q: adding VLAN 0 to HW filter on device batadv0
[   50.891616][ T4946] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   50.911663][ T4946] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   50.930060][ T4946] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   50.950267][ T4946] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   51.018798][ T4803] veth0_vlan: entered promiscuous mode
[   51.051163][ T4803] veth1_vlan: entered promiscuous mode
[   51.093293][ T4946] 8021q: adding VLAN 0 to HW filter on device bond0
[   51.115301][ T5137] loop4: detected capacity change from 0 to 2048
[   51.119568][ T4946] 8021q: adding VLAN 0 to HW filter on device team0
[   51.146026][ T3540] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.153171][ T3540] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.161170][ T5137] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.191844][ T4803] veth0_macvtap: entered promiscuous mode
[   51.212776][ T3530] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.219895][ T3530] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.229862][ T5137] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.247: bg 0: block 234: padding at end of block bitmap is not set
[   51.246822][ T4803] veth1_macvtap: entered promiscuous mode
[   51.252912][ T5137] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 32 with error 28
[   51.256910][ T4803] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   51.265178][ T5137] EXT4-fs (loop4): This should not happen!! Data will be lost
[   51.265178][ T5137] 
[   51.275586][ T4803] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   51.275601][ T4803] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   51.285203][ T5137] EXT4-fs (loop4): Total free blocks count 0
[   51.285215][ T5137] EXT4-fs (loop4): Free/Dirty block details
[   51.285225][ T5137] EXT4-fs (loop4): free_blocks=0
[   51.285236][ T5137] EXT4-fs (loop4): dirty_blocks=32
[   51.285246][ T5137] EXT4-fs (loop4): Block reservation details
[   51.285255][ T5137] EXT4-fs (loop4): i_reserved_data_blocks=2
[   51.340226][ T4803] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   51.350058][ T4803] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   51.360491][ T4803] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   51.406563][ T4803] batman_adv: batadv0: Interface activated: batadv_slave_0
[   51.423566][ T4946] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   51.434065][ T4946] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   51.454511][ T4803] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   51.465157][ T4803] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   51.475193][ T4803] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   51.475206][ T4803] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   51.475217][ T4803] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   51.475227][ T4803] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   51.476827][ T4803] batman_adv: batadv0: Interface activated: batadv_slave_1
[   51.487667][ T4803] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   51.539396][ T4803] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   51.539428][ T4803] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   51.539457][ T4803] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   51.549099][ T5160] netlink: 4 bytes leftover after parsing attributes in process `syz.2.250'.
[   51.608774][ T5183] SELinux:  policydb version -570608695 does not match my version range 15-33
[   51.608804][ T5183] SELinux: failed to load policy
[   51.642718][ T5189] SELinux:  policydb version -570608695 does not match my version range 15-33
[   51.663018][ T5189] SELinux: failed to load policy
[   51.679848][ T4946] 8021q: adding VLAN 0 to HW filter on device batadv0
[   51.830165][ T5216] loop2: detected capacity change from 0 to 128
[   51.832435][ T4946] veth0_vlan: entered promiscuous mode
[   51.845656][ T5220] syz.0.257[5220] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   51.845775][ T5220] syz.0.257[5220] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   51.847876][ T4946] veth1_vlan: entered promiscuous mode
[   51.874714][ T5137] syz.4.247 (5137) used greatest stack depth: 9616 bytes left
[   51.890188][ T5220] xt_TPROXY: Can be used only with -p tcp or -p udp
[   51.914308][ T4327] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.920508][ T4946] veth0_macvtap: entered promiscuous mode
[   51.937120][ T5220] netlink: 24 bytes leftover after parsing attributes in process `syz.0.257'.
[   51.955380][ T5226] SELinux:  policydb version -570608695 does not match my version range 15-33
[   51.959012][ T4946] veth1_macvtap: entered promiscuous mode
[   51.971973][ T5226] SELinux: failed to load policy
[   52.033752][ T4946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   52.044245][ T4946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.054166][ T4946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   52.064752][ T4946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.074648][ T4946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   52.085146][ T4946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.095150][ T4946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   52.105881][ T4946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.122176][ T4946] batman_adv: batadv0: Interface activated: batadv_slave_0
[   52.170589][ T4946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   52.180517][ T5250] SELinux:  policydb version -570608695 does not match my version range 15-33
[   52.181064][ T4946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.190769][ T5250] SELinux: failed to load policy
[   52.199698][ T4946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   52.199715][ T4946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.225294][ T4946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   52.235850][ T4946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.245930][ T4946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   52.254565][ T5254] SELinux:  policydb version -570608695 does not match my version range 15-33
[   52.256371][ T4946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.258937][ T4946] batman_adv: batadv0: Interface activated: batadv_slave_1
[   52.275150][ T5254] SELinux: failed to load policy
[   52.285221][ T4946] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   52.296350][ T4946] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   52.305174][ T4946] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   52.313953][ T4946] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   52.331533][ T5255] delete_channel: no stack
[   52.350158][ T5256] loop0: detected capacity change from 0 to 2048
[   52.395016][ T5263] loop4: detected capacity change from 0 to 128
[   52.417318][ T5265] SELinux: failed to load policy
[   52.459573][ T5261] loop2: detected capacity change from 0 to 512
[   52.473013][ T5261] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.269: corrupted in-inode xattr: invalid ea_ino
[   52.498488][ T5261] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.269: couldn't read orphan inode 15 (err -117)
[   52.513194][ T5261] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.520609][ T5273] syz.3.273[5273] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   52.526276][ T5273] syz.3.273[5273] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   52.538361][ T4378] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.562290][ T5273] xt_TPROXY: Can be used only with -p tcp or -p udp
[   52.581373][ T5275] loop2: detected capacity change from 0 to 1024
[   52.588507][ T5275] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[   52.599536][ T5275] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[   52.599771][ T5273] netlink: 24 bytes leftover after parsing attributes in process `syz.3.273'.
[   52.610029][ T5275] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   52.628333][ T5275] EXT4-fs (loop2): external journal device major/minor numbers have changed
[   52.637031][ T5275] EXT4-fs (loop2): filesystem has both journal inode and journal device!
[   52.679091][   T29] kauditd_printk_skb: 239 callbacks suppressed
[   52.679105][   T29] audit: type=1326 audit(1725775924.564:1096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5272 comm="syz.3.273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa87265cef9 code=0x7ffc0000
[   52.710511][   T29] audit: type=1326 audit(1725775924.564:1097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5272 comm="syz.3.273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa87265cef9 code=0x7ffc0000
[   52.734110][   T29] audit: type=1326 audit(1725775924.564:1098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5272 comm="syz.3.273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=451 compat=0 ip=0x7fa87265cef9 code=0x7ffc0000
[   52.757493][   T29] audit: type=1326 audit(1725775924.564:1099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5272 comm="syz.3.273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa87265cef9 code=0x7ffc0000
[   52.781083][   T29] audit: type=1326 audit(1725775924.564:1100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5272 comm="syz.3.273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa87265cef9 code=0x7ffc0000
[   52.804546][   T29] audit: type=1326 audit(1725775924.564:1101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5272 comm="syz.3.273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fa87265cef9 code=0x7ffc0000
[   52.828073][   T29] audit: type=1326 audit(1725775924.564:1102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5272 comm="syz.3.273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa87265cef9 code=0x7ffc0000
[   52.851510][   T29] audit: type=1326 audit(1725775924.564:1103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5272 comm="syz.3.273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fa87265cef9 code=0x7ffc0000
[   52.872326][ T5284] SELinux:  policydb version -570608695 does not match my version range 15-33
[   52.875011][   T29] audit: type=1326 audit(1725775924.564:1104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5272 comm="syz.3.273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa87265cef9 code=0x7ffc0000
[   52.907390][   T29] audit: type=1326 audit(1725775924.564:1105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5272 comm="syz.3.273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa87265cef9 code=0x7ffc0000
[   52.909520][ T5284] SELinux: failed to load policy
[   52.930869][  T981] vhci_hcd: vhci_device speed not set
[   53.019317][ T5293] syz_tun: refused to change device tx_queue_len
[   53.025841][ T5293] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[   53.060045][ T5296] SELinux: failed to load policy
[   53.069627][ T5298] loop1: detected capacity change from 0 to 128
[   53.077791][ T5298] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   53.171456][ T3684] FAT-fs (loop1): error, corrupted directory (invalid entries)
[   53.179196][ T3684] FAT-fs (loop1): Filesystem has been set read-only
[   53.206572][ T3684] FAT-fs (loop1): error, corrupted directory (invalid entries)
[   53.296734][ T5307] program syz.4.287 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   53.305966][ T5307] FAULT_INJECTION: forcing a failure.
[   53.305966][ T5307] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   53.319046][ T5307] CPU: 1 UID: 0 PID: 5307 Comm: syz.4.287 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0
[   53.329710][ T5307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   53.339853][ T5307] Call Trace:
[   53.343134][ T5307]  <TASK>
[   53.346057][ T5307]  dump_stack_lvl+0xf2/0x150
[   53.350645][ T5307]  dump_stack+0x15/0x20
[   53.354813][ T5307]  should_fail_ex+0x229/0x230
[   53.359487][ T5307]  should_fail+0xb/0x10
[   53.363651][ T5307]  should_fail_usercopy+0x1a/0x20
[   53.368695][ T5307]  _copy_from_user+0x1e/0xd0
[   53.373280][ T5307]  scsi_ioctl+0x11dc/0x1540
[   53.377785][ T5307]  ? avc_has_perm+0xd4/0x160
[   53.382370][ T5307]  ? file_has_perm+0x347/0x390
[   53.387125][ T5307]  ? do_vfs_ioctl+0x99e/0x1560
[   53.391955][ T5307]  sg_ioctl+0xdaa/0x1870
[   53.396202][ T5307]  ? __pfx_sg_ioctl+0x10/0x10
[   53.401028][ T5307]  __se_sys_ioctl+0xd3/0x150
[   53.405621][ T5307]  __x64_sys_ioctl+0x43/0x50
[   53.410398][ T5307]  x64_sys_call+0x15cc/0x2d60
[   53.415080][ T5307]  do_syscall_64+0xc9/0x1c0
[   53.419581][ T5307]  ? clear_bhb_loop+0x55/0xb0
[   53.424247][ T5307]  ? clear_bhb_loop+0x55/0xb0
[   53.428964][ T5307]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.434859][ T5307] RIP: 0033:0x7f75ac06cef9
[   53.439292][ T5307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.458916][ T5307] RSP: 002b:00007f75aace7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   53.467325][ T5307] RAX: ffffffffffffffda RBX: 00007f75ac225f80 RCX: 00007f75ac06cef9
[   53.475581][ T5307] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000003
[   53.483634][ T5307] RBP: 00007f75aace7090 R08: 0000000000000000 R09: 0000000000000000
[   53.491596][ T5307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   53.499557][ T5307] R13: 0000000000000000 R14: 00007f75ac225f80 R15: 00007fffd0d38588
[   53.507714][ T5307]  </TASK>
[   53.553080][ T5309] SELinux:  policydb version -570608695 does not match my version range 15-33
[   53.562852][ T5309] SELinux: failed to load policy
[   53.615266][ T5300] netlink: 188 bytes leftover after parsing attributes in process `syz.0.284'.
