last executing test programs:

5.515119607s ago: executing program 3 (id=1843):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000040), r0)
sendmsg$NFC_CMD_GET_TARGET(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x14, r1, 0x0, 0x70bd25, 0x25dfdbfb, {}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x4c001)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000480)={&(0x7f0000000340)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@enum]}}, 0x0, 0x26}, 0x20)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000380))
sendmsg$key(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020800000100000000000001000000000100140003"], 0x18}}, 0x0)
io_setup(0x8, &(0x7f0000000600)=<r2=>0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000000c0))
r3 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
io_submit(r2, 0x1, &(0x7f0000000180)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, r3, &(0x7f00000000c0)="01", 0x24}])
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe(&(0x7f0000000240)={<r5=>0xffffffffffffffff})
r6 = socket$inet_udp(0x2, 0x2, 0x0)
splice(r5, 0x0, r6, 0x0, 0x4ffe6, 0x0)

4.558564245s ago: executing program 3 (id=1858):
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, 0xffffffffffffffff, 0x0)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
r1 = socket(0x10, 0x3, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000037c0), 0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, 0x0, &(0x7f0000000140)='GPL\x00'}, 0x90)
sendfile(0xffffffffffffffff, r1, &(0x7f00000003c0)=0x401, 0x8)
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000047c0)=r2, 0x4)
write(r1, &(0x7f00000000c0)="240000005a001f021007f4f9002304000a04f51108000500020100020800038005000000", 0x24)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$DEVLINK_CMD_RATE_SET(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x1, 0x0, 0x0)
socket$inet6(0xa, 0x0, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x1)
setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x6, &(0x7f0000000000)={0x0, {{0x29, 0x0, 0x37000000, @mcast2}}}, 0x88)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x822b01)
socket$nl_route(0x10, 0x3, 0x0)
getsockopt(r0, 0x28, 0x0, 0x0, &(0x7f0000000000))

4.557761025s ago: executing program 3 (id=1859):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='io.stat\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0xfecc)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r0, 0xffffffffffffffff, &(0x7f00000000c0)=0x9, 0x8000000000000001)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$unix(r1, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32=r2], 0x18}, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000080)="290000001e00190f00003fffffffda060200000000e80001dd0008040d000d00ea11c21d0005000000", 0x29}], 0x1)
r5 = syz_open_procfs(0x0, &(0x7f0000000480)='net/icmp6\x00')
preadv(r5, &(0x7f0000000280)=[{&(0x7f00000001c0)=""/133, 0x85}], 0x1, 0x147, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000540)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x200000, &(0x7f0000000500)={[{@abort}, {@nombcache}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x5}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6}}, {@lazytime}, {@jqfmt_vfsv1}, {@usrquota}, {@grpquota}]}, 0x2, 0x55d, &(0x7f0000000980)="$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")
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000200), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x13, r7, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r6}, 0x10)
r8 = syz_io_uring_setup(0x82e, &(0x7f0000000380), &(0x7f0000000100), &(0x7f0000000080))
io_uring_register$IORING_REGISTER_PBUF_RING(r8, 0x16, &(0x7f0000000000)={0x0}, 0x1)

4.01538056s ago: executing program 1 (id=1867):
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f0000000200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x222087f, &(0x7f0000000300), 0x1, 0x526, &(0x7f0000001400)="$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")
symlink(&(0x7f0000000dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000cc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x0)
r0 = signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x90, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0xc05a}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, 0x0, 0x0)
socket$kcm(0x2, 0xa, 0x2)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, 0x0}, 0x0)
socket$pptp(0x18, 0x1, 0x2)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000033c0), 0x200000)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000040)={0x42}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)={0x50, r3, 0x1, 0x70bd2b, 0x0, {}, [@TIPC_NLA_MON={0x3c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x7}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4048810}, 0x0)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000180)={0x42}, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x21, 0x0, 0x0)
sendmsg$tipc(r1, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x20040840)
ioctl$PPPIOCSFLAGS1(r0, 0x541b, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x200000, 0x0)
r5 = io_uring_setup(0x45b, &(0x7f0000000580)={0x0, 0x23, 0x2000, 0x3, 0x2b2})
r6 = syz_open_dev$usbmon(&(0x7f0000000080), 0xdca6, 0x0)
read$usbmon(r6, 0x0, 0x0)
ioctl$MON_IOCH_MFLUSH(r6, 0x80089203, 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)

3.749594692s ago: executing program 1 (id=1873):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
pause()
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
llistxattr(&(0x7f00000012c0)='./file0\x00', 0x0, 0x2)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, &(0x7f0000000000)=0x655e, 0x4)
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
write$tun(r0, &(0x7f0000001240)=ANY=[@ANYRES16, @ANYRES32], 0x46)
r1 = socket(0x28, 0x5, 0x0)
r2 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r2, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r2, 0x0)
connect$vsock_stream(r1, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
sendmmsg(r1, &(0x7f0000000100)=[{{0x0, 0x2d, &(0x7f00000000c0)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x1, 0x0)
r3 = accept4$unix(r2, 0x0, 0x0, 0x0)
recvfrom$unix(r3, &(0x7f0000000140)=""/248, 0xfe82, 0x0, 0x0, 0x0)

2.3063461s ago: executing program 4 (id=1888):
socket$netlink(0x10, 0x3, 0x0) (async, rerun: 64)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='net_prio.prioidx\x00', 0x275a, 0x0) (rerun: 64)
write$binfmt_script(r0, &(0x7f0000000d40), 0x208e24b) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x10, r0, 0x0)
r1 = socket$inet(0x2, 0x2, 0x1)
sendfile(r1, r0, &(0x7f0000000240), 0x10001)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, 0x0, 0x0)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r2, &(0x7f0000000180)="1a", 0x1, 0x0, &(0x7f00000004c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
listen(r2, 0x0)
openat$cgroup_ro(r0, &(0x7f00000001c0)='memory.swap.current\x00', 0x26e1, 0x0) (async)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0xa8000, 0x0) (async)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r3, 0x6, 0x22, 0x0, 0x0) (async)
setsockopt$inet_int(r3, 0x0, 0xf, &(0x7f0000000380), 0x4) (async, rerun: 32)
r4 = socket(0x11, 0x3, 0x0) (rerun: 32)
r5 = socket$unix(0x1, 0x1, 0x0)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r6=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r6, 0x0) (async)
ioctl$sock_inet_SIOCSIFNETMASK(r4, 0x891c, &(0x7f0000000040)={'pim6reg\x00', {0x2, 0x4e20, @remote}}) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async, rerun: 64)
bpf$MAP_CREATE(0x0, 0x0, 0x0) (async, rerun: 64)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async, rerun: 32)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0) (async, rerun: 32)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r7, &(0x7f0000000100)={0x2, 0x0, @remote}, 0x10) (async)
setsockopt$sock_int(r7, 0x1, 0xc, &(0x7f0000000200), 0x4) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES8=r7], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