[   53.765612][ T5322] syz.2.293 (5322) used greatest stack depth: 9552 bytes left
[   53.802034][ T5345] loop4: detected capacity change from 0 to 128
[   53.840289][ T3530] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.862158][ T5354] SELinux: failed to load policy
[   53.901070][ T3530] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.960539][ T3530] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.006121][ T5375] SELinux:  policydb version -570608695 does not match my version range 15-33
[   54.021314][ T3530] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.106173][ T5379] hub 6-0:1.0: USB hub found
[   54.125074][ T5379] hub 6-0:1.0: 8 ports detected
[   54.238660][ T3530] bridge_slave_1: left allmulticast mode
[   54.244349][ T3530] bridge_slave_1: left promiscuous mode
[   54.250250][ T3530] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.322096][ T3530] bridge_slave_0: left allmulticast mode
[   54.327791][ T3530] bridge_slave_0: left promiscuous mode
[   54.333492][ T3530] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.510804][ T3530] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   54.522436][ T3530] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   54.533300][ T3530] bond0 (unregistering): Released all slaves
[   54.546486][ T5391] netlink: 'syz.3.305': attribute type 4 has an invalid length.
[   54.562171][ T5350] chnl_net:caif_netlink_parms(): no params data found
[   54.573902][ T5413] syz_tun: refused to change device tx_queue_len
[   54.580348][ T5413] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[   54.606041][ T5421] SELinux:  policydb version -570608695 does not match my version range 15-33
[   54.635311][ T5425] loop0: detected capacity change from 0 to 128
[   54.644958][ T5417] syz.2.310[5417] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   54.645013][ T5417] syz.2.310[5417] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   54.666673][ T5428] FAULT_INJECTION: forcing a failure.
[   54.666673][ T5428] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   54.691139][ T5428] CPU: 1 UID: 0 PID: 5428 Comm: syz.4.315 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0
[   54.701795][ T5428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   54.711849][ T5428] Call Trace:
[   54.715127][ T5428]  <TASK>
[   54.718059][ T5428]  dump_stack_lvl+0xf2/0x150
[   54.722693][ T5428]  dump_stack+0x15/0x20
[   54.726893][ T5428]  should_fail_ex+0x229/0x230
[   54.731586][ T5428]  should_fail+0xb/0x10
[   54.735844][ T5428]  should_fail_usercopy+0x1a/0x20
[   54.738032][ T5426] loop3: detected capacity change from 0 to 512
[   54.740921][ T5428]  _copy_from_user+0x1e/0xd0
[   54.751796][ T5428]  copy_msghdr_from_user+0x54/0x2a0
[   54.757105][ T5428]  __sys_sendmsg+0x17d/0x280
[   54.761753][ T5428]  __x64_sys_sendmsg+0x46/0x50
[   54.766554][ T5428]  x64_sys_call+0x2689/0x2d60
[   54.771231][ T5428]  do_syscall_64+0xc9/0x1c0
[   54.775954][ T5428]  ? clear_bhb_loop+0x55/0xb0
[   54.780618][ T5428]  ? clear_bhb_loop+0x55/0xb0
[   54.785283][ T5428]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.791215][ T5428] RIP: 0033:0x7f75ac06cef9
[   54.795620][ T5428] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.815294][ T5428] RSP: 002b:00007f75aace7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   54.823735][ T5428] RAX: ffffffffffffffda RBX: 00007f75ac225f80 RCX: 00007f75ac06cef9
[   54.831747][ T5428] RDX: 0000000000000000 RSI: 0000000020005000 RDI: 0000000000000005
[   54.839756][ T5428] RBP: 00007f75aace7090 R08: 0000000000000000 R09: 0000000000000000
[   54.847715][ T5428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   54.855764][ T5428] R13: 0000000000000000 R14: 00007f75ac225f80 R15: 00007fffd0d38588
[   54.863786][ T5428]  </TASK>
[   54.884990][ T5426] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   54.898212][ T5426] ext4 filesystem being mounted at /11/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.908830][ T3530] hsr_slave_0: left promiscuous mode
[   54.914951][ T3530] hsr_slave_1: left promiscuous mode
[   54.921802][ T3530] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   54.929539][ T3530] batman_adv: batadv0: Removing interface: batadv_slave_0
[   54.947741][ T3530] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   54.953805][ T5439] netlink: 36 bytes leftover after parsing attributes in process `syz.2.316'.
[   54.955205][ T3530] batman_adv: batadv0: Removing interface: batadv_slave_1
[   54.975715][ T3530] veth1_macvtap: left promiscuous mode
[   54.977049][ T5426] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.313: Failed to acquire dquot type 0
[   54.981210][ T3530] veth0_macvtap: left promiscuous mode
[   54.981267][ T3530] veth1_vlan: left promiscuous mode
[   54.981299][ T3530] veth0_vlan: left promiscuous mode
[   55.030921][ T5443] loop4: detected capacity change from 0 to 512
[   55.043356][ T5443] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   55.043463][ T5443] EXT4-fs (loop4): orphan cleanup on readonly fs
[   55.043735][ T5443] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.318: invalid indirect mapped block 4294967295 (level 1)
[   55.043957][ T5443] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.318: invalid indirect mapped block 4294967295 (level 1)
[   55.044164][ T5443] EXT4-fs (loop4): 2 truncates cleaned up
[   55.044423][ T5443] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   55.048089][ T5443] netlink: 40 bytes leftover after parsing attributes in process `syz.4.318'.
[   55.093007][ T4946] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   55.093599][ T4327] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.132450][ T5446] loop2: detected capacity change from 0 to 512
[   55.178556][ T5446] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.191756][ T5446] ext4 filesystem being mounted at /38/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.203440][ T3530] team0 (unregistering): Port device team_slave_1 removed
[   55.212270][ T3530] team0 (unregistering): Port device team_slave_0 removed
[   55.235496][ T3530] team0 (unregistering): Port device batadv0 removed
[   55.249873][ T5433] bridge_slave_1: left allmulticast mode
[   55.249891][ T5433] bridge_slave_1: left promiscuous mode
[   55.261261][ T5433] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.271226][ T5350] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.271262][ T5350] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.271354][ T5350] bridge_slave_0: entered allmulticast mode
[   55.271930][ T5350] bridge_slave_0: entered promiscuous mode
[   55.298779][ T5350] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.298820][ T5350] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.298941][ T5350] bridge_slave_1: entered allmulticast mode
[   55.299363][ T5350] bridge_slave_1: entered promiscuous mode
[   55.316321][ T5449] netlink: 'syz.4.320': attribute type 7 has an invalid length.
[   55.363974][ T5350] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   55.382491][ T5350] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   55.413995][ T5350] team0: Port device team_slave_0 added
[   55.414868][ T5350] team0: Port device team_slave_1 added
[   55.425463][ T5463] FAULT_INJECTION: forcing a failure.
[   55.425463][ T5463] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   55.425485][ T5463] CPU: 1 UID: 0 PID: 5463 Comm: +}[@ Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0
[   55.425558][ T5463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   55.425569][ T5463] Call Trace:
[   55.425581][ T5463]  <TASK>
[   55.425587][ T5463]  dump_stack_lvl+0xf2/0x150
[   55.425613][ T5463]  dump_stack+0x15/0x20
[   55.425628][ T5463]  should_fail_ex+0x229/0x230
[   55.425725][ T5463]  should_fail+0xb/0x10
[   55.425743][ T5463]  should_fail_usercopy+0x1a/0x20
[   55.425783][ T5463]  _copy_to_user+0x1e/0xa0
[   55.425805][ T5463]  simple_read_from_buffer+0xa0/0x110
[   55.425938][ T5463]  proc_fail_nth_read+0xff/0x140
[   55.425957][ T5463]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   55.425973][ T5463]  vfs_read+0x1a2/0x6e0
[   55.426012][ T5463]  ? __rcu_read_unlock+0x4e/0x70
[   55.426034][ T5463]  ? __fget_files+0x1da/0x210
[   55.426058][ T5463]  ksys_read+0xeb/0x1b0
[   55.426136][ T5463]  __x64_sys_read+0x42/0x50
[   55.426219][ T5463]  x64_sys_call+0x27d3/0x2d60
[   55.426243][ T5463]  do_syscall_64+0xc9/0x1c0
[   55.426263][ T5463]  ? clear_bhb_loop+0x55/0xb0
[   55.426282][ T5463]  ? clear_bhb_loop+0x55/0xb0
[   55.426297][ T5463]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.426359][ T5463] RIP: 0033:0x7fd1fc98b93c
[   55.426372][ T5463] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[   55.426387][ T5463] RSP: 002b:00007fd1fb607030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   55.426404][ T5463] RAX: ffffffffffffffda RBX: 00007fd1fcb45f80 RCX: 00007fd1fc98b93c
[   55.426417][ T5463] RDX: 000000000000000f RSI: 00007fd1fb6070a0 RDI: 0000000000000003
[   55.426439][ T5463] RBP: 00007fd1fb607090 R08: 0000000000000000 R09: 0000000000000000
[   55.426452][ T5463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   55.426464][ T5463] R13: 0000000000000000 R14: 00007fd1fcb45f80 R15: 00007ffe920d4218
[   55.426482][ T5463]  </TASK>
[   55.445176][ T5467] SELinux:  policydb version -570608695 does not match my version range 15-33
[   55.445513][ T5350] batman_adv: batadv0: Adding interface: batadv_slave_0
[   55.445626][ T5350] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.445648][ T5350] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   55.446258][ T5350] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.446268][ T5350] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.446325][ T5350] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.497855][ T5350] hsr_slave_0: entered promiscuous mode
[   55.498264][ T5350] hsr_slave_1: entered promiscuous mode
[   55.867740][ T5350] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   55.874830][ T5350] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   55.884596][ T5350] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   56.047896][ T5509] loop3: detected capacity change from 0 to 512
[   56.057381][ T5350] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   56.065298][ T4378] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.105213][ T5512] SELinux:  policydb version -570608695 does not match my version range 15-33
[   56.128491][ T5509] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   56.141066][ T5350] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.147075][ T5350] 8021q: adding VLAN 0 to HW filter on device team0
[   56.157574][ T3530] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.164776][ T3530] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.168990][ T5509] ext4 filesystem being mounted at /13/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.192156][   T50] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.199253][   T50] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.226905][ T5350] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   56.237361][ T5350] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   56.255416][ T5500] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.329: Failed to acquire dquot type 0
[   56.347857][ T5350] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.356441][ T4946] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   56.436703][ T5350] veth0_vlan: entered promiscuous mode
[   56.468547][ T5350] veth1_vlan: entered promiscuous mode
[   56.500840][ T5350] veth0_macvtap: entered promiscuous mode
[   56.518310][ T5350] veth1_macvtap: entered promiscuous mode
[   56.540579][ T5350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   56.551326][ T5350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   56.551409][ T5350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   56.551422][ T5350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   56.551443][ T5350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   56.551453][ T5350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   56.551463][ T5350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   56.551473][ T5350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   56.553458][ T5350] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.639582][ T5569] sel_write_load: 6 callbacks suppressed
[   56.639659][ T5569] SELinux: failed to load policy
[   56.660234][ T5350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   56.670817][ T5350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   56.680657][ T5350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   56.691137][ T5350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   56.701049][ T5350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   56.711685][ T5350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   56.721778][ T5350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   56.732235][ T5350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   56.746300][ T5350] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.763512][ T5350] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.772353][ T5350] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.781294][ T5350] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.784679][ T5578] syz.4.341[5578] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   56.789995][ T5350] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.820722][ T5578] syz.4.341[5578] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   56.842262][ T5578] xt_TPROXY: Can be used only with -p tcp or -p udp
[   56.865406][ T5578] netlink: 24 bytes leftover after parsing attributes in process `syz.4.341'.