2.191517939s ago: executing program 4 (id=1891):
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xcabf}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000040)='syzkaller\x00'}, 0x90)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000009000000050000000100001302000000030000000000000000000000000000692e2e"], 0x0, 0x39}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f00000000c0)='./bus\x00', 0xa08886, &(0x7f0000000040)=ANY=[], 0x3, 0x2b9, &(0x7f0000000ac0)="$eJzs3U1oE2kYwPGnH9t2u7QJy7KwC7v77PayigxNzkIbpBUxUNFGqgVhaicaMiYhE6Ip0kQQevHgxa+zCiKFgngQhFIPnqRFevPgrbcerCeLiCPp9COp6Qc1bQr9/w7tQ573mTx538mQvIFk/ujtK/GoY0TNjNS31El9txRksU78Ui8rCnLo6sTbv86cO38yFA73nFbtDfUHgqra/s/k4PXx/6Yyv5x93v6yWab9F+YXgnPTv0//Mf+1/3LM0ZijiWRGTR1KJjPmkG3p8F0nbqiesi3TsTSWcKx0WT5qJ1OpnJqJ4bbWVNpyHDUTOY1bOc0kNZPOqXnJjCXUMAxtaxVsbjz7ILRxNvJ00XVlIfPGdZsL4rpu8caWPWwPNba0/q5bsv63at0S9lDJRb1FxB7LRrIR77+XD0UlJrZY0ik++SLFc8R9OOEunSrFv9eCE+HZw69fqapfRu38cn0+G2korw+IT/xejceLe0+EewLqKa//SVpL64Pik98q1wcr1jfJ/x0l9Yb4ZPaiJMWWmcl/P831jd1bqR8NqB7rC6+r/1mG16bpyccarQ8AAAAAAAAAADth6KqK+/dGccDNEVVtW5f36it9PrB+f76z4v58o/zZWNvHDgAAAADAQeHkRuKmbVvpHwyKb+WrcZzqB81S2zYe3dj+4L97Nx/T0dUw0/2ukLKtdF72x/RuJ/g8sC/aKA9kefdpq8ENVX6mrAUfqnKcuuX+Nh5zfPD9sy2P0/Td/GxkavevSgAAAAB2w9qL/i7JR19k8wNH7tS6JwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADpodfOXYzP1KKS0Gvz6ulFq9M+/3xQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPaVbwEAAP//u5TQrw==")
ioctl$F2FS_IOC_WRITE_CHECKPOINT(r4, 0xf507, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="6c00000002060104db406e3e0004000200000000100003006269746d61703a706f72740005000400000000000900020073797a32000300000500050000006c00050001000600000024000780080008400000137906000440fffff000060005400000000008000640"], 0x6c}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000030603000000000002000000000000000500010007"], 0x1c}}, 0x0)
r6 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
r7 = open(&(0x7f0000000040)='./file0\x00', 0x141042, 0x0)
write$P9_RREADLINK(r7, &(0x7f0000000300), 0x16)
r8 = dup3(r7, r6, 0x0)
ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000006c0)={@local, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @dev={0xfe, 0x80, '\x00', 0x1e}, 0x2, 0xf0, 0x0, 0x100})
r9 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f00000001c0)={'bridge_slave_0\x00', <r10=>0x0})
sendmsg$nl_route(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c0000001d00070f000200000000000007000000", @ANYRES32=r10], 0x24}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x23, &(0x7f0000000900)=ANY=[@ANYRES64=r10, @ANYBLOB="1d0300000000000000ade4cf083ea7da4f741928c99396ba4fb11dabffffff7f00000000f188", @ANYRESHEX=r6, @ANYRESHEX=r3], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, &(0x7f0000000080), 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=[r8, 0xffffffffffffffff, 0x1, r8], 0x0, 0x10, 0xfff}, 0x90)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000700)={&(0x7f0000000500)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x2c, 0x2c, 0x2, [@func_proto={0x0, 0x1, 0x0, 0xd, 0x0, [{0x0, 0x2}]}, @struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x0, [{0x0, 0x2}]}]}}, 0x0, 0x46, 0x0, 0x1}, 0x20)
syz_emit_ethernet(0x6e, &(0x7f0000000080)={@broadcast, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "02adf7", 0x38, 0x3a, 0x0, @private2, @mcast2, {[], @time_exceed={0x2, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "00641a", 0x0, 0x3a, 0x0, @mcast1, @private1, [], "1e520b4c951ee12e"}}}}}}}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000002780)=[{{0x0, 0xfffffffffffffde1, 0x0}}], 0x1, 0x2140, 0x0)

1.591943279s ago: executing program 0 (id=1894):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'team0\x00'})
socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x2, 0x300)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
pipe2(&(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RREADDIR(r2, &(0x7f0000002200), 0x10025)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002600)={<r3=>0xffffffffffffffff})
close_range(r3, 0xffffffffffffffff, 0x0)
dup(r1)
r4 = memfd_create(&(0x7f0000000080)='\b\x9dF\xd8\b\xb3~u\xa5\"\xdc\xfdq\xf6c\r;\xfcO\x8c=\x81\xb1\x8aSpA\xd4\x98\x85D\x89>N\x8ar\x17O\x0fKR\xe2{mn\xcc\xbf2\xc0\xa7\x14\xd0\xd4\xfe/\x9e\xee\xe7\xd7E\xe9\t\x83\xdeNX\xec\xe66\x1b\x97\xe7\xe6\x97\xf9\xb3\xf6\xb9\v\xb5$\xee\x84\x1cn,B\xd5?\xe5E:+Pm\x1d\xb4\xb8', 0x0)
splice(r3, 0x0, r4, &(0x7f0000000140), 0x9, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='proc\x00', 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$gtp(&(0x7f0000000480), 0xffffffffffffffff)
sendmsg$GTP_CMD_DELPDP(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000004c0)={0x1c, r6, 0x1, 0x0, 0x0, {}, [@GTPA_LINK={0x8}]}, 0x1c}}, 0x0)
sendmsg$GTP_CMD_ECHOREQ(r0, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, r6, 0x400, 0x70bd2d, 0x25dfdbfd, {}, [@GTPA_O_TEI={0x8, 0x9, 0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x90}, 0x84)
madvise(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r7=>r0}, './file0\x00'})
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000280)={<r8=>0x0, @in6={{0xa, 0x4e22, 0xfffffc62, @local, 0x3}}, 0x3, 0x6, 0x4, 0x3ff, 0x26, 0x3, 0x4}, &(0x7f0000000140)=0x9c)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r7, 0x84, 0x22, &(0x7f0000000340)={0xc00, 0x0, 0x4, 0xd, r8}, &(0x7f0000000380)=0x10)
mbind(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x6, &(0x7f0000000000)=0xd, 0x8, 0x0)
mlock(&(0x7f0000ffa000/0x2000)=nil, 0x2000)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='mounts\x00')
epoll_create1(0x0)
r9 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f00000001c0)={'vlan0\x00', <r10=>0x0})
setsockopt$packet_int(r9, 0x107, 0xf, &(0x7f0000000000)=0xf3e, 0x4)
sendto$packet(r9, &(0x7f0000000200)="3f030e00f0e812002c001e0089e9aaa911d7c2290f0088471327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c152cfdf9435e3ffe460f54", 0x4a, 0x14, &(0x7f0000000540)={0x11, 0x0, r10, 0x1, 0x0, 0x6, @multicast}, 0x14)

1.316148061s ago: executing program 4 (id=1897):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000080)={&(0x7f0000000440)=ANY=[@ANYBLOB="020300090c0000000000fb0000000000030006000000000002000000e00000010000000000000000020001000000000000000000000000000300050000000000020000007f00000100000000000000000200130003"], 0x60}}, 0x0)

1.275557435s ago: executing program 4 (id=1898):
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x32}, 0x9c) (async)
kexec_load(0x0, 0x10, &(0x7f0000000140)=[{0x0, 0x2, 0x0, 0x3e0000}], 0x0) (async)
sendmsg$NL802154_CMD_NEW_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="8c000000", @ANYBLOB="110800b87605730000002000000034930500000000000000000400002393cabaeb"], 0x8c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x24, 0x14, 0x0, 0x0, 0x0, {0x2}}, 0x24}}, 0x0) (async)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000040)=0x9, 0x4) (async)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r0, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0) (async)
setsockopt$inet6_int(r0, 0x29, 0x42, &(0x7f0000000100)=0x1e79, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

1.273966525s ago: executing program 2 (id=1899):
r0 = open_tree(0xffffffffffffff9c, 0x0, 0x800)
r1 = open_tree(0xffffffffffffff9c, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x7, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x1}, 0x48)
r2 = socket$inet6_sctp(0xa, 0x0, 0x84)
sendmsg$SOCK_DIAG_BY_FAMILY(r0, &(0x7f0000000200)={&(0x7f0000000180), 0xc, &(0x7f00000001c0)={&(0x7f0000000400)={0x17c, 0x14, 0x802, 0x70bd2d, 0x25dfdbfd, {0x2, 0x40}, [@INET_DIAG_REQ_BYTECODE={0x7f, 0x1, "1b00a3aff1162fdeb447cbb8b65393f03f4a0361447cc1c811415e4b23e7629968368bca5c0deeca932e05b38ae50a102059b55ba6dff76ed7c9cbfbb48dbd19c1b6afab8a624ec00cfaae68c85634d12de76866d48c870721ef63a488313549ba5f69dff529070167432205535595adbdb12b17b49f3bdd33df6f"}, @INET_DIAG_REQ_BYTECODE={0xe8, 0x1, "2607d6abc395393999aaea6d04e554395d81999daedd6083dc636651224fec821d33a9067d9cad552337edc1ebd6ada74d6254eb0b44d4b4fbbb0fe66fae566822dc463c2d3d9769c75e616ad52da36887d48d45afeedc1e5c1ad6b5ace1a76762644f86b8741855ffad169abbedb7239b717876c10fef84ab422485a853bbc2b7ec53fa0977367e67d19c39c5fffaeb88c976894e361bf6388a2af022e7e44a5bbe9ddcdbecf1bf1f7337f320abce61628f67ebc1febd929d9acb553c7d89fa7e77614dd5122d13781eddacf7b338dd5343cefec87065196f4d2a1d51c8f852c9d7abc9"}]}, 0x17c}, 0x1, 0x0, 0x0, 0x44000}, 0x0)
bind$inet6(r2, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback, 0xe}, 0x1c)
listen(r2, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000000)={0x0, 0x4}, 0x8)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000040)={0x4, 0x5}, 0x4)
socket$inet_udplite(0x2, 0x2, 0x88)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r4, 0x8983, &(0x7f00000011c0)={0x6, 'veth1_to_bridge\x00'})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={<r5=>0xffffffffffffffff})
ioctl$F2FS_IOC_MOVE_RANGE(r5, 0x541b, &(0x7f0000000240)={<r6=>0xffffffffffffffff, 0x22b426b6})
close_range(r6, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r7, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r7, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xca}, 0x8)
ioctl$SIOCPNDELRESOURCE(r1, 0x89ef, &(0x7f0000000040)=0x800)
sendmmsg$inet6(r7, &(0x7f0000003c40)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="03", 0x1}], 0x1}}], 0x1, 0x0)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r7, 0x84, 0x77, &(0x7f00000003c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="5900010000"], 0xa)