[   56.872499][ T5583] loop2: detected capacity change from 0 to 128
[   56.924366][ T5583] netlink: 144 bytes leftover after parsing attributes in process `syz.2.342'.
[   56.967286][ T5595] loop1: detected capacity change from 0 to 128
[   57.005369][ T5600] loop1: detected capacity change from 0 to 128
[   57.058797][ T5604] FAULT_INJECTION: forcing a failure.
[   57.058797][ T5604] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   57.071947][ T5604] CPU: 1 UID: 0 PID: 5604 Comm: syz.4.346 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0
[   57.082622][ T5604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   57.092699][ T5604] Call Trace:
[   57.095971][ T5604]  <TASK>
[   57.098910][ T5604]  dump_stack_lvl+0xf2/0x150
[   57.103495][ T5604]  dump_stack+0x15/0x20
[   57.107686][ T5604]  should_fail_ex+0x229/0x230
[   57.112419][ T5604]  should_fail+0xb/0x10
[   57.116598][ T5604]  should_fail_usercopy+0x1a/0x20
[   57.121629][ T5604]  _copy_from_user+0x1e/0xd0
[   57.126237][ T5604]  sk_setsockopt+0x1c2/0x1f30
[   57.130956][ T5604]  sock_setsockopt+0x3c/0x50
[   57.135536][ T5604]  __sys_setsockopt+0x194/0x250
[   57.140381][ T5604]  __x64_sys_setsockopt+0x66/0x80
[   57.145392][ T5604]  x64_sys_call+0x278d/0x2d60
[   57.150060][ T5604]  do_syscall_64+0xc9/0x1c0
[   57.154556][ T5604]  ? clear_bhb_loop+0x55/0xb0
[   57.159359][ T5604]  ? clear_bhb_loop+0x55/0xb0
[   57.164022][ T5604]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.169911][ T5604] RIP: 0033:0x7f75ac06cef9
[   57.174387][ T5604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.193992][ T5604] RSP: 002b:00007f75aace7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   57.202450][ T5604] RAX: ffffffffffffffda RBX: 00007f75ac225f80 RCX: 00007f75ac06cef9
[   57.210549][ T5604] RDX: 0000000000000033 RSI: 0000000000000001 RDI: 0000000000000006
[   57.218507][ T5604] RBP: 00007f75aace7090 R08: 0000000000000010 R09: 0000000000000000
[   57.226466][ T5604] R10: 00000000200a2000 R11: 0000000000000246 R12: 0000000000000001
[   57.234511][ T5604] R13: 0000000000000000 R14: 00007f75ac225f80 R15: 00007fffd0d38588
[   57.242500][ T5604]  </TASK>
[   57.272056][ T5609] SELinux:  policydb version -570608695 does not match my version range 15-33
[   57.281644][ T5609] SELinux: failed to load policy
[   57.327687][ T5613] SELinux: failed to load policy
[   57.444948][ T5626] loop0: detected capacity change from 0 to 128
[   57.454720][ T5629] netlink: 84 bytes leftover after parsing attributes in process `syz.4.355'.
[   57.461887][ T5626] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   57.474309][ T5629] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[   57.513747][ T5631] loop4: detected capacity change from 0 to 512
[   57.542015][ T5631] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.355: corrupted in-inode xattr: e_name out of bounds
[   57.575657][ T5631] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.355: couldn't read orphan inode 15 (err -117)
[   57.610158][ T5631] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   57.785447][   T29] kauditd_printk_skb: 204 callbacks suppressed
[   57.785461][   T29] audit: type=1326 audit(1725775929.664:1306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5640 comm="syz.3.360" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa87265cef9 code=0x0
[   58.013348][ T5647] delete_channel: no stack
[   58.322459][ T4327] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.352813][ T5652] SELinux: failed to load policy
[   58.383735][ T5656] netlink: 'syz.4.366': attribute type 10 has an invalid length.
[   58.391518][ T5656] netlink: 40 bytes leftover after parsing attributes in process `syz.4.366'.
[   58.402017][ T5656] bridge0: port 3(ipvlan0) entered blocking state
[   58.408953][ T5656] bridge0: port 3(ipvlan0) entered disabled state
[   58.416079][ T5656] ipvlan0: entered allmulticast mode
[   58.421384][ T5656] veth0_vlan: entered allmulticast mode
[   58.427643][ T5656] ipvlan0: left allmulticast mode
[   58.432686][ T5656] veth0_vlan: left allmulticast mode
[   58.438809][ T5656] A link change request failed with some changes committed already. Interface ipvlan0 may have been left with an inconsistent configuration, please check.
[   58.479300][   T29] audit: type=1400 audit(1725775930.364:1307): avc:  denied  { connect } for  pid=5658 comm="syz.4.367" lport=7 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   58.505037][ T5659] loop4: detected capacity change from 0 to 512
[   58.533921][ T5661] netlink: 'syz.4.368': attribute type 7 has an invalid length.
[   58.714525][ T5672] loop3: detected capacity change from 0 to 2048
[   58.821992][ T5676] netlink: 4 bytes leftover after parsing attributes in process `syz.4.376'.
[   58.919979][ T5674] delete_channel: no stack
[   58.960532][ T5684] loop4: detected capacity change from 0 to 512
[   58.977481][ T5684] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.990402][ T5684] ext4 filesystem being mounted at /65/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   59.001669][ T5684] Quota error (device loop4): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0
[   59.012186][ T5684] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[   59.021607][ T5684] EXT4-fs error (device loop4): ext4_acquire_dquot:6848: comm syz.4.379: Failed to acquire dquot type 0
[   59.033835][   T29] audit: type=1400 audit(1725775930.924:1308): avc:  denied  { name_bind } for  pid=5683 comm="syz.4.379" src=3618 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[   59.062608][   T50] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.079443][ T4327] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.120070][   T50] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.149241][   T50] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.199216][   T50] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.287051][   T50] bridge_slave_1: left allmulticast mode
[   59.292753][   T50] bridge_slave_1: left promiscuous mode
[   59.298597][   T50] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.312680][   T50] bridge_slave_0: left allmulticast mode
[   59.318365][   T50] bridge_slave_0: left promiscuous mode
[   59.324065][   T50] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.431572][   T50] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   59.442011][   T50] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   59.453749][   T50] bond0 (unregistering): Released all slaves
[   59.476919][ T5699] netlink: 188 bytes leftover after parsing attributes in process `syz.4.383'.
[   59.537850][ T5694] chnl_net:caif_netlink_parms(): no params data found
[   59.572085][   T50] hsr_slave_0: left promiscuous mode
[   59.581117][   T50] hsr_slave_1: left promiscuous mode
[   59.591935][   T50] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   59.599511][   T50] batman_adv: batadv0: Removing interface: batadv_slave_0
[   59.641835][   T50] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   59.649302][   T50] batman_adv: batadv0: Removing interface: batadv_slave_1
[   59.700766][   T50] veth1_macvtap: left promiscuous mode
[   59.706353][   T50] veth0_macvtap: left promiscuous mode
[   59.711909][   T50] veth1_vlan: left promiscuous mode
[   59.717316][   T50] veth0_vlan: left promiscuous mode
[   59.742164][ T5733] loop0: detected capacity change from 0 to 128
[   59.834740][ T5736] loop0: detected capacity change from 0 to 512
[   59.855252][ T5736] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   59.871664][ T5736] ext4 filesystem being mounted at /27/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   59.889487][ T5735] Quota error (device loop0): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8
[   59.902435][ T5735] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[   59.913223][ T5735] EXT4-fs error (device loop0): ext4_acquire_dquot:6848: comm syz.0.388: Failed to acquire dquot type 0
[   59.932647][   T50] team0 (unregistering): Port device team_slave_1 removed
[   59.943374][   T50] team0 (unregistering): Port device team_slave_0 removed
[   59.984894][ T4803] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   60.058091][ T5742] SELinux: failed to load policy
[   60.074255][ T5746] loop0: detected capacity change from 0 to 128
[   60.105222][ T5694] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.112337][ T5694] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.152944][ T5694] bridge_slave_0: entered allmulticast mode
[   60.166510][ T5694] bridge_slave_0: entered promiscuous mode
[   60.182681][   T29] audit: type=1326 audit(1725775932.064:1309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5764 comm="syz.4.393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75ac06cef9 code=0x7ffc0000
[   60.184247][ T5694] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.206052][   T29] audit: type=1326 audit(1725775932.064:1310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5764 comm="syz.4.393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75ac06cef9 code=0x7ffc0000
[   60.213202][ T5694] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.236387][   T29] audit: type=1326 audit(1725775932.064:1311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5764 comm="syz.4.393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f75ac06cef9 code=0x7ffc0000
[   60.267975][ T5694] bridge_slave_1: entered allmulticast mode
[   60.274428][ T5694] bridge_slave_1: entered promiscuous mode
[   60.295368][ T5694] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   60.306308][ T5694] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   60.321687][ T5762] loop1: detected capacity change from 0 to 256
[   60.336356][ T5762] vfat: Bad value for 'shortname'
[   60.336939][ T5694] team0: Port device team_slave_0 added
[   60.350946][ T5694] team0: Port device team_slave_1 added
[   60.378348][ T5694] batman_adv: batadv0: Adding interface: batadv_slave_0
[   60.385345][ T5694] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   60.411728][ T5694] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   60.425764][ T5694] batman_adv: batadv0: Adding interface: batadv_slave_1
[   60.432712][ T5694] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   60.458745][ T5694] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   60.488079][ T5772] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[   60.496348][ T5772] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[   60.552440][ T5792] loop4: detected capacity change from 0 to 128
[   60.562028][ T5694] hsr_slave_0: entered promiscuous mode
[   60.597385][ T5694] hsr_slave_1: entered promiscuous mode
[   60.608984][ T5795] loop0: detected capacity change from 0 to 512
[   60.620122][ T5694] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   60.627776][ T5694] Cannot create hsr debugfs directory
[   60.646314][ T5795] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   60.664713][ T5795] ext4 filesystem being mounted at /31/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.690297][ T4803] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   60.711089][ T5804] SELinux: failed to load policy
[   60.751374][ T5809] netlink: 'syz.0.403': attribute type 7 has an invalid length.
[   60.815704][ T5813] program syz.4.404 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   60.877143][ T5824] loop4: detected capacity change from 0 to 512
[   60.946018][ T5831] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[   60.954316][ T5831] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[   61.027064][ T5835] loop4: detected capacity change from 0 to 128
[   61.088450][ T5694] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   61.112548][ T5694] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   61.135382][ T5694] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   61.165631][ T5694] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   61.270260][ T5694] 8021q: adding VLAN 0 to HW filter on device bond0
[   61.284191][ T5856] loop0: detected capacity change from 0 to 512
[   61.300919][ T5694] 8021q: adding VLAN 0 to HW filter on device team0
[   61.318312][   T50] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.325514][   T50] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.340982][ T5856] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   61.366126][ T5856] ext4 filesystem being mounted at /37/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.389759][   T50] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.396853][   T50] bridge0: port 2(bridge_slave_1) entered forwarding state
[   61.421590][ T4803] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   61.459451][ T5806] netlink: 188 bytes leftover after parsing attributes in process `syz.1.402'.
[   61.513627][ T5879] syz.0.414[5879] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   61.513683][ T5879] syz.0.414[5879] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   61.522775][ T5694] 8021q: adding VLAN 0 to HW filter on device batadv0
[   61.545171][ T5879] xt_TPROXY: Can be used only with -p tcp or -p udp
[   61.581314][ T5883] loop4: detected capacity change from 0 to 512
[   61.583346][ T5879] netlink: 24 bytes leftover after parsing attributes in process `syz.0.414'.
[   61.692581][ T5883] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   61.710197][ T5694] veth0_vlan: entered promiscuous mode
[   61.719093][ T5694] veth1_vlan: entered promiscuous mode
[   61.737710][ T5883] ext4 filesystem being mounted at /78/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.743431][ T5694] veth0_macvtap: entered promiscuous mode
[   61.757455][ T5694] veth1_macvtap: entered promiscuous mode
[   61.771791][ T5694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.782338][ T5694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.792213][ T5694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.797220][ T5883] EXT4-fs error (device loop4): ext4_add_entry:2435: inode #2: comm syz.4.415: Directory hole found for htree leaf block 0
[   61.802755][ T5694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.825347][ T5694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.836134][ T5694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.846020][ T5694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.856580][ T5694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.871512][ T5694] batman_adv: batadv0: Interface activated: batadv_slave_0
[   61.880962][ T5907] loop0: detected capacity change from 0 to 128
[   61.890132][ T5694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.900585][ T5694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.910550][ T5694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.921007][ T5694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.930923][ T5694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.941360][ T5694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.951196][ T5694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.961633][ T5694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.972733][ T5694] batman_adv: batadv0: Interface activated: batadv_slave_1
[   61.979751][ T4327] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.982224][ T5694] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.998044][ T5694] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   62.006786][ T5694] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   62.006819][ T5912] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   62.015465][ T5694] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   62.023341][ T5912] FAT-fs (loop0): Filesystem has been set read-only
[   62.042729][ T5912] syz.0.416: attempt to access beyond end of device
[   62.042729][ T5912] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   62.062815][ T5915] netlink: 40 bytes leftover after parsing attributes in process `syz.4.417'.
[   62.162958][ T5921] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[   62.171214][ T5921] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[   62.194697][ T5925] netlink: 'syz.3.381': attribute type 7 has an invalid length.
[   62.216027][ T5932] SELinux:  policydb version -570608695 does not match my version range 15-33
[   62.225096][ T5932] SELinux: failed to load policy
[   62.491935][ T5956] loop4: detected capacity change from 0 to 512
[   62.514249][ T5956] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   62.540587][ T5956] ext4 filesystem being mounted at /83/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.577089][ T4327] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   62.831352][ T6000] netlink: 40 bytes leftover after parsing attributes in process `syz.3.427'.
[   62.858099][ T6002] loop3: detected capacity change from 0 to 128
[   62.943121][ T6008] netlink: 'syz.1.431': attribute type 7 has an invalid length.
[   62.972127][ T6011] SELinux:  policydb version -570608695 does not match my version range 15-33
[   62.981570][ T6011] SELinux: failed to load policy
[   63.144846][ T6017] loop0: detected capacity change from 0 to 512
[   63.158814][ T6017] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   63.172209][ T6017] ext4 filesystem being mounted at /41/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.199079][ T4803] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   63.232510][   T29] kauditd_printk_skb: 108 callbacks suppressed
[   63.232524][   T29] audit: type=1326 audit(1725775935.114:1420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6021 comm="syz.0.436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1fc98cef9 code=0x7ffc0000
[   63.286413][   T29] audit: type=1326 audit(1725775935.114:1421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6021 comm="syz.0.436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1fc98cef9 code=0x7ffc0000
[   63.309891][   T29] audit: type=1326 audit(1725775935.114:1422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6021 comm="syz.0.436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=149 compat=0 ip=0x7fd1fc98cef9 code=0x7ffc0000
[   63.333327][   T29] audit: type=1326 audit(1725775935.124:1423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6021 comm="syz.0.436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1fc98cef9 code=0x7ffc0000
[   63.357022][   T29] audit: type=1326 audit(1725775935.124:1424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6021 comm="syz.0.436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1fc98cef9 code=0x7ffc0000
[   63.380545][   T29] audit: type=1326 audit(1725775935.124:1425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6021 comm="syz.0.436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7fd1fc98cef9 code=0x7ffc0000
[   63.418289][   T29] audit: type=1326 audit(1725775935.304:1426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6021 comm="syz.0.436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1fc98cef9 code=0x7ffc0000
[   63.483225][ T6029] loop0: detected capacity change from 0 to 512
[   63.491093][ T6030] FAULT_INJECTION: forcing a failure.
[   63.491093][ T6030] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   63.504264][ T6030] CPU: 0 UID: 0 PID: 6030 Comm: syz.4.437 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0
[   63.514870][ T6030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   63.524930][ T6030] Call Trace:
[   63.528211][ T6030]  <TASK>
[   63.531138][ T6030]  dump_stack_lvl+0xf2/0x150
[   63.535767][ T6030]  dump_stack+0x15/0x20
[   63.539930][ T6030]  should_fail_ex+0x229/0x230
[   63.544685][ T6030]  should_fail+0xb/0x10
[   63.549011][ T6030]  should_fail_usercopy+0x1a/0x20
[   63.554037][ T6030]  _copy_from_user+0x1e/0xd0
[   63.558633][ T6030]  __sys_bpf+0x14e/0x7a0
[   63.562974][ T6030]  __x64_sys_bpf+0x43/0x50
[   63.567413][ T6030]  x64_sys_call+0x2625/0x2d60
[   63.572161][ T6030]  do_syscall_64+0xc9/0x1c0
[   63.576657][ T6030]  ? clear_bhb_loop+0x55/0xb0
[   63.581354][ T6030]  ? clear_bhb_loop+0x55/0xb0
[   63.586040][ T6030]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.591962][ T6030] RIP: 0033:0x7f75ac06cef9
[   63.596433][ T6030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.616056][ T6030] RSP: 002b:00007f75aace7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   63.624479][ T6030] RAX: ffffffffffffffda RBX: 00007f75ac225f80 RCX: 00007f75ac06cef9
[   63.632453][ T6030] RDX: 0000000000000020 RSI: 0000000020000400 RDI: 0000000000000015
[   63.640434][ T6030] RBP: 00007f75aace7090 R08: 0000000000000000 R09: 0000000000000000
[   63.648406][ T6030] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.656377][ T6030] R13: 0000000000000000 R14: 00007f75ac225f80 R15: 00007fffd0d38588
[   63.664363][ T6030]  </TASK>
[   63.672035][ T6029] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   63.684318][ T6029] EXT4-fs (loop0): orphan cleanup on readonly fs
[   63.716698][ T6029] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.438: invalid indirect mapped block 4294967295 (level 1)
[   63.746241][ T6015] netlink: 188 bytes leftover after parsing attributes in process `syz.1.434'.
[   63.755244][ T6029] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.438: invalid indirect mapped block 4294967295 (level 1)
[   63.776767][ T6029] EXT4-fs (loop0): 2 truncates cleaned up
[   63.783219][ T6029] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   63.800071][   T29] audit: type=1326 audit(1725775935.684:1427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6032 comm="syz.4.439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75ac06cef9 code=0x7ffc0000
[   63.823484][   T29] audit: type=1326 audit(1725775935.684:1428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6032 comm="syz.4.439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75ac06cef9 code=0x7ffc0000
[   63.865615][   T29] audit: type=1326 audit(1725775935.734:1429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6032 comm="syz.4.439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f75ac06cef9 code=0x7ffc0000
[   63.915813][ T6039] loop3: detected capacity change from 0 to 2048
[   63.922031][ T6041] SELinux:  policydb version -570608695 does not match my version range 15-33
[   63.932314][ T6041] SELinux: failed to load policy
[   63.938140][ T4803] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.948053][ T6039] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   63.976222][ T6045] SELinux:  policydb version -570608695 does not match my version range 15-33
[   63.987557][ T6045] SELinux: failed to load policy
[   63.999850][ T6039] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   64.020486][ T6039] EXT4-fs (loop3): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 16 with error 28
[   64.033440][ T6039] EXT4-fs (loop3): This should not happen!! Data will be lost
[   64.033440][ T6039] 
[   64.043160][ T6039] EXT4-fs (loop3): Total free blocks count 0
[   64.049223][ T6039] EXT4-fs (loop3): Free/Dirty block details
[   64.055210][ T6039] EXT4-fs (loop3): free_blocks=2415919104
[   64.060946][ T6039] EXT4-fs (loop3): dirty_blocks=16
[   64.066128][ T6039] EXT4-fs (loop3): Block reservation details
[   64.072112][ T6039] EXT4-fs (loop3): i_reserved_data_blocks=1
[   64.168858][ T5694] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.194200][ T6055] loop0: detected capacity change from 0 to 512
[   64.241410][ T6055] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   64.270514][ T6055] ext4 filesystem being mounted at /46/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.324334][ T6074] syz.1.453[6074] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   64.324389][ T6074] syz.1.453[6074] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   64.336740][ T4803] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   64.367198][ T6074] xt_TPROXY: Can be used only with -p tcp or -p udp
[   64.388544][ T6074] netlink: 24 bytes leftover after parsing attributes in process `syz.1.453'.
[   64.410900][ T6079] SELinux:  policydb version -570608695 does not match my version range 15-33
[   64.420764][ T6079] SELinux: failed to load policy
[   64.574576][ T6093] FAULT_INJECTION: forcing a failure.