1.259451276s ago: executing program 4 (id=1900):
socket$nl_sock_diag(0x10, 0x3, 0x4)
socket$packet(0x11, 0x3, 0x300)
r0 = socket(0x200000100000011, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f00000000c0))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040))
socket$kcm(0xa, 0x0, 0x87)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000200)='percpu_free_percpu\x00'}, 0x10)
ioctl$sock_kcm_SIOCKCMUNATTACH(0xffffffffffffffff, 0x89e1, &(0x7f0000000280)={r1})
r3 = syz_genetlink_get_family_id$gtp(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="07c9ea00000000e1ffffff00000008000200000074e9000d0800", @ANYRES32=0x0, @ANYRES8=r2], 0x40}}, 0x0)
sendto$packet(0xffffffffffffffff, &(0x7f00000000c0)="37fe0187610488b3d05d92015ee9ad38d34e1b37234adcd7a271dcd87da03ea3c1b0eb949065c29156446f75a0f3128825ba4f61f4b702", 0x37, 0x0, 0x0, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40a01, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc601})
r5 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r4, &(0x7f00000000c0)=ANY=[@ANYBLOB="001c86dd0700400000004000000060ec97000fc83a00fe8000000000000000000000000000aaff020000000000000000000000000001"], 0xffe)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x0, &(0x7f0000000140)})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x11, 0x4, 0x4, 0xff, 0x1820}, 0x48)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000080)=@pptp={0x18, 0x2, {0x0, @dev}}, 0x80, 0x0}, 0x0)
r6 = socket$kcm(0xa, 0x3, 0x3a)
syz_emit_ethernet(0x22, &(0x7f00000002c0)=ANY=[@ANYBLOB="aa4ac0084f81001100000c03000080002d832a45346946367804bfc51cfd52906a16bb440713902c2033c18884de12ed3ade2e2131fb496c314bdc81c9b93c0a4840322316c0744334cf3afec158b4104cdf2612fd8b8fc9ddf0bbe66931d767700c56cda9436883481ddb0a"], &(0x7f0000000240)={0x0, 0x4, [0x34e, 0xd6a, 0x7d6, 0x365]})
sendmsg$kcm(r6, &(0x7f00000005c0)={&(0x7f0000000380)=@l2tp6={0xa, 0x0, 0x0, @dev}, 0x80, &(0x7f0000000080), 0x1}, 0x0)
r7 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x102)
fcntl$setlease(r7, 0x400, 0x0)
fcntl$setlease(r7, 0x400, 0x1)
pread64(r0, &(0x7f0000000400)=""/242, 0xfffffffffffffcce, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

1.136011816s ago: executing program 2 (id=1901):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48) (async, rerun: 64)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) (async, rerun: 64)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000008c0)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc4, 0xc4, 0xa, [@ptr={0xa, 0x0, 0x0, 0x2, 0x4}, @enum={0x3, 0x6, 0x0, 0x6, 0x4, [{0xd, 0xd6}, {0x10, 0x1}, {0x7, 0x1ff}, {0x6}, {0x9, 0x8}, {0x8, 0x6}]}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x2, 0x8}}, @restrict={0x0, 0x0, 0x0, 0xb, 0x4}, @int={0x2, 0x0, 0x0, 0x1, 0x0, 0x40, 0x0, 0x80}, @ptr={0x7, 0x0, 0x0, 0x2, 0x5}, @struct={0x5, 0x4, 0x0, 0x4, 0x0, 0x42, [{0x1, 0x5, 0x80}, {0xb, 0x3, 0x6}, {0x1, 0x5, 0x3}, {0xc, 0x10000, 0x81}]}]}, {0x0, [0x5f, 0x2e, 0x5f, 0x61, 0x2e, 0x2e, 0x0, 0x2e]}}, &(0x7f0000000600)=""/34, 0xe6, 0x22, 0x1, 0x5}, 0x20) (async)
r3 = socket$nl_route(0x10, 0x3, 0x0) (async)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000880)={<r4=>0x0}, &(0x7f0000000900)=0xc)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000940)={{0x1, 0x1, 0x18, <r5=>r2, {0x72}}, './file0\x00'}) (async)
r6 = syz_open_procfs(0x0, &(0x7f0000000480)='net/ip6_tables_targets\x00')
read(r6, &(0x7f0000000000)=""/185, 0xb9) (async)
r7 = open(&(0x7f0000002000)='./bus\x00', 0x14b142, 0x0)
sendfile(r7, r6, 0x0, 0x3) (async, rerun: 64)
sendmsg$nl_route(r3, &(0x7f0000000a40)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000a00)={&(0x7f0000000980)=@RTM_GETNSID={0x4c, 0x5a, 0x800, 0x70bd27, 0x25dfdbfe, {}, [@NETNSA_NSID={0x8, 0x1, 0x2}, @NETNSA_PID={0x8}, @NETNSA_PID={0x8, 0x2, r4}, @NETNSA_NSID={0x8}, @NETNSA_FD={0x8, 0x3, r5}, @NETNSA_FD={0x8, 0x3, r7}, @NETNSA_NSID={0x8, 0x1, 0x4}]}, 0x4c}}, 0x844) (rerun: 64)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x3, 0x19, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYRESDEC=0x0, @ANYRES16=r1, @ANYBLOB="0000000000000000b705000008000000850000006a00000095"], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2e, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x90) (async)
syz_clone3(&(0x7f0000000700)={0x50300, &(0x7f0000000080), &(0x7f00000001c0), &(0x7f0000000300)=<r9=>0x0, {0x26}, &(0x7f0000000440)=""/89, 0x59, &(0x7f0000000640)=""/168, &(0x7f0000000580)=[0xffffffffffffffff], 0x1}, 0x58) (async)
r10 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/sys/net/ipv4/vs/sync_sock_size\x00', 0x2, 0x0) (async)
ioctl$SNDRV_TIMER_IOCTL_START(r5, 0x54a0)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb6, 0x7f, 0x0, 0x0, 0x0, 0x100000000, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000000), 0x8}, 0x2040, 0x93b, 0xb7b5, 0x6, 0x714a, 0x18a7, 0xe, 0x0, 0x4}, r9, 0x7, r10, 0x3)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r8, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000040)="76389e147583ddd0569ba56a888e", 0x0, 0x1089, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.134689336s ago: executing program 2 (id=1902):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
pause()
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
llistxattr(&(0x7f00000012c0)='./file0\x00', 0x0, 0x2)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, &(0x7f0000000000)=0x655e, 0x4)
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
write$tun(r0, &(0x7f0000001240)=ANY=[@ANYRES16, @ANYRES32], 0x46)
r1 = socket(0x28, 0x5, 0x0)
r2 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r2, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r2, 0x0)
connect$vsock_stream(r1, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
sendmmsg(r1, &(0x7f0000000100)=[{{0x0, 0x2d, &(0x7f00000000c0)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x1, 0x0)
r3 = accept4$unix(r2, 0x0, 0x0, 0x0)
recvfrom$unix(r3, &(0x7f0000000140)=""/248, 0xfe82, 0x0, 0x0, 0x0)

1.119543907s ago: executing program 4 (id=1903):
iopl(0x3)
mlockall(0x2)
syz_open_dev$tty1(0xc, 0x4, 0x1)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000000), 0xfffffff7)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(0xffffffffffffffff, 0x660c)
read$msr(0xffffffffffffffff, &(0x7f0000000380)=""/181, 0xb5)
syz_mount_image$vfat(&(0x7f0000003880), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], 0x6, 0x2a6, &(0x7f0000000440)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7, 0x12, r0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000000000)={0x2, {0x2, 0x0, 0x300}})
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000580)={'bond_slave_1\x00'})
getsockopt$packet_int(r2, 0x107, 0x15, 0x0, &(0x7f0000000200))
ioctl$int_in(r2, 0x5421, &(0x7f00000002c0)=0x8001)
mkdir(&(0x7f0000000300)='./file0\x00', 0xfffffffffffffffe)
lchown(&(0x7f0000000000)='./file0/bus\x00', 0xee00, 0x0)
creat(&(0x7f0000000040)='./file0/bus\x00', 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f00000002c0)={0x0, 0x0, 0x0, 'queue1\x00'})
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
r3 = socket$unix(0x1, 0x1, 0x0)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r4=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r4, 0x0)
r5 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r7)

757.823097ms ago: executing program 0 (id=1904):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x3, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000000000000000000a5e80000811059000000000a95"], &(0x7f0000000140)='syzkaller\x00'}, 0x90)