[   64.574576][ T6093] name failslab, interval 1, probability 0, space 0, times 0
[   64.587216][ T6093] CPU: 0 UID: 0 PID: 6093 Comm: syz.1.461 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0
[   64.598033][ T6093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   64.608086][ T6093] Call Trace:
[   64.611357][ T6093]  <TASK>
[   64.614346][ T6093]  dump_stack_lvl+0xf2/0x150
[   64.618939][ T6093]  dump_stack+0x15/0x20
[   64.623168][ T6093]  should_fail_ex+0x229/0x230
[   64.627848][ T6093]  ? __nf_conntrack_alloc+0xcd/0x280
[   64.633220][ T6093]  should_failslab+0x8f/0xb0
[   64.637885][ T6093]  kmem_cache_alloc_noprof+0x4c/0x290
[   64.643334][ T6093]  __nf_conntrack_alloc+0xcd/0x280
[   64.648672][ T6093]  init_conntrack+0x191/0x970
[   64.653361][ T6093]  nf_conntrack_in+0x89c/0xf20
[   64.658139][ T6093]  ? __pfx_ipv6_conntrack_in+0x10/0x10
[   64.663624][ T6093]  ipv6_conntrack_in+0x1d/0x30
[   64.668465][ T6093]  nf_hook_slow+0x86/0x1b0
[   64.672930][ T6093]  ipv6_rcv+0x113/0x150
[   64.677093][ T6093]  ? __pfx_ip6_rcv_finish+0x10/0x10
[   64.682355][ T6093]  __netif_receive_skb+0xa2/0x280
[   64.687398][ T6093]  netif_receive_skb+0x4a/0x320
[   64.692270][ T6093]  ? virtio_net_hdr_to_skb+0x6c4/0xb50
[   64.697741][ T6093]  ? tun_rx_batched+0xba/0x410
[   64.702613][ T6093]  tun_rx_batched+0xf0/0x410
[   64.707207][ T6093]  tun_get_user+0x1e77/0x24b0
[   64.711899][ T6093]  ? kstrtoull+0x110/0x140
[   64.716320][ T6093]  ? ref_tracker_alloc+0x1f5/0x2f0
[   64.721442][ T6093]  tun_chr_write_iter+0x18e/0x240
[   64.726499][ T6093]  vfs_write+0x78f/0x900
[   64.730800][ T6093]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   64.736374][ T6093]  ksys_write+0xeb/0x1b0
[   64.740635][ T6093]  __x64_sys_write+0x42/0x50
[   64.745316][ T6093]  x64_sys_call+0x27dd/0x2d60
[   64.749997][ T6093]  do_syscall_64+0xc9/0x1c0
[   64.754551][ T6093]  ? clear_bhb_loop+0x55/0xb0
[   64.759256][ T6093]  ? clear_bhb_loop+0x55/0xb0
[   64.764010][ T6093]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.769958][ T6093] RIP: 0033:0x7f79a74eb9df
[   64.774373][ T6093] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[   64.793998][ T6093] RSP: 002b:00007f79a6167000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   64.802427][ T6093] RAX: ffffffffffffffda RBX: 00007f79a76a5f80 RCX: 00007f79a74eb9df
[   64.810459][ T6093] RDX: 0000000000000062 RSI: 00000000200002c0 RDI: 00000000000000c8
[   64.818443][ T6093] RBP: 00007f79a6167090 R08: 0000000000000000 R09: 0000000000000000
[   64.826456][ T6093] R10: 0000000000000062 R11: 0000000000000293 R12: 0000000000000001
[   64.834438][ T6093] R13: 0000000000000000 R14: 00007f79a76a5f80 R15: 00007ffe074165b8
[   64.842702][ T6093]  </TASK>
[   64.871589][ T6086] netlink: 188 bytes leftover after parsing attributes in process `syz.0.458'.
[   64.963146][ T6103] loop4: detected capacity change from 0 to 512
[   64.992038][ T6104] loop1: detected capacity change from 0 to 512
[   65.003999][ T6103] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   65.032108][ T6104] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   65.053996][ T6103] ext4 filesystem being mounted at /89/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.054218][ T6113] netlink: 552 bytes leftover after parsing attributes in process `syz.3.466'.
[   65.083219][ T6104] ext4 filesystem being mounted at /23/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.113370][ T6116] syz.3.467[6116] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   65.113426][ T6116] syz.3.467[6116] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   65.127356][ T5350] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   65.158214][ T6116] xt_TPROXY: Can be used only with -p tcp or -p udp
[   65.167811][ T6116] netlink: 24 bytes leftover after parsing attributes in process `syz.3.467'.
[   65.192650][ T4327] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.334444][ T6129] FAULT_INJECTION: forcing a failure.
[   65.334444][ T6129] name failslab, interval 1, probability 0, space 0, times 0
[   65.347197][ T6129] CPU: 0 UID: 0 PID: 6129 Comm: syz.1.472 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0
[   65.357859][ T6129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   65.367925][ T6129] Call Trace:
[   65.370183][ T6132] loop4: detected capacity change from 0 to 1024
[   65.371272][ T6129]  <TASK>
[   65.380546][ T6129]  dump_stack_lvl+0xf2/0x150
[   65.385324][ T6129]  dump_stack+0x15/0x20
[   65.388088][ T6132] EXT4-fs: Ignoring removed orlov option
[   65.389463][ T6129]  should_fail_ex+0x229/0x230
[   65.395128][ T6132] EXT4-fs: Ignoring removed nomblk_io_submit option
[   65.399754][ T6129]  ? __d_alloc+0x3d/0x340
[   65.399782][ T6129]  should_failslab+0x8f/0xb0
[   65.399811][ T6129]  kmem_cache_alloc_lru_noprof+0x51/0x2a0
[   65.399835][ T6129]  __d_alloc+0x3d/0x340
[   65.399852][ T6129]  d_alloc_parallel+0x54/0xc80
[   65.430004][ T6129]  ? __rcu_read_unlock+0x4e/0x70
[   65.434957][ T6129]  ? __d_lookup+0x342/0x370
[   65.439046][ T6132] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a84ec018, mo2=0002]
[   65.439461][ T6129]  ? lockref_get_not_dead+0x118/0x1b0
[   65.452884][ T6129]  ? __rcu_read_unlock+0x4e/0x70
[   65.457875][ T6129]  path_openat+0x674/0x1f10
[   65.459870][ T6132] System zones: 0-1
[   65.462378][ T6129]  do_filp_open+0xf7/0x200
[   65.462440][ T6132] , 3-36
[   65.462462][ T6129]  do_sys_openat2+0xab/0x120
[   65.466270][ T6132] 
[   65.470641][ T6129]  __x64_sys_openat+0xf3/0x120
[   65.485103][ T6129]  x64_sys_call+0x1025/0x2d60
[   65.488122][ T6132] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   65.489815][ T6129]  do_syscall_64+0xc9/0x1c0
[   65.506705][ T6129]  ? clear_bhb_loop+0x55/0xb0
[   65.511438][ T6129]  ? clear_bhb_loop+0x55/0xb0
[   65.516226][ T6129]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.522127][ T6129] RIP: 0033:0x7f79a74ecef9
[   65.526561][ T6129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.546270][ T6129] RSP: 002b:00007f79a6167038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   65.554855][ T6129] RAX: ffffffffffffffda RBX: 00007f79a76a5f80 RCX: 00007f79a74ecef9
[   65.562909][ T6129] RDX: 0000000000000841 RSI: 0000000020000040 RDI: ffffffffffffff9c
[   65.571118][ T6129] RBP: 00007f79a6167090 R08: 0000000000000000 R09: 0000000000000000
[   65.579078][ T6129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.587069][ T6129] R13: 0000000000000000 R14: 00007f79a76a5f80 R15: 00007ffe074165b8
[   65.595031][ T6129]  </TASK>
[   65.672756][ T6137] loop1: detected capacity change from 0 to 512
[   65.686369][ T6137] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   65.704702][ T4327] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.718980][ T6137] EXT4-fs (loop1): 1 orphan inode deleted
[   65.724736][ T6137] EXT4-fs (loop1): 1 truncate cleaned up
[   65.753157][ T6143] netlink: 'syz.0.477': attribute type 7 has an invalid length.
[   65.761403][ T6137] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   65.807402][ T5350] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.954264][ T6155] Cannot find add_set index 0 as target
[   65.956963][ T6157] loop0: detected capacity change from 0 to 512
[   65.971317][ T6155] tls_set_device_offload: netdev not found
[   65.990169][ T6157] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   66.005616][ T6157] ext4 filesystem being mounted at /52/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   66.039865][ T4803] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   66.120605][ T6175] syz.4.483[6175] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   66.120661][ T6175] syz.4.483[6175] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   66.137861][ T6175] xt_TPROXY: Can be used only with -p tcp or -p udp
[   66.156986][ T6177] Cannot find set identified by id 0 to match
[   66.159329][ T6175] netlink: 24 bytes leftover after parsing attributes in process `syz.4.483'.
[   66.295419][ T6187] netlink: 'syz.1.489': attribute type 7 has an invalid length.
[   66.396350][ T6191] loop1: detected capacity change from 0 to 512
[   66.415536][    C0] hrtimer: interrupt took 18106 ns
[   66.427801][ T6182] loop0: detected capacity change from 0 to 1024
[   66.444700][ T6182] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities
[   66.472859][ T6191] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.478523][ T6197] loop3: detected capacity change from 0 to 2048
[   66.494532][ T6191] ext4 filesystem being mounted at /33/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   66.537003][ T6191] EXT4-fs error (device loop1): ext4_add_entry:2435: inode #2: comm syz.1.492: Directory hole found for htree leaf block 0
[   66.805275][ T6216] netlink: 'syz.4.502': attribute type 7 has an invalid length.
[   66.900039][   T28] kworker/u8:1: attempt to access beyond end of device
[   66.900039][   T28] loop2: rw=1, sector=385, nr_sectors = 656 limit=128
[   67.037229][ T6237] ebt_among: dst integrity fail: 101
[   67.061572][ T6239] loop4: detected capacity change from 0 to 512
[   67.078620][ T6239] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.087975][ T6223] chnl_net:caif_netlink_parms(): no params data found
[   67.091565][ T6239] ext4 filesystem being mounted at /109/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.110800][ T6239] EXT4-fs error (device loop4): ext4_do_update_inode:5154: inode #2: comm syz.4.509: corrupted inode contents
[   67.122770][ T6239] EXT4-fs error (device loop4): ext4_dirty_inode:6014: inode #2: comm syz.4.509: mark_inode_dirty error
[   67.134675][ T6239] EXT4-fs error (device loop4): ext4_do_update_inode:5154: inode #2: comm syz.4.509: corrupted inode contents
[   67.134721][ T6223] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.134758][ T6223] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.149041][ T6239] EXT4-fs error (device loop4): ext4_add_entry:2435: inode #2: comm syz.4.509: Directory hole found for htree leaf block 0
[   67.153710][ T6223] bridge_slave_0: entered allmulticast mode
[   67.180230][ T6223] bridge_slave_0: entered promiscuous mode
[   67.180592][ T4327] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.187219][ T6223] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.202480][ T6223] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.210683][ T6223] bridge_slave_1: entered allmulticast mode
[   67.222993][ T5350] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.232175][ T6223] bridge_slave_1: entered promiscuous mode
[   67.262770][ T3530] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.288118][ T6223] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   67.297901][ T6250] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[   67.310090][ T3530] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.323448][ T6223] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   67.345164][ T6223] team0: Port device team_slave_0 added
[   67.351060][ T6250] loop1: detected capacity change from 0 to 2048
[   67.351890][ T6223] team0: Port device team_slave_1 added
[   67.377335][ T3530] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.394054][ T6250] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.411998][ T6223] batman_adv: batadv0: Adding interface: batadv_slave_0
[   67.419048][ T6223] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.445215][ T6223] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   67.458940][ T6223] batman_adv: batadv0: Adding interface: batadv_slave_1
[   67.466079][ T6223] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.492069][ T6223] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   67.505460][ T3530] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.521518][ T6255] capability: warning: `syz.1.511' uses deprecated v2 capabilities in a way that may be insecure
[   67.572756][ T6223] hsr_slave_0: entered promiscuous mode
[   67.585339][ T6223] hsr_slave_1: entered promiscuous mode
[   67.595711][ T6223] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   67.623850][ T6223] Cannot create hsr debugfs directory
[   67.654590][ T3530] bridge_slave_1: left allmulticast mode
[   67.660275][ T3530] bridge_slave_1: left promiscuous mode
[   67.666105][ T3530] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.678311][ T3530] bridge_slave_0: left allmulticast mode
[   67.684121][ T3530] bridge_slave_0: left promiscuous mode
[   67.689790][ T3530] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.710685][ T3543] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[   67.726591][ T3543] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   67.739206][ T3543] EXT4-fs (loop1): This should not happen!! Data will be lost
[   67.739206][ T3543] 
[   67.749120][ T3543] EXT4-fs (loop1): Total free blocks count 0
[   67.755357][ T3543] EXT4-fs (loop1): Free/Dirty block details
[   67.761279][ T3543] EXT4-fs (loop1): free_blocks=66060288
[   67.766935][ T3543] EXT4-fs (loop1): dirty_blocks=8192
[   67.772265][ T3543] EXT4-fs (loop1): Block reservation details
[   67.778282][ T3543] EXT4-fs (loop1): i_reserved_data_blocks=512
[   67.795035][   T50] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   67.830380][ T3530] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   67.854395][ T3530] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   67.869851][ T3530] bond0 (unregistering): Released all slaves
[   67.902479][ T6259] netlink: 'syz.4.513': attribute type 7 has an invalid length.
[   67.948692][ T3530] hsr_slave_0: left promiscuous mode
[   67.957262][ T3530] hsr_slave_1: left promiscuous mode
[   67.963155][ T3530] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   67.970689][ T3530] batman_adv: batadv0: Removing interface: batadv_slave_0
[   67.978950][ T3530] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   67.986456][ T3530] batman_adv: batadv0: Removing interface: batadv_slave_1
[   67.995426][ T3530] veth1_macvtap: left promiscuous mode
[   68.001018][ T3530] veth0_macvtap: left promiscuous mode
[   68.006650][ T3530] veth1_vlan: left promiscuous mode
[   68.011989][ T3530] veth0_vlan: left promiscuous mode
[   68.092059][ T3530] team0 (unregistering): Port device team_slave_1 removed
[   68.102583][ T3530] team0 (unregistering): Port device team_slave_0 removed
[   68.135327][ T6272] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[   68.143584][ T6272] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[   68.278725][ T6264] chnl_net:caif_netlink_parms(): no params data found
[   68.325138][ T6264] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.325190][ T6264] bridge0: port 1(bridge_slave_0) entered disabled state
[   68.325487][ T6264] bridge_slave_0: entered allmulticast mode
[   68.346114][ T6264] bridge_slave_0: entered promiscuous mode
[   68.353310][ T6264] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.353349][ T6264] bridge0: port 2(bridge_slave_1) entered disabled state
[   68.353486][ T6264] bridge_slave_1: entered allmulticast mode
[   68.374748][ T6264] bridge_slave_1: entered promiscuous mode
[   68.390029][ T6264] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   68.402976][ T6264] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   68.421756][ T6264] team0: Port device team_slave_0 added
[   68.428353][ T6264] team0: Port device team_slave_1 added
[   68.444997][ T6264] batman_adv: batadv0: Adding interface: batadv_slave_0
[   68.451998][ T6264] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.478210][ T6264] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   68.489684][ T6264] batman_adv: batadv0: Adding interface: batadv_slave_1
[   68.496695][ T6264] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.522600][ T6264] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   68.549481][ T6264] hsr_slave_0: entered promiscuous mode
[   68.555497][ T6264] hsr_slave_1: entered promiscuous mode
[   68.561804][ T6264] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   68.569403][ T6264] Cannot create hsr debugfs directory
[   68.665746][ T3530] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.676971][ T6223] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   68.685271][ T6223] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   68.694689][ T6223] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   68.703309][ T6223] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   68.718234][ T3530] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.775786][ T6223] 8021q: adding VLAN 0 to HW filter on device bond0
[   68.794304][ T3530] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.809038][ T6223] 8021q: adding VLAN 0 to HW filter on device team0
[   68.818860][   T50] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.825951][   T50] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.841101][ T3530] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.857704][   T50] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.864873][   T50] bridge0: port 2(bridge_slave_1) entered forwarding state
[   68.884671][ T6223] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   68.895124][ T6223] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   68.951479][ T3530] bridge_slave_1: left allmulticast mode
[   68.957222][ T3530] bridge_slave_1: left promiscuous mode
[   68.962901][ T3530] bridge0: port 2(bridge_slave_1) entered disabled state
[   68.972261][ T3530] bridge_slave_0: left allmulticast mode
[   68.977961][ T3530] bridge_slave_0: left promiscuous mode
[   68.983641][ T3530] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.087825][ T3530] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   69.098703][ T3530] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   69.111123][ T3530] bond0 (unregistering): Released all slaves
[   69.132582][ T6223] 8021q: adding VLAN 0 to HW filter on device batadv0
[   69.264389][ T6223] veth0_vlan: entered promiscuous mode
[   69.281585][ T3530] hsr_slave_0: left promiscuous mode
[   69.297177][ T3530] hsr_slave_1: left promiscuous mode
[   69.302991][ T3530] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   69.310529][ T3530] batman_adv: batadv0: Removing interface: batadv_slave_0
[   69.318714][ T3530] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   69.326155][ T3530] batman_adv: batadv0: Removing interface: batadv_slave_1
[   69.335171][ T3530] veth1_macvtap: left promiscuous mode
[   69.340795][ T3530] veth0_macvtap: left promiscuous mode
[   69.346336][ T3530] veth1_vlan: left promiscuous mode
[   69.351553][ T3530] veth0_vlan: left promiscuous mode
[   69.428875][ T3530] team0 (unregistering): Port device team_slave_1 removed
[   69.439419][ T3530] team0 (unregistering): Port device team_slave_0 removed
[   69.474796][ T6223] veth1_vlan: entered promiscuous mode
[   69.528621][ T6223] veth0_macvtap: entered promiscuous mode
[   69.548571][ T6223] veth1_macvtap: entered promiscuous mode
[   69.569825][ T6223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   69.580342][ T6223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.583257][   T29] kauditd_printk_skb: 299 callbacks suppressed
[   69.583268][   T29] audit: type=1326 audit(1725775941.474:1729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6410 comm="syz.4.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75ac06cef9 code=0x7ffc0000
[   69.590182][ T6223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   69.590195][ T6223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.590208][ T6223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   69.616136][   T29] audit: type=1326 audit(1725775941.484:1730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6410 comm="syz.4.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f75ac06cef9 code=0x7ffc0000
[   69.619715][ T6223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.630230][   T29] audit: type=1326 audit(1725775941.484:1731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6410 comm="syz.4.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75ac06cef9 code=0x7ffc0000
[   69.630267][   T29] audit: type=1326 audit(1725775941.484:1732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6410 comm="syz.4.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75ac06cef9 code=0x7ffc0000
[   69.641918][ T6223] batman_adv: batadv0: Interface activated: batadv_slave_0
[   69.650531][   T29] audit: type=1326 audit(1725775941.484:1733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6410 comm="syz.4.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f75ac06cef9 code=0x7ffc0000
[   69.674836][ T6223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   69.683574][   T29] audit: type=1326 audit(1725775941.484:1734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6410 comm="syz.4.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75ac06cef9 code=0x7ffc0000
[   69.707018][ T6223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.707030][ T6223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   69.707042][ T6223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.730424][   T29] audit: type=1326 audit(1725775941.484:1735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6410 comm="syz.4.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75ac06cef9 code=0x7ffc0000
[   69.737578][ T6223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   69.760949][   T29] audit: type=1326 audit(1725775941.484:1736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6410 comm="syz.4.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f75ac06cef9 code=0x7ffc0000
[   69.771345][ T6223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.815042][ T6223] batman_adv: batadv0: Interface activated: batadv_slave_1
[   69.815249][   T29] audit: type=1326 audit(1725775941.484:1737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6410 comm="syz.4.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75ac06cef9 code=0x7ffc0000
[   69.845508][ T6264] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   69.848373][   T29] audit: type=1326 audit(1725775941.484:1738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6410 comm="syz.4.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f75ac06cef9 code=0x7ffc0000
[   69.959440][ T6421] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[   69.967718][ T6421] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[   69.988442][ T6223] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   69.997189][ T6223] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   70.005952][ T6223] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   70.014647][ T6223] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   70.027230][ T6264] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   70.048962][ T6430] SELinux: failed to load policy
[   70.089919][ T6264] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   70.091915][ T6264] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   70.161087][ T6440] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0)
[   70.190333][ T6264] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.204689][ T6440] loop2: detected capacity change from 0 to 2048
[   70.216615][ T6264] 8021q: adding VLAN 0 to HW filter on device team0
[   70.228911][ T3543] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.236003][ T3543] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.239441][ T6442] loop0: detected capacity change from 0 to 512
[   70.254691][   T50] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.261859][   T50] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.266109][ T6440] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.453059][ T6264] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.581047][ T6462] loop0: detected capacity change from 0 to 512
[   70.595681][ T6445] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[   70.606331][ T6462] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   70.638164][ T6462] EXT4-fs (loop0): 1 orphan inode deleted
[   70.643975][ T6462] EXT4-fs (loop0): 1 truncate cleaned up
[   70.660935][ T6264] veth0_vlan: entered promiscuous mode
[   70.671890][   T40] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   70.684420][   T40] EXT4-fs (loop2): This should not happen!! Data will be lost
[   70.684420][   T40] 
[   70.685995][ T6462] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.694135][   T40] EXT4-fs (loop2): Total free blocks count 0
[   70.712710][   T40] EXT4-fs (loop2): Free/Dirty block details
[   70.718868][   T40] EXT4-fs (loop2): free_blocks=66060288
[   70.719600][ T6462] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.724999][   T40] EXT4-fs (loop2): dirty_blocks=8192
[   70.725012][   T40] EXT4-fs (loop2): Block reservation details
[   70.745233][   T40] EXT4-fs (loop2): i_reserved_data_blocks=512
[   70.781901][ T6264] veth1_vlan: entered promiscuous mode
[   70.802062][ T6264] veth0_macvtap: entered promiscuous mode
[   70.816783][ T6264] veth1_macvtap: entered promiscuous mode
[   70.862931][ T3530] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   70.884308][ T6264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.894893][ T6264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.904751][ T6264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.915390][ T6264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.922702][ T6468] loop1: detected capacity change from 0 to 8192
[   70.925225][ T6264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.942141][ T6264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.952250][ T6264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.962912][ T6264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.978887][ T6264] batman_adv: batadv0: Interface activated: batadv_slave_0
[   70.988754][ T6468]  loop1: p1 < > p2 p3 < p5 p6 > p4
[   70.989386][ T6264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.993998][ T6468] loop1: partition table partially beyond EOD, truncated
[   71.004499][ T6264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.021346][ T6264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.031799][ T6264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.041808][ T6264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.052252][ T6264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.052329][ T6468] loop1: p1 start 277760 is beyond EOD, 
[   71.062084][ T6264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.062098][ T6264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.088056][ T6468] truncated
[   71.091159][ T6468] loop1: p2 start 6684676 is beyond EOD, truncated
[   71.093991][ T6264] batman_adv: batadv0: Interface activated: batadv_slave_1
[   71.118478][ T6478] netlink: 2036 bytes leftover after parsing attributes in process `syz.4.539'.