676.135704ms ago: executing program 0 (id=1905):
r0 = socket(0x2a, 0x2, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140), 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000004000)=@newtfilter={0x38, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0xffe0}, {}, {0x2}}, [@filter_kind_options=@f_route={{0xa}, {0x8, 0x2, [@TCA_ROUTE4_POLICE={0x4}]}}]}, 0x38}}, 0x0) (async, rerun: 64)
r2 = socket$netlink(0x10, 0x3, 0x0) (rerun: 64)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0) (async)
execve(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)=[&(0x7f0000000040)='route\x00'], &(0x7f00000004c0)=[&(0x7f0000000100)='drr\x00', &(0x7f0000000180)=']\x00', &(0x7f00000001c0)='-\x00', &(0x7f0000000380)='drr\x00', &(0x7f00000003c0)='\x00', &(0x7f0000000400)='route\x00', &(0x7f0000000440)='&\x00', &(0x7f0000000480)='route\x00'])

651.554206ms ago: executing program 0 (id=1906):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x21000}], 0x2, 0x1800, 0x0, 0x3)
ioctl$KDGKBDIACR(r1, 0x4b4a, &(0x7f00000001c0))
setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000027c0)=ANY=[@ANYBLOB="240000001a0001000000ff7f0000000080", @ANYRES32=0x0, @ANYBLOB="02"], 0x24}}, 0x0)
r2 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x6, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x8}, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
bind$inet(r4, &(0x7f0000000100)={0x2, 0x0, @dev}, 0x10)
connect$inet(r4, &(0x7f00000000c0)={0x2, 0x0, @local}, 0x10)
syz_emit_ethernet(0xbe, &(0x7f0000000440)={@broadcast, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @dest_unreach={0x3, 0x4, 0x0, 0x0, 0x0, 0x0, {0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @dev, @local, {[@rr={0x7, 0x13, 0x0, [@private, @empty, @empty, @private]}, @timestamp_prespec={0x44, 0xc, 0x0, 0x3, 0x0, [{@loopback}]}, @ssrr={0x89, 0xf, 0x0, [@private, @broadcast, @broadcast]}, @timestamp_addr={0x44, 0x4c, 0x0, 0x1, 0x0, [{@initdev={0xac, 0x1e, 0x0, 0x0}}, {@private}, {}, {@local}, {@loopback}, {@private}, {@multicast2}, {@broadcast}, {@broadcast}]}, @timestamp={0x44, 0x4}]}}}}}}}, 0x0)
mkdirat(r1, &(0x7f00000001c0)='./file0\x00', 0x180)
r5 = socket$inet6(0xa, 0x3, 0x1)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x8}, 0x1c)
setreuid(0xee00, 0xee00)
sendmmsg$inet6(r5, &(0x7f0000003980)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=[@dstopts={{0x18, 0x29, 0x37, {0x8}}}], 0x18}}], 0x1, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r6)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/asound/seq/clients\x00', 0x0, 0x0)
r8 = inotify_init1(0x0)
dup3(r8, r7, 0x0)
clock_nanosleep(0x1, 0x1, &(0x7f00000002c0)={0x0, 0x3938700}, &(0x7f0000000300))
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000180))
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000080)={0x8, &(0x7f0000000000)=[{0xd, 0x2, 0x0, 0x6}, {0x0, 0x8, 0x1, 0x143}, {0x7, 0x6, 0x9, 0x7}, {0x2, 0x7f, 0x5, 0x7}, {0x6, 0x9, 0x0, 0xffff0000}, {0xd5, 0x8, 0x1, 0x6}, {0x0, 0xfb, 0xb, 0x3}, {0x2, 0x4, 0x28, 0x10}]})

610.759309ms ago: executing program 3 (id=1907):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)={{0x14, 0x10, 0x1, 0x3000000}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @tproxy={{0xb}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_TPROXY_FAMILY={0x8}]}}}]}]}], {0x14}}, 0xbc}}, 0x0)

515.976897ms ago: executing program 0 (id=1908):
r0 = socket$inet6(0x10, 0x3, 0x0)
write(r0, &(0x7f0000000040)="2400000021002551241c0165ff16fc020200000000100f000ee1000c08000b0000000000", 0x24)

515.633267ms ago: executing program 1 (id=1874):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}}}, 0xb8}}, 0x0)

514.261287ms ago: executing program 0 (id=1909):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f0000000080)=[@in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}], 0x1c)
setsockopt(r1, 0x84, 0x7f, &(0x7f0000000040)="020000000980ffff", 0x8)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r1, 0x84, 0xc, &(0x7f0000000000), 0x4)
recvmsg(r1, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r2, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
socket$rxrpc(0x21, 0x2, 0xa)
socket$inet6(0xa, 0x0, 0x0)
r3 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x48)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
r6 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48)
ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, r7)
socket$nl_route(0x10, 0x3, 0x0)
mkdir(&(0x7f00000008c0)='./bus\x00', 0x0)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000000)='./bus\x00', 0x6000978)
socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_BEARER_ENABLE(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)={0x14, r5, 0x1}, 0x14}}, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r9)
r10 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(r10, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6}]})

513.979617ms ago: executing program 3 (id=1910):
syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), 0xffffffffffffffff)
shmctl$SHM_INFO(0xffffffffffffffff, 0xe, &(0x7f0000000400)=""/241)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r0, &(0x7f0000002a00)={0x0, {'syz0\x00', 'syz0\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b}}, 0x120)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040))
write$UHID_DESTROY(r0, &(0x7f0000000080), 0x4)
socket$igmp(0x2, 0x3, 0x2)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
io_setup(0x5, &(0x7f0000001140))
io_setup(0x7, &(0x7f0000000000))
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000002c40)={0x0, 0x0, &(0x7f0000002c00)={&(0x7f0000000bc0)=@newsa={0xf0, 0x10, 0x1, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@private2, 0x0, 0x0, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@remote}, @in6=@empty, {}, {}, {}, 0x0, 0x0, 0x2}}, 0xf0}}, 0x0)
io_setup(0x253, &(0x7f00000000c0))
io_setup(0x7bba, &(0x7f0000000080))
io_setup(0x2, &(0x7f0000001180))
open(&(0x7f0000000000)='./bus\x00', 0x20b42, 0x0)
open(&(0x7f0000000040)='./bus\x00', 0x1658be, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
ioprio_set$pid(0x1, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000001c0)='mountinfo\x00')
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x60, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000003200)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195}, 0x90)
r4 = open(&(0x7f0000000200)='./bus\x00', 0x141a42, 0x0)
sendfile(r4, r3, 0x0, 0x100800001)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0)

513.901077ms ago: executing program 1 (id=1911):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {0x0, 0x0, 0x0, 0x300000000000000}}}, 0xb8}}, 0x0)

462.982962ms ago: executing program 1 (id=1912):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000796420000000000000400000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000000006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a00000000000085000000060000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0xa, 0xff5c, &(0x7f0000000340)=""/222}, 0x78)

275.191437ms ago: executing program 2 (id=1913):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000500000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000001000008500000095000000b70000000000000095"], &(0x7f0000000180)='syzkaller\x00'}, 0x90)

160.114276ms ago: executing program 2 (id=1914):
r0 = socket$kcm(0x29, 0x5, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c00000000000000f2ffffff850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r2}, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'vlan0\x00', <r3=>0x0})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000008c0)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r4, @ANYBLOB="08000100", @ANYRES32=r3], 0x90}}, 0x0)

140.452348ms ago: executing program 1 (id=1915):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newsa={0x1b8, 0x10, 0x1, 0x0, 0x0, {{@in6=@private2, @in=@multicast1}, {@in=@empty, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa, 0x1, 0x0, 0x23}, [@algo_auth={0xc8, 0x1, {{'sha256\x00'}, 0x400, "ca8bdaf566099b58b0085179e7b91acc5981a2f76db1cb781fe7cb575f642ed9d3ee2820e6be79e042344d8e2e779c6a0b7e0987ec26fe22919789f93ba510dd3beb28e193dc2a809d980139b787088859f61e644918bfbcb15c16fdb55dead2d61b01c0f99cf65c8a02c8a9cc701a089eaa8f6b24a85c3e0a83d3ebae09e74f"}}]}, 0x1b8}}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000d00000000080000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000022, &(0x7f0000000080), 0x1, 0x52e, &(0x7f0000000a80)="$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")
setxattr$system_posix_acl(&(0x7f0000000380)='./file0/../file0\x00', &(0x7f0000000140)='system.posix_acl_access\x00', &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000001000000000008000400000000000000100003000000000020"], 0x24, 0x0)
setxattr$system_posix_acl(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000280)='netlink_extack\x00', r1}, 0x10)
mq_open(0x0, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x6})
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmmsg$inet_sctp(r2, &(0x7f0000002a00)=[{&(0x7f0000000100)=@in={0x2, 0x0, @private=0xa010101}, 0x10, &(0x7f0000000440)=[{&(0x7f0000000140)="d4", 0x1}], 0x1, &(0x7f0000000580)=[@sndrcv={0x30}, @prinfo={0x18, 0x84, 0x5, {0x30}}], 0x48}], 0x1, 0x40)
r3 = socket$inet6_sctp(0xa, 0x0, 0x84)
sched_setscheduler(0x0, 0x0, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xffffffbffffffffa, 0xffffffffffffffff, 0xb)
bpf$OBJ_GET_PROG(0x7, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kfree\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0006, &(0x7f00000003c0)={[{@jqfmt_vfsold}, {@resgid}, {@grpquota}, {@noload}, {@data_err_ignore}, {@usrjquota}]}, 0xfe, 0x444, &(0x7f0000000980)="$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")
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000380), 0x0, &(0x7f0000000a40)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [r3, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x58, 0x1}, 0x40000)
syz_emit_ethernet(0x56, &(0x7f0000000080)={@remote, @random="d311282e7263", @void, {@canfd={0xd, {{0x0, 0x0, 0x0, 0x1}, 0x35, 0x1, 0x0, 0x0, "15cb91b483712639ff6c9940562c04f3aa88a8fb388a11dc531524cf209b7779d305f549fa089c62a91c482247bade8eb00c22d3d9b3b540a3b2c8ee1e1ec77d"}}}}, 0x0)
syz_open_procfs$userns(0x0, &(0x7f0000000000))
r4 = mq_open(&(0x7f0000000000)='eth0\x00', 0x42, 0x0, 0x0)
r5 = epoll_create(0x2)
ppoll(&(0x7f0000001240)=[{r4, 0x400}, {0xffffffffffffffff, 0x510e}, {r5, 0x2101}, {0xffffffffffffffff, 0x1000}, {0xffffffffffffffff, 0x8000}, {0xffffffffffffffff, 0x90}, {r5, 0x2000}, {}], 0x8, 0x0, &(0x7f0000001300)={[0x5]}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x11, 0x30}, [@ldst={0x6}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48)
r6 = syz_open_dev$sg(&(0x7f0000000440), 0x0, 0x181801)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000100))
ioctl$SCSI_IOCTL_SEND_COMMAND(r6, 0x1, &(0x7f0000000000)=ANY=[@ANYRES64=r6, @ANYRES16=r6])
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
madvise(&(0x7f0000000000/0x2000)=nil, 0x8000000, 0x18)

105.411351ms ago: executing program 2 (id=1916):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='io.stat\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0xfecc)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r0, 0xffffffffffffffff, &(0x7f00000000c0)=0x9, 0x8000000000000001)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$unix(r1, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32=r2], 0x18}, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000080)="290000001e00190f00003fffffffda060200000000e80001dd0008040d000d00ea11c21d0005000000", 0x29}], 0x1)
r5 = syz_open_procfs(0x0, &(0x7f0000000480)='net/icmp6\x00')
preadv(r5, &(0x7f0000000280)=[{&(0x7f00000001c0)=""/133, 0x85}], 0x1, 0x147, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000540)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x200000, &(0x7f0000000500)={[{@abort}, {@nombcache}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x5}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6}}, {@lazytime}, {@jqfmt_vfsv1}, {@usrquota}, {@grpquota}]}, 0x2, 0x55d, &(0x7f0000000980)="$eJzs3d9rW1UcAPDvTX/sp66DMdQHKezByVy6tv6Y4MN8FB0O9H2G9q6Mpsto0rHWgduDe9mLDEHEgfgH+O7j8B/wrxjoYMgo+uBL5aY3XbYmbZZlSzSfD9ztnPuj55yce07OyUm4AQytyeyfQsSrEfFNEnGo6dho5AcnN89bf3htLtuS2Nj47M8kknxf4/wk//9AHnklIn79OuJEYXu61dW1xVK5nC7n8ana0uWp6urayYtLpYV0Ib00Mzt7+p3Zmfffe7dnZX3z3N/ff3r3o9O3jq1/9/P9w7eTOBMH82PN5XgG15sjkzGZvyZjceaJE6d7kNggSfqdAboykrfzscj6gEMxkrd64P/vq4jYAIZUov3DkGqMAxpz+x7Ng/8zHny4OQHaXv7Rzc9GYm99brR/PXlsZpTNdyd6kH6Wxi9/3LmdbdG7zyEAdnX9RkScGh3d3v8lef/XvVMdnPNkGvo/eHHuZuOft1qNfwpb459oMf450KLtdmP39l+43+KypFefUmfjvw9ajn+3Fq0mRvLYS/Ux31hy4WI5zfq2lyPieIztyeI7reecXr+30e5Y8/gv27L0G2PBPB/3R/c8fs18qVZ6ljI3e3Aj4rWW499kq/6TFvWfvR7nOkzjaHrn9XbHdi//87XxU8QbLev/0YpWsvP65FT9fphq3BXb/XXz6G/t0u93+bP6379z+SeS5vXa6tOn8ePef9J2x7q9/8eTz+vh8Xzf1VKttjwdMZ58sn3/zKNrG/HG+Vn5jx/buf9rdf/vi4gvOiz/zSM32546CPU//1T1//SBex9/+UO79Dur/7froeP5nk76v04z+CyvHQAAAAAAAAyaQkQcjKRQ3AoXCsXi5vc7jsT+QrlSrZ24UFm5NB/138pOxFihsdJ9qOn7ENP592Eb8Zkn4rMRcTgivh3ZV48X5yrl+X4XHgAAAAAAAAAAAAAAAAAAAAbEgTa//8/8PtLykvEXm0PgufLIbxheu7b/XjzpCRhI3v9heHXV/vf1Ph/Ai+f9H4bUWL8zAPST938YXto/DC/tH4aX9g8AAAAAAAAAAAAAAAAAAAAAAAAAAAA9de7s2WzbWH94bS6Lz19ZXVmsXDk5n1YXi0src8W5yvLl4kKlslBOi3OVpd3+XrlSuTw9EytXp2pptTZVXV07v1RZuVQ7f3GptJCeTz1tCAAAAAAAAAAAAAAAAAAAALarrq4tlsrldFlAoKvA6GBkQ6ApcKsHrbvPHRMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANPk3AAD//0unNek=")
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000200), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x13, r7, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r6}, 0x10)
r8 = syz_io_uring_setup(0x82e, &(0x7f0000000380), &(0x7f0000000100), &(0x7f0000000080))
io_uring_register$IORING_REGISTER_PBUF_RING(r8, 0x16, &(0x7f0000000000)={&(0x7f0000001000)}, 0x1)

0s ago: executing program 3 (id=1917):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, &(0x7f0000001b40)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f6fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe508185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff90326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c6be0ed9257851ed916219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c5b901dbd7387f49e0b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000053046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25132a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a068c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238e3fee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e89884cb73f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182060e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000008835196ed0c6a1c1d4c140e5ff0000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd574d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88c3c44b3b7486f979e8a3174b531f573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d0104361c37c61a43b5afd865b60d4cae891b73220f17d25979a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fcd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d372e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36d3cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e64701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867ec92d13a4faa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d93e1fe9c0b4a4a2689217380400a9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a000000000000000000000000000020bd79e41c682139c58ac1deb039a691ad640e12c12fe11d70fe495906f200d71778acbd4eee53a3996cb0de84bd2b059d60c0f96a53ea44e0b293865aa68df494f87db976e36ad6c06912244d4c883c4aaa60b4a1392ce0b2f2c519663b4652ff871e0f6dfff9f7d34ecf04be0a58c3d53174b67d1886e34b81ad8c60da56acc64739c3acab24aa8d0ac92d465074f915608b1b60a948bad401b1a7fb3627bbe6c45123ed44bfdf8cc143bd1b7a663dc3d0476b8e39becffc429e41f66b1e37ae52aacaff0f1dc8ea70b68c25072e20586b19127d75fa71577f265c5100000000000000000000000000028bfaaf1dce7970ae04e33a3d130761c0c0a53997716ebfa0e03c0acdb52e4af877a339d154fea243453e69bc89bb18fc501cf3a623bb871047060234ebc21155d0dc6efa64749afb63a0f8a9c28f62861e826ddf243bd9dda895a9b24d38641856dc058040a418e15139c0b13d52258254eacf045386abe27e8756c29758330146da2e25822afd92467974f70fa71a971517be63845c1eeb1a7a39a8e01750a67925746ffbc35c0046a1d660ebe5967bbc0496d0c9ba9758f9fcf46ecbd2e07523af5e56ff1d8eee549ecc92b0d13ad2edb0149b25debe70d227afb1ad45991bfb63f7cf6a8b5bcabf504d7fe21df0a23e8615055df856d88b7379a4c4499d01221d10c286c10b12ff5c89903806eab61c18721be6edc3d0fdbe2448f130b87b375f0de009ac38fd159a9f54771388f54b50caf5caf896ceb214b298b524c6cfeca9e0343038c68de8856772de2c498e191b9da24cc2a4b722c88a0fd2cca32ea9445e06549d1b5e9c1c90f4de9ce818694c1ced8354729bbec6a828876dae455e24f0f40490aaf80825d0fcdd8620b43da6b7f94c82aac9b256a469312aff3411ac73a377f01f7329a8027d9b47212c2ae9f2038152d0e99b4622a6eb35ba206e43cfbb50ef80b84a1854208c8414b309eb8a3408050772e161beac866e7247b3dc245c9ea14965f2a1a4a97c8baa5a4dd9f8904d47"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x49)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
mremap(&(0x7f0000812000/0x3000)=nil, 0x3000, 0x3000, 0x3, &(0x7f0000ff5000/0x3000)=nil)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000028000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1008002, &(0x7f0000000100)={[{@grpquota}, {@delalloc}, {@resuid}, {@debug}, {@dioread_nolock}, {@jqfmt_vfsold}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")