[   71.118860][ T6468] loop1: p5 start 6684676 is beyond EOD, truncated
[   71.127679][ T6478] netlink: 24 bytes leftover after parsing attributes in process `syz.4.539'.
[   71.140507][ T6483] syz.2.538[6483] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.143049][ T6483] syz.2.538[6483] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.162905][ T6264] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.182891][ T6264] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.188742][ T6483] loop2: detected capacity change from 0 to 512
[   71.191721][ T6264] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.206685][ T6264] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.223557][ T6483] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.236198][ T6483] ext4 filesystem being mounted at /1/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   71.298657][ T6495] loop3: detected capacity change from 0 to 512
[   71.311367][ T6495] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   71.319676][ T6495] EXT4-fs (loop3): orphan cleanup on readonly fs
[   71.326957][ T6495] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.544: invalid indirect mapped block 4294967295 (level 1)
[   71.341023][ T6495] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.544: invalid indirect mapped block 4294967295 (level 1)
[   71.357403][ T6495] EXT4-fs (loop3): 2 truncates cleaned up
[   71.363575][ T6495] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   71.377449][ T6495] netlink: 40 bytes leftover after parsing attributes in process `syz.3.544'.
[   71.393326][ T6264] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.413186][ T6499] SELinux: failed to load policy
[   71.433183][ T6501] SELinux: failed to load policy
[   71.690707][ T6507] netlink: 20 bytes leftover after parsing attributes in process `syz.1.548'.
[   71.798651][ T6523] SELinux:  policydb version -570608695 does not match my version range 15-33
[   71.798675][ T6523] SELinux: failed to load policy
[   71.819181][ T6527] SELinux: failed to load policy
[   71.841969][ T6529] loop0: detected capacity change from 0 to 128
[   71.889335][ T6531] netlink: 40 bytes leftover after parsing attributes in process `syz.0.559'.
[   72.022882][ T6223] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.144215][ T6571] SELinux: failed to load policy
[   72.202811][ T6579] syz.4.573[6579] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   72.202925][ T6579] syz.4.573[6579] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   72.243887][ T6587] loop0: detected capacity change from 0 to 2048
[   72.287098][ T6587]  loop0: p3 < > p4 < >
[   72.291286][ T6587] loop0: partition table partially beyond EOD, truncated
[   72.306757][ T6587] loop0: p3 start 4284289 is beyond EOD, truncated
[   72.327429][ T2961]  loop0: p3 < > p4 < >
[   72.331611][ T2961] loop0: partition table partially beyond EOD, truncated
[   72.344930][ T2961] loop0: p3 start 4284289 is beyond EOD, truncated
[   72.372621][ T3702] udevd[3702]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[   72.404423][ T6594] bridge0: port 3(veth0_to_bond) entered blocking state
[   72.411592][ T6594] bridge0: port 3(veth0_to_bond) entered disabled state
[   72.426061][ T6579] netlink: 28 bytes leftover after parsing attributes in process `syz.4.573'.
[   72.438113][ T3702] udevd[3702]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[   72.448088][ T6594] veth0_to_bond: entered allmulticast mode
[   72.470698][ T6594] veth0_to_bond: entered promiscuous mode
[   72.478732][ T6598] syz.0.580[6598] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   72.478872][ T6598] syz.0.580[6598] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   72.480641][ T6594] bridge0: port 3(veth0_to_bond) entered blocking state
[   72.506386][ T6598] netlink: 52 bytes leftover after parsing attributes in process `syz.0.580'.
[   72.508428][ T6594] bridge0: port 3(veth0_to_bond) entered forwarding state
[   72.529116][ T6598] xt_TPROXY: Can be used only with -p tcp or -p udp
[   72.548925][ T6598] netlink: 24 bytes leftover after parsing attributes in process `syz.0.580'.
[   72.583734][ T6603] SELinux: failed to load policy
[   72.598965][ T6605] loop1: detected capacity change from 0 to 512
[   72.630594][ T6609] netlink: 40 bytes leftover after parsing attributes in process `syz.0.584'.
[   72.652820][ T6605] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.685910][ T6605] ext4 filesystem being mounted at /42/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.716419][ T6616] FAULT_INJECTION: forcing a failure.
[   72.716419][ T6616] name fail_futex, interval 1, probability 0, space 0, times 1
[   72.729390][ T6616] CPU: 0 UID: 0 PID: 6616 Comm: syz.0.586 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0
[   72.739974][ T6616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   72.750039][ T6616] Call Trace:
[   72.753309][ T6616]  <TASK>
[   72.756231][ T6616]  dump_stack_lvl+0xf2/0x150
[   72.760818][ T6616]  dump_stack+0x15/0x20
[   72.764959][ T6616]  should_fail_ex+0x229/0x230
[   72.769690][ T6616]  should_fail+0xb/0x10
[   72.774006][ T6616]  get_futex_key+0x4dc/0x710
[   72.778754][ T6616]  futex_wait_requeue_pi+0x16d/0x6d0
[   72.784033][ T6616]  ? __pfx_futex_wake_mark+0x10/0x10
[   72.789334][ T6616]  do_futex+0x146/0x370
[   72.793493][ T6616]  __se_sys_futex+0x25d/0x3a0
[   72.798177][ T6616]  ? fput+0x13b/0x180
[   72.802156][ T6616]  __x64_sys_futex+0x78/0x90
[   72.806922][ T6616]  x64_sys_call+0x23c4/0x2d60
[   72.811593][ T6616]  do_syscall_64+0xc9/0x1c0
[   72.816086][ T6616]  ? clear_bhb_loop+0x55/0xb0
[   72.820861][ T6616]  ? clear_bhb_loop+0x55/0xb0
[   72.825742][ T6616]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.831710][ T6616] RIP: 0033:0x7fd1fc98cef9
[   72.836119][ T6616] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.855829][ T6616] RSP: 002b:00007fd1fb607038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[   72.864229][ T6616] RAX: ffffffffffffffda RBX: 00007fd1fcb45f80 RCX: 00007fd1fc98cef9
[   72.872188][ T6616] RDX: 0000000000000004 RSI: 000080000000000b RDI: 000000002000cffc
[   72.880173][ T6616] RBP: 00007fd1fb607090 R08: 0000000020048000 R09: 0000000003000000
[   72.888134][ T6616] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   72.896177][ T6616] R13: 0000000000000000 R14: 00007fd1fcb45f80 R15: 00007ffe920d4218
[   72.904184][ T6616]  </TASK>
[   73.148244][ T6641] loop3: detected capacity change from 0 to 512
[   73.287800][ T6646] veth1_macvtap: left promiscuous mode
[   73.293470][ T6646] macsec0: entered promiscuous mode
[   73.298740][ T6646] macsec0: entered allmulticast mode
[   73.494536][ T5350] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.547371][ T3336] IPVS: starting estimator thread 0...
[   73.560876][ T6665] loop2: detected capacity change from 0 to 256
[   73.575986][ T6665] vfat: Bad value for 'uid'
[   73.580515][ T6665] vfat: Bad value for 'uid'
[   73.635728][ T6666] IPVS: using max 2352 ests per chain, 117600 per kthread
[   73.642587][ T6670] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[   73.651184][ T6670] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[   73.874290][ T6695] netlink: 'syz.0.613': attribute type 7 has an invalid length.
[   73.998282][ T6711] netlink: 16 bytes leftover after parsing attributes in process `syz.4.614'.
[   74.170199][ T6726] SELinux:  policydb version -570608695 does not match my version range 15-33
[   74.180319][ T6726] SELinux: failed to load policy
[   74.235828][ T6738] IPv6: Can't replace route, no match found
[   74.267553][ T6743] loop2: detected capacity change from 0 to 512
[   74.450625][ T6759] SELinux:  policydb version -570608695 does not match my version range 15-33
[   74.470169][ T6759] SELinux: failed to load policy
[   74.901072][ T6782] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   74.908642][ T6782] batman_adv: batadv0: Removing interface: batadv_slave_0
[   74.946474][ T6782] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   74.953981][ T6782] batman_adv: batadv0: Removing interface: batadv_slave_1
[   75.039298][   T29] kauditd_printk_skb: 160 callbacks suppressed
[   75.039313][   T29] audit: type=1326 audit(1725775946.924:1899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6788 comm="syz.2.646" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa2632dcef9 code=0x0
[   75.076719][ T6796] loop3: detected capacity change from 0 to 512
[   75.085326][ T6796] EXT4-fs: Ignoring removed oldalloc option
[   75.100225][ T6796] EXT4-fs (loop3): unable to read superblock
[   75.113714][   T29] audit: type=1326 audit(1725775946.994:1900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6797 comm="syz.0.647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1fc98cef9 code=0x7ffc0000
[   75.163512][   T29] audit: type=1326 audit(1725775947.024:1901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6797 comm="syz.0.647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1fc98cef9 code=0x7ffc0000
[   75.187251][   T29] audit: type=1326 audit(1725775947.024:1902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6797 comm="syz.0.647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=149 compat=0 ip=0x7fd1fc98cef9 code=0x7ffc0000
[   75.210728][   T29] audit: type=1326 audit(1725775947.044:1903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6797 comm="syz.0.647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1fc98cef9 code=0x7ffc0000
[   75.234141][   T29] audit: type=1326 audit(1725775947.044:1904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6797 comm="syz.0.647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1fc98cef9 code=0x7ffc0000
[   75.265284][   T29] audit: type=1326 audit(1725775947.144:1905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6797 comm="syz.0.647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7fd1fc98cef9 code=0x7ffc0000
[   75.381465][ T6807] SELinux: failed to load policy
[   75.402876][   T29] audit: type=1326 audit(1725775947.284:1906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6808 comm="syz.3.650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe7290cef9 code=0x7ffc0000
[   75.445688][   T29] audit: type=1326 audit(1725775947.304:1907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6797 comm="syz.0.647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1fc98cef9 code=0x7ffc0000
[   75.469032][   T29] audit: type=1326 audit(1725775947.304:1908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6797 comm="syz.0.647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1fc98cef9 code=0x7ffc0000
[   75.574180][ T6818] loop3: detected capacity change from 0 to 512
[   75.720018][ T6832] SELinux: failed to load policy
[   75.956192][ T6868] loop2: detected capacity change from 0 to 256
[   76.493925][ T6923] __nla_validate_parse: 5 callbacks suppressed
[   76.493938][ T6923] netlink: 12 bytes leftover after parsing attributes in process `syz.3.670'.