kernel console output (not intermixed with test programs):

e2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  144.119836][ T8189] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.144128][ T8194] ext4 filesystem being mounted at /114/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  144.170620][ T3372] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  144.180980][ T3372] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  144.280359][ T3372] bridge_slave_1: left allmulticast mode
[  144.286055][ T3372] bridge_slave_1: left promiscuous mode
[  144.291752][ T3372] bridge0: port 2(bridge_slave_1) entered disabled state
[  144.299847][ T3372] bridge_slave_0: left promiscuous mode
[  144.305606][ T3372] bridge0: port 1(bridge_slave_0) entered disabled state
[  144.328802][ T7437] EXT4-fs error (device loop1): ext4_readdir:260: inode #2: block 16: comm syz-executor: path /26/file1: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  144.357598][ T7437] EXT4-fs error (device loop1): ext4_lookup:1815: inode #2: comm syz-executor: deleted inode referenced: 11
[  144.370729][ T7437] EXT4-fs error (device loop1): ext4_lookup:1815: inode #2: comm syz-executor: deleted inode referenced: 11
[  144.411094][ T3372] smc: removing net device vlan0 with user defined pnetid SYZ1
[  144.459107][ T3372] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  144.469727][ T3372] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  144.480096][ T3372] bond0 (unregistering): (slave macvlan0): Releasing backup interface
[  144.488988][ T3372] team0: left allmulticast mode
[  144.493899][ T3372] team_slave_0: left allmulticast mode
[  144.499432][ T3372] team_slave_1: left allmulticast mode
[  144.504895][ T3372] team_slave_0: left promiscuous mode
[  144.510268][ T3372] team_slave_1: left promiscuous mode
[  144.516791][ T3372] bond0 (unregistering): Released all slaves
[  144.525660][ T3372] bond1 (unregistering): Released all slaves
[  144.648465][ T3372] hsr_slave_0: left promiscuous mode
[  144.654178][ T3372] hsr_slave_1: left promiscuous mode
[  144.661199][ T3372] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  144.668704][ T3372] batman_adv: batadv0: Removing interface: batadv_slave_0
[  144.676307][ T3372] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  144.683872][ T3372] batman_adv: batadv0: Removing interface: batadv_slave_1
[  144.695397][ T3372] bridge_slave_0: left allmulticast mode
[  144.701283][ T3372] veth0_macvtap: left promiscuous mode
[  144.773372][ T3372] team0 (unregistering): Port device team_slave_1 removed
[  144.782474][ T8198] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.799042][ T3372] team0 (unregistering): Port device team_slave_0 removed
[  144.806359][   T50] Quota error (device loop1): do_check_range: Getting block 0 out of range 1-7
[  144.815384][   T50] EXT4-fs error (device loop1): ext4_release_dquot:6871: comm kworker/u8:3: Failed to release dquot type 0
[  145.118655][    T9] vhci_hcd: vhci_device speed not set
[  145.141989][ T8107] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  145.151150][ T8107] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  145.161965][ T8107] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  145.172709][ T8107] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  145.216966][ T8107] 8021q: adding VLAN 0 to HW filter on device bond0
[  145.232320][ T8107] 8021q: adding VLAN 0 to HW filter on device team0
[  145.243706][ T1662] bridge0: port 1(bridge_slave_0) entered blocking state
[  145.250803][ T1662] bridge0: port 1(bridge_slave_0) entered forwarding state
[  145.259364][ T1662] bridge0: port 2(bridge_slave_1) entered blocking state
[  145.266487][ T1662] bridge0: port 2(bridge_slave_1) entered forwarding state
[  145.351293][ T8215] chnl_net:caif_netlink_parms(): no params data found
[  145.388836][ T8215] bridge0: port 1(bridge_slave_0) entered blocking state
[  145.395940][ T8215] bridge0: port 1(bridge_slave_0) entered disabled state
[  145.403354][ T8215] bridge_slave_0: entered allmulticast mode
[  145.409904][ T8215] bridge_slave_0: entered promiscuous mode
[  145.420183][ T8107] 8021q: adding VLAN 0 to HW filter on device batadv0
[  145.428129][ T8215] bridge0: port 2(bridge_slave_1) entered blocking state
[  145.435256][ T8215] bridge0: port 2(bridge_slave_1) entered disabled state
[  145.442594][ T8215] bridge_slave_1: entered allmulticast mode
[  145.449039][ T8215] bridge_slave_1: entered promiscuous mode
[  145.481723][ T8215] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  145.492163][ T8215] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  145.513411][ T8215] team0: Port device team_slave_0 added
[  145.550499][ T8107] veth0_vlan: entered promiscuous mode
[  145.558593][ T8215] team0: Port device team_slave_1 added
[  145.569625][ T8107] veth1_vlan: entered promiscuous mode
[  145.573831][ T8240] cgroup: noprefix used incorrectly
[  145.594034][ T8215] batman_adv: batadv0: Adding interface: batadv_slave_0
[  145.601248][ T8215] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  145.627350][ T8215] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  145.644510][ T8215] batman_adv: batadv0: Adding interface: batadv_slave_1
[  145.651498][ T8215] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  145.677523][ T8215] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  145.696810][ T8107] veth0_macvtap: entered promiscuous mode
[  145.704894][ T8107] veth1_macvtap: entered promiscuous mode
[  145.725962][ T8215] hsr_slave_0: entered promiscuous mode
[  145.732230][ T8215] hsr_slave_1: entered promiscuous mode
[  145.738190][ T8215] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  145.745737][ T8215] Cannot create hsr debugfs directory
[  145.753761][ T8107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  145.764362][ T8107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.774194][ T8107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  145.784615][ T8107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.794452][ T8107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  145.805025][ T8107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.814829][ T8107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  145.825246][ T8107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.836229][ T8107] batman_adv: batadv0: Interface activated: batadv_slave_0
[  145.855744][ T8107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  145.867204][ T8107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.877037][ T8107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  145.887540][ T8107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.897477][ T8107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  145.908016][ T8107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.917931][ T8107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  145.928754][ T8107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.940580][ T8107] batman_adv: batadv0: Interface activated: batadv_slave_1
[  145.949395][ T8107] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  145.958219][ T8107] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  145.966963][ T8107] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  145.975674][ T8107] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  146.044687][ T8247] loop0: detected capacity change from 0 to 164
[  146.054018][ T8247] Unable to read rock-ridge attributes
[  146.054333][ T8215] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.085423][ T8251] netlink: 'syz.0.1463': attribute type 7 has an invalid length.
[  146.090231][ T8249] loop2: detected capacity change from 0 to 128
[  146.093318][ T8251] netlink: 'syz.0.1463': attribute type 39 has an invalid length.
[  146.100138][ T8249] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  146.111368][ T8251] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1463'.
[  146.120247][ T8249] FAT-fs (loop2): error, invalid FAT chain (i_pos 548, last_block 8)
[  146.126265][ T8251] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8251 comm=syz.0.1463
[  146.133482][ T8249] FAT-fs (loop2): Filesystem has been set read-only
[  146.146066][ T8251] netlink: 'syz.0.1463': attribute type 7 has an invalid length.
[  146.160440][ T8251] netlink: 'syz.0.1463': attribute type 39 has an invalid length.
[  146.161078][ T8249] FAT-fs (loop2): error, corrupted file size (i_pos 548, 522)
[  146.189190][ T8215] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.232260][ T8260] loop2: detected capacity change from 0 to 512
[  146.238887][ T8260] EXT4-fs: Ignoring removed nobh option
[  146.244874][ T8260] EXT4-fs: journaled quota format not specified
[  146.255800][ T8215] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.290228][ T8262] FAULT_INJECTION: forcing a failure.
[  146.290228][ T8262] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  146.303304][ T8262] CPU: 0 UID: 0 PID: 8262 Comm: syz.0.1469 Not tainted 6.11.0-rc3-syzkaller-00010-g6b4aa469f049 #0
[  146.313995][ T8262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  146.324057][ T8262] Call Trace:
[  146.327409][ T8262]  <TASK>
[  146.330383][ T8262]  dump_stack_lvl+0xf2/0x150
[  146.334980][ T8262]  dump_stack+0x15/0x20
[  146.339181][ T8262]  should_fail_ex+0x229/0x230
[  146.343864][ T8262]  should_fail+0xb/0x10
[  146.348050][ T8262]  should_fail_usercopy+0x1a/0x20
[  146.353212][ T8262]  _copy_to_user+0x1e/0xa0
[  146.357651][ T8262]  simple_read_from_buffer+0xa0/0x110
[  146.363093][ T8262]  proc_fail_nth_read+0xfc/0x140
[  146.368067][ T8262]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  146.373664][ T8262]  vfs_read+0x1a2/0x6e0
[  146.377828][ T8262]  ? __rcu_read_unlock+0x4e/0x70
[  146.382806][ T8262]  ? __fget_files+0x1da/0x210
[  146.387514][ T8262]  ksys_read+0xeb/0x1b0
[  146.391700][ T8262]  __x64_sys_read+0x42/0x50
[  146.396210][ T8262]  x64_sys_call+0x27d3/0x2d60
[  146.400890][ T8262]  do_syscall_64+0xc9/0x1c0
[  146.405429][ T8262]  ? clear_bhb_loop+0x55/0xb0
[  146.410129][ T8262]  ? clear_bhb_loop+0x55/0xb0
[  146.414848][ T8262]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.420828][ T8262] RIP: 0033:0x7efe637c843c
[  146.425235][ T8262] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8d 02 00 48
[  146.444912][ T8262] RSP: 002b:00007efe62441030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  146.453341][ T8262] RAX: ffffffffffffffda RBX: 00007efe63965f80 RCX: 00007efe637c843c
[  146.461347][ T8262] RDX: 000000000000000f RSI: 00007efe624410a0 RDI: 0000000000000004
[  146.469329][ T8262] RBP: 00007efe62441090 R08: 0000000000000000 R09: 0000000000000000
[  146.477351][ T8262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  146.485453][ T8262] R13: 0000000000000000 R14: 00007efe63965f80 R15: 00007ffe4922e6e8
[  146.493427][ T8262]  </TASK>
[  146.532325][ T8215] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.611419][ T8276] x_tables: arp_tables: CLASSIFY target: used from hooks INPUT, but only usable from FORWARD/OUTPUT
[  146.611915][ T8215] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  146.632660][ T8215] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  146.641299][ T8276] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1475'.
[  146.650343][ T8276] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1475'.
[  146.661734][ T8276] team_slave_1: entered promiscuous mode
[  146.668030][ T8276] team_slave_1: left promiscuous mode
[  146.675754][ T8215] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  146.684268][ T8278] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=60 sclass=netlink_route_socket pid=8278 comm=syz.2.1474
[  146.684650][ T8215] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  146.743020][ T8215] 8021q: adding VLAN 0 to HW filter on device bond0
[  146.757164][ T8215] 8021q: adding VLAN 0 to HW filter on device team0
[  146.768132][ T1662] bridge0: port 1(bridge_slave_0) entered blocking state
[  146.775322][ T1662] bridge0: port 1(bridge_slave_0) entered forwarding state
[  146.789527][ T1662] bridge0: port 2(bridge_slave_1) entered blocking state
[  146.796783][ T1662] bridge0: port 2(bridge_slave_1) entered forwarding state
[  146.840519][ T8290] loop0: detected capacity change from 0 to 512
[  146.849684][   T29] audit: type=1400 audit(1723589991.902:2476): avc:  denied  { mounton } for  pid=8289 comm="syz.0.1481" path="/dev/rtc0" dev="devtmpfs" ino=220 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  146.900235][   T29] audit: type=1400 audit(1723589991.952:2477): avc:  denied  { module_load } for  pid=8289 comm="syz.0.1481" path="/newroot/11/bus" dev="tmpfs" ino=73 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=system permissive=1
[  146.932709][ T8215] 8021q: adding VLAN 0 to HW filter on device batadv0
[  146.989791][ T3372] bridge_slave_1: left allmulticast mode
[  146.995520][ T3372] bridge_slave_1: left promiscuous mode
[  147.001452][ T3372] bridge0: port 2(bridge_slave_1) entered disabled state
[  147.009742][ T3372] bridge_slave_0: left allmulticast mode
[  147.015413][ T3372] bridge_slave_0: left promiscuous mode
[  147.021230][ T3372] bridge0: port 1(bridge_slave_0) entered disabled state
[  147.040845][ T8311] netlink: 277 bytes leftover after parsing attributes in process `syz.0.1484'.
[  147.091473][ T8315] loop0: detected capacity change from 0 to 512
[  147.092141][ T6604] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  147.101481][ T8315] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1486: corrupted in-inode xattr: e_name out of bounds
[  147.122813][ T8315] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.1486: couldn't read orphan inode 15 (err -117)
[  147.142891][ T8315] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  147.165651][ T8315] EXT4-fs error (device loop0): ext4_add_entry:2435: inode #2: comm syz.0.1486: Directory hole found for htree leaf block 0
[  147.179101][ T8316] EXT4-fs error (device loop0): ext4_add_entry:2435: inode #2: comm syz.0.1486: Directory hole found for htree leaf block 0
[  147.219633][ T3372] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  147.229995][ T3372] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  147.240177][ T3372] bond0 (unregistering): Released all slaves
[  147.263240][ T8215] veth0_vlan: entered promiscuous mode
[  147.277376][ T8215] veth1_vlan: entered promiscuous mode
[  147.285503][ T8107] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.292056][ T8215] veth0_macvtap: entered promiscuous mode
[  147.305099][ T8215] veth1_macvtap: entered promiscuous mode
[  147.317561][ T8215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  147.328091][ T8215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  147.331846][ T8323] loop4: detected capacity change from 0 to 128
[  147.338005][ T8215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  147.349887][ T8323] EXT4-fs (loop4): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  147.354718][ T8215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  147.374893][ T8215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  147.385431][ T8215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  147.395255][ T8215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  147.405684][ T8215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  147.415511][ T8215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  147.425924][ T8215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  147.437973][ T8215] batman_adv: batadv0: Interface activated: batadv_slave_0
[  147.456568][ T8215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  147.467079][ T8215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  147.477028][ T8215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  147.487469][ T8215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  147.497469][ T8215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  147.509283][ T8215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  147.519196][ T8215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  147.529634][ T8215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  147.539536][ T8215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  147.550003][ T8215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  147.554812][ T8335] loop4: detected capacity change from 0 to 512
[  147.564275][ T8215] batman_adv: batadv0: Interface activated: batadv_slave_1
[  147.591204][ T8335] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.594528][ T8215] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  147.608638][ T8335] ext4 filesystem being mounted at /118/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  147.612547][ T8215] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  147.626628][ T8335] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, 
[  147.631597][ T8215] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  147.631695][ T8215] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  147.640250][ T8335] block bitmap and bg descriptor inconsistent: 95 vs 96 free clusters
[  147.679274][ T6604] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.705368][ T8346] loop4: detected capacity change from 0 to 512
[  147.739894][ T8346] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  147.758042][ T4490] vhci_hcd: vhci_device speed not set
[  147.770537][ T3372] hsr_slave_0: left promiscuous mode
[  147.776159][ T3372] hsr_slave_1: left promiscuous mode
[  147.784669][ T3372] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  147.785335][ T6604] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.792144][ T3372] batman_adv: batadv0: Removing interface: batadv_slave_0
[  147.824774][ T3372] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  147.832573][ T3372] batman_adv: batadv0: Removing interface: batadv_slave_1
[  147.855393][ T3372] veth1_macvtap: left promiscuous mode
[  147.860953][ T3372] veth0_macvtap: left promiscuous mode
[  147.866500][ T3372] veth1_vlan: left promiscuous mode
[  147.871843][ T3372] veth0_vlan: left promiscuous mode
[  147.951555][ T8366] loop2: detected capacity change from 0 to 1024
[  147.964961][ T8367] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=60 sclass=netlink_route_socket pid=8367 comm=syz.1.1500
[  147.978406][ T3372] team0 (unregistering): Port device team_slave_1 removed
[  147.988877][ T8366] EXT4-fs error (device loop2): __ext4_fill_super:5435: inode #2: comm syz.2.1498: casefold flag without casefold feature
[  148.001862][ T8366] EXT4-fs (loop2): get root inode failed
[  148.002961][ T3372] team0 (unregistering): Port device team_slave_0 removed
[  148.007786][ T8366] EXT4-fs (loop2): mount failed
[  148.096581][ T8372] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1502'.