[   76.598021][ T6944] loop1: detected capacity change from 0 to 512
[   76.658914][ T6964] loop0: detected capacity change from 0 to 256
[   76.701968][ T6944] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   76.722230][ T6944] ext4 filesystem being mounted at /50/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.753058][ T6944] EXT4-fs error (device loop1): ext4_acquire_dquot:6848: comm syz.1.671: Failed to acquire dquot type 0
[   76.860918][ T6988] loop0: detected capacity change from 0 to 512
[   76.882396][ T6988] loop0: detected capacity change from 0 to 512
[   76.889691][ T6977] delete_channel: no stack
[   76.915068][ T6988] loop0: detected capacity change from 0 to 512
[   76.927909][ T6988] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.940913][ T6988] ext4 filesystem being mounted at /113/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.960953][ T4803] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.126956][ T7005] loop0: detected capacity change from 0 to 128
[   77.192460][ T7013] SELinux: failed to load policy
[   77.239398][ T7017] loop0: detected capacity change from 0 to 2048
[   77.385114][ T5350] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   77.404711][ T7021] loop1: detected capacity change from 0 to 128
[   77.526733][ T7019] netlink: 188 bytes leftover after parsing attributes in process `syz.4.688'.
[   77.570258][ T3543] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.649420][ T3543] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.729323][ T3543] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.810070][ T3543] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.940804][ T3543] bridge_slave_0: left allmulticast mode
[   77.946542][ T3543] bridge_slave_0: left promiscuous mode
[   77.952273][ T3543] bridge0: port 1(bridge_slave_0) entered disabled state
[   78.092003][ T7055] SELinux:  policydb version -570608695 does not match my version range 15-33
[   78.101002][ T7055] SELinux: failed to load policy
[   78.130327][ T3543] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   78.143409][ T3543] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   78.154925][ T3543] bond0 (unregistering): Released all slaves
[   78.218755][ T3543] hsr_slave_0: left promiscuous mode
[   78.233018][ T3543] hsr_slave_1: left promiscuous mode
[   78.240338][ T3543] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   78.247858][ T3543] batman_adv: batadv0: Removing interface: batadv_slave_0
[   78.255469][ T3543] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   78.262947][ T3543] batman_adv: batadv0: Removing interface: batadv_slave_1
[   78.272478][ T3543] veth1_macvtap: left promiscuous mode
[   78.278078][ T3543] veth0_macvtap: left promiscuous mode
[   78.283653][ T3543] veth1_vlan: left promiscuous mode
[   78.288978][ T3543] veth0_vlan: left promiscuous mode
[   78.495902][ T7075] loop1: detected capacity change from 0 to 128
[   78.510471][ T7076] delete_channel: no stack
[   78.554621][ T3543] team0 (unregistering): Port device team_slave_1 removed
[   78.564859][ T3543] team0 (unregistering): Port device team_slave_0 removed
[   78.706079][ T7036] chnl_net:caif_netlink_parms(): no params data found
[   78.794224][ T7036] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.801525][ T7036] bridge0: port 1(bridge_slave_0) entered disabled state
[   78.810102][ T7036] bridge_slave_0: entered allmulticast mode
[   78.817285][ T7036] bridge_slave_0: entered promiscuous mode
[   78.830319][ T7036] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.837481][ T7036] bridge0: port 2(bridge_slave_1) entered disabled state
[   78.845372][ T7036] bridge_slave_1: entered allmulticast mode
[   78.855104][ T7036] bridge_slave_1: entered promiscuous mode
[   78.882939][ T7036] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   78.906280][ T7036] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   78.919234][ T7106] ==================================================================
[   78.927330][ T7106] BUG: KCSAN: data-race in shmem_fallocate / shmem_fault
[   78.934350][ T7106] 
[   78.936665][ T7106] write to 0xffff88811c387fe0 of 8 bytes by task 7104 on cpu 0:
[   78.944278][ T7106]  shmem_fallocate+0x23a/0x860
[   78.949029][ T7106]  vfs_fallocate+0x392/0x3e0
[   78.953615][ T7106]  do_madvise+0x1177/0x2620
[   78.958108][ T7106]  __x64_sys_madvise+0x61/0x70
[   78.962870][ T7106]  x64_sys_call+0x2320/0x2d60
[   78.967552][ T7106]  do_syscall_64+0xc9/0x1c0
[   78.972044][ T7106]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.977980][ T7106] 
[   78.980306][ T7106] read to 0xffff88811c387fe0 of 8 bytes by task 7106 on cpu 1:
[   78.987833][ T7106]  shmem_fault+0x9d/0x260
[   78.992156][ T7106]  __do_fault+0xb6/0x200
[   78.996395][ T7106]  handle_mm_fault+0xe8b/0x2a30
[   79.001239][ T7106]  __get_user_pages+0x499/0x10d0
[   79.006257][ T7106]  __mm_populate+0x25b/0x3b0
[   79.010847][ T7106]  vm_mmap_pgoff+0x1d6/0x290
[   79.015513][ T7106]  ksys_mmap_pgoff+0xd0/0x340
[   79.020182][ T7106]  x64_sys_call+0x1884/0x2d60
[   79.024856][ T7106]  do_syscall_64+0xc9/0x1c0
[   79.029345][ T7106]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.035235][ T7106] 
[   79.037629][ T7106] value changed: 0x0000000000000000 -> 0xffffc9000203fcb8
[   79.044718][ T7106] 
[   79.047025][ T7106] Reported by Kernel Concurrency Sanitizer on:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[   79.053240][ T7106] CPU: 1 UID: 0 PID: 7106 Comm: syz.2.709 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0
[   79.063812][ T7106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   79.073941][ T7106] ==================================================================
[   79.436634][   T40] bridge_slave_1: left allmulticast mode
[   79.442316][   T40] bridge_slave_1: left promiscuous mode
[   79.448176][   T40] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.456896][   T40] bridge_slave_0: left allmulticast mode
[   79.462608][   T40] bridge_slave_0: left promiscuous mode
[   79.468328][   T40] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.548907][   T40] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   79.558993][   T40] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   79.577723][   T40] bond0 (unregistering): Released all slaves
[   79.930656][   T40] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.979175][   T40] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.019523][   T40] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.088601][   T40] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.174255][   T40] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.229368][   T40] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.269580][   T40] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.326394][   T40] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.413115][   T40] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.452464][   T40] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.490512][   T40] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.529753][   T40] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.589301][   T40] bridge_slave_1: left allmulticast mode
[   80.595030][   T40] bridge_slave_1: left promiscuous mode
[   80.600866][   T40] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.608758][   T40] bridge_slave_0: left allmulticast mode
[   80.614384][   T40] bridge_slave_0: left promiscuous mode
[   80.620115][   T40] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.628432][   T40] veth0_to_bond: left allmulticast mode
[   80.634003][   T40] veth0_to_bond: left promiscuous mode
[   80.639577][   T40] bridge0: port 3(veth0_to_bond) entered disabled state
[   80.646990][   T40] bridge_slave_1: left allmulticast mode
[   80.652678][   T40] bridge_slave_1: left promiscuous mode
[   80.658329][   T40] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.666207][   T40] bridge_slave_0: left allmulticast mode
[   80.671837][   T40] bridge_slave_0: left promiscuous mode
[   80.677478][   T40] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.685391][   T40] bridge_slave_1: left allmulticast mode
[   80.691045][   T40] bridge_slave_1: left promiscuous mode
[   80.696653][   T40] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.704351][   T40] bridge_slave_0: left allmulticast mode
[   80.710027][   T40] bridge_slave_0: left promiscuous mode
[   80.715680][   T40] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.937741][   T40] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   80.948316][   T40] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   80.958395][   T40] bond0 (unregistering): Released all slaves
[   80.967339][   T40] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   80.977315][   T40] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   80.987265][   T40] bond0 (unregistering): Released all slaves
[   80.995913][   T40] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   81.006121][   T40] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   81.016213][   T40] bond0 (unregistering): Released all slaves
[   81.168491][   T40] hsr_slave_0: left promiscuous mode
[   81.174355][   T40] hsr_slave_1: left promiscuous mode
[   81.181488][   T40] hsr_slave_0: left promiscuous mode
[   81.188184][   T40] hsr_slave_1: left promiscuous mode
[   81.194080][   T40] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   81.201511][   T40] batman_adv: batadv0: Removing interface: batadv_slave_0
[   81.209657][   T40] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   81.217208][   T40] batman_adv: batadv0: Removing interface: batadv_slave_1
[   81.227259][   T40] hsr_slave_0: left promiscuous mode
[   81.233028][   T40] hsr_slave_1: left promiscuous mode
[   81.238844][   T40] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   81.246293][   T40] batman_adv: batadv0: Removing interface: batadv_slave_0
[   81.253938][   T40] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   81.261359][   T40] batman_adv: batadv0: Removing interface: batadv_slave_1
[   81.272460][   T40] veth1_macvtap: left promiscuous mode
[   81.277993][   T40] veth0_macvtap: left promiscuous mode
[   81.283525][   T40] veth1_vlan: left promiscuous mode
[   81.289056][   T40] veth0_vlan: left promiscuous mode
[   81.294893][   T40] veth1_macvtap: left promiscuous mode
[   81.300377][   T40] veth0_macvtap: left promiscuous mode
[   81.305985][   T40] veth1_vlan: left promiscuous mode
[   81.311254][   T40] veth0_vlan: left promiscuous mode
[   81.317100][   T40] veth0_macvtap: left promiscuous mode
[   81.322632][   T40] veth1_vlan: left promiscuous mode
[   81.327967][   T40] veth0_vlan: left promiscuous mode
[   81.470068][   T40] team0 (unregistering): Port device team_slave_1 removed
[   81.479873][   T40] team0 (unregistering): Port device team_slave_0 removed
[   81.530719][   T40] team0 (unregistering): Port device team_slave_1 removed
[   81.540292][   T40] team0 (unregistering): Port device team_slave_0 removed
[   81.593811][   T40] team0 (unregistering): Port device team_slave_1 removed
[   81.603167][   T40] team0 (unregistering): Port device team_slave_0 removed
[   82.170223][   T40] IPVS: stop unused estimator thread 0...
[   82.259104][   T40] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.298760][   T40] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.349374][   T40] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.398844][   T40] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.474686][   T40] bridge_slave_1: left allmulticast mode
[   82.480426][   T40] bridge_slave_1: left promiscuous mode
[   82.486225][   T40] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.494643][   T40] bridge_slave_0: left allmulticast mode
[   82.500434][   T40] bridge_slave_0: left promiscuous mode
[   82.506121][   T40] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.577625][   T40] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   82.587988][   T40] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   82.597785][   T40] bond0 (unregistering): Released all slaves
[   82.677987][   T40] hsr_slave_0: left promiscuous mode
[   82.683821][   T40] hsr_slave_1: left promiscuous mode
[   82.689777][   T40] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   82.697185][   T40] batman_adv: batadv0: Removing interface: batadv_slave_0
[   82.704721][   T40] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   82.712285][   T40] batman_adv: batadv0: Removing interface: batadv_slave_1
[   82.720863][   T40] veth1_macvtap: left promiscuous mode
[   82.726338][   T40] veth0_macvtap: left promiscuous mode
[   82.731892][   T40] veth1_vlan: left promiscuous mode
[   82.737225][   T40] veth0_vlan: left promiscuous mode
[   82.799865][   T40] team0 (unregistering): Port device team_slave_1 removed
[   82.809469][   T40] team0 (unregistering): Port device team_slave_0 removed