[  148.173690][ T8382] loop0: detected capacity change from 0 to 128
[  148.183768][ T8382] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  148.198031][ T8382] ext4 filesystem being mounted at /20/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  148.392964][ T8390] loop4: detected capacity change from 0 to 512
[  148.411554][ T8392] loop4: detected capacity change from 0 to 256
[  148.789696][   T29] audit: type=1400 audit(1723589993.842:2478): avc:  denied  { node_bind } for  pid=8402 comm="syz.1.1511" saddr=ff02::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  148.852449][ T8407] loop1: detected capacity change from 0 to 4096
[  148.861014][ T8407] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.945887][ T8215] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.964389][ T8107] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  148.974058][ T8411] team0: entered promiscuous mode
[  148.979162][ T8411] team_slave_0: entered promiscuous mode
[  148.984907][ T8411] team_slave_1: entered promiscuous mode
[  148.999020][ T8411] team0: left promiscuous mode
[  149.003847][ T8411] team_slave_0: left promiscuous mode
[  149.009602][ T8411] team_slave_1: left promiscuous mode
[  149.039918][ T8422] FAULT_INJECTION: forcing a failure.
[  149.039918][ T8422] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  149.053092][ T8422] CPU: 0 UID: 0 PID: 8422 Comm: syz.1.1517 Not tainted 6.11.0-rc3-syzkaller-00010-g6b4aa469f049 #0
[  149.063789][ T8422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  149.073856][ T8422] Call Trace:
[  149.077132][ T8422]  <TASK>
[  149.080068][ T8422]  dump_stack_lvl+0xf2/0x150
[  149.084728][ T8422]  dump_stack+0x15/0x20
[  149.088901][ T8422]  should_fail_ex+0x229/0x230
[  149.093648][ T8422]  should_fail+0xb/0x10
[  149.097816][ T8422]  should_fail_usercopy+0x1a/0x20
[  149.102886][ T8422]  _copy_from_user+0x1e/0xd0
[  149.107501][ T8422]  kvmemdup_bpfptr_noprof+0x7d/0xf0
[  149.112782][ T8422]  map_update_elem+0x1ee/0x4d0
[  149.117567][ T8422]  ? selinux_bpf+0xa8/0xc0
[  149.122058][ T8422]  __sys_bpf+0x713/0x7a0
[  149.126316][ T8422]  __x64_sys_bpf+0x43/0x50
[  149.130745][ T8422]  x64_sys_call+0x2625/0x2d60
[  149.135566][ T8422]  do_syscall_64+0xc9/0x1c0
[  149.140081][ T8422]  ? clear_bhb_loop+0x55/0xb0
[  149.145295][ T8422]  ? clear_bhb_loop+0x55/0xb0
[  149.150073][ T8422]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.156079][ T8422] RIP: 0033:0x7f777b2499f9
[  149.160621][ T8422] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.180402][ T8422] RSP: 002b:00007f7779ec7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  149.188819][ T8422] RAX: ffffffffffffffda RBX: 00007f777b3e5f80 RCX: 00007f777b2499f9
[  149.196791][ T8422] RDX: 0000000000000020 RSI: 0000000020000180 RDI: 0000000000000002
[  149.204775][ T8422] RBP: 00007f7779ec7090 R08: 0000000000000000 R09: 0000000000000000
[  149.212750][ T8422] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  149.220752][ T8422] R13: 0000000000000000 R14: 00007f777b3e5f80 R15: 00007fff3c0cbf78
[  149.228827][ T8422]  </TASK>
[  149.243537][ T8427] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=60 sclass=netlink_route_socket pid=8427 comm=syz.0.1519
[  149.312545][ T8437] FAULT_INJECTION: forcing a failure.
[  149.312545][ T8437] name failslab, interval 1, probability 0, space 0, times 0
[  149.325288][ T8437] CPU: 1 UID: 0 PID: 8437 Comm: syz.1.1523 Not tainted 6.11.0-rc3-syzkaller-00010-g6b4aa469f049 #0
[  149.335978][ T8437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  149.346041][ T8437] Call Trace:
[  149.349390][ T8437]  <TASK>
[  149.352321][ T8437]  dump_stack_lvl+0xf2/0x150
[  149.356940][ T8437]  dump_stack+0x15/0x20
[  149.361119][ T8437]  should_fail_ex+0x229/0x230
[  149.365969][ T8437]  ? __kvmalloc_node_noprof+0x72/0x170
[  149.371440][ T8437]  should_failslab+0x8f/0xb0
[  149.376062][ T8437]  __kmalloc_node_noprof+0xa8/0x380
[  149.381339][ T8437]  __kvmalloc_node_noprof+0x72/0x170
[  149.386744][ T8437]  rhashtable_init_noprof+0x312/0x450
[  149.392201][ T8437]  rhltable_init_noprof+0x1e/0x40
[  149.397284][ T8437]  nf_tables_newtable+0x54d/0xec0
[  149.402348][ T8437]  nfnetlink_rcv+0xb1d/0x15b0
[  149.407054][ T8437]  netlink_unicast+0x593/0x670
[  149.411827][ T8437]  netlink_sendmsg+0x5cc/0x6e0
[  149.416800][ T8437]  ? __pfx_netlink_sendmsg+0x10/0x10
[  149.422099][ T8437]  __sock_sendmsg+0x140/0x180
[  149.426816][ T8437]  ____sys_sendmsg+0x312/0x410
[  149.431673][ T8437]  __sys_sendmsg+0x1e9/0x280
[  149.436442][ T8437]  __x64_sys_sendmsg+0x46/0x50
[  149.441314][ T8437]  x64_sys_call+0x2689/0x2d60
[  149.446104][ T8437]  do_syscall_64+0xc9/0x1c0
[  149.450681][ T8437]  ? clear_bhb_loop+0x55/0xb0
[  149.455371][ T8437]  ? clear_bhb_loop+0x55/0xb0
[  149.460123][ T8437]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.466030][ T8437] RIP: 0033:0x7f777b2499f9
[  149.470478][ T8437] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.490178][ T8437] RSP: 002b:00007f7779ec7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  149.498602][ T8437] RAX: ffffffffffffffda RBX: 00007f777b3e5f80 RCX: 00007f777b2499f9
[  149.506596][ T8437] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[  149.514582][ T8437] RBP: 00007f7779ec7090 R08: 0000000000000000 R09: 0000000000000000
[  149.522570][ T8437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  149.530555][ T8437] R13: 0000000000000000 R14: 00007f777b3e5f80 R15: 00007fff3c0cbf78
[  149.538551][ T8437]  </TASK>
[  149.548529][   T29] audit: type=1326 audit(1723589994.602:2479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8429 comm="syz.4.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e946799f9 code=0x7ffc0000
[  149.572063][   T29] audit: type=1326 audit(1723589994.602:2480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8429 comm="syz.4.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e946799f9 code=0x7ffc0000
[  149.596480][   T29] audit: type=1326 audit(1723589994.632:2481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8429 comm="syz.4.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=195 compat=0 ip=0x7f0e946799f9 code=0x7ffc0000
[  149.620022][   T29] audit: type=1326 audit(1723589994.632:2482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8429 comm="syz.4.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e946799f9 code=0x7ffc0000
[  149.643540][   T29] audit: type=1326 audit(1723589994.632:2483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8429 comm="syz.4.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e946799f9 code=0x7ffc0000
[  149.667143][   T29] audit: type=1326 audit(1723589994.632:2484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8429 comm="syz.4.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f0e946799f9 code=0x7ffc0000
[  149.690781][   T29] audit: type=1326 audit(1723589994.632:2485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8429 comm="syz.4.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e946799f9 code=0x7ffc0000
[  149.714244][   T29] audit: type=1326 audit(1723589994.632:2486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8429 comm="syz.4.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=33 compat=0 ip=0x7f0e946799f9 code=0x7ffc0000
[  149.737749][   T29] audit: type=1326 audit(1723589994.632:2487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8429 comm="syz.4.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e946799f9 code=0x7ffc0000
[  149.761170][   T29] audit: type=1326 audit(1723589994.632:2488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8429 comm="syz.4.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e946799f9 code=0x7ffc0000
[  149.941583][ T8453] FAULT_INJECTION: forcing a failure.
[  149.941583][ T8453] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  149.954681][ T8453] CPU: 1 UID: 0 PID: 8453 Comm: syz.0.1528 Not tainted 6.11.0-rc3-syzkaller-00010-g6b4aa469f049 #0
[  149.965468][ T8453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  149.975616][ T8453] Call Trace:
[  149.978901][ T8453]  <TASK>
[  149.981838][ T8453]  dump_stack_lvl+0xf2/0x150
[  149.986506][ T8453]  dump_stack+0x15/0x20
[  149.990691][ T8453]  should_fail_ex+0x229/0x230
[  149.995398][ T8453]  should_fail+0xb/0x10
[  149.999692][ T8453]  should_fail_usercopy+0x1a/0x20
[  150.004790][ T8453]  _copy_from_user+0x1e/0xd0
[  150.009436][ T8453]  move_addr_to_kernel+0x82/0x120
[  150.014496][ T8453]  __sys_connect+0x74/0x1c0
[  150.019032][ T8453]  __x64_sys_connect+0x41/0x50
[  150.023851][ T8453]  x64_sys_call+0x2220/0x2d60
[  150.028618][ T8453]  do_syscall_64+0xc9/0x1c0
[  150.033227][ T8453]  ? clear_bhb_loop+0x55/0xb0
[  150.038129][ T8453]  ? clear_bhb_loop+0x55/0xb0
[  150.042842][ T8453]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.048763][ T8453] RIP: 0033:0x7efe637c99f9
[  150.053207][ T8453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.073017][ T8453] RSP: 002b:00007efe62441038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  150.081453][ T8453] RAX: ffffffffffffffda RBX: 00007efe63965f80 RCX: 00007efe637c99f9
[  150.089445][ T8453] RDX: 000000000000003a RSI: 00000000200001c0 RDI: 0000000000000003
[  150.097521][ T8453] RBP: 00007efe62441090 R08: 0000000000000000 R09: 0000000000000000
[  150.105592][ T8453] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  150.113597][ T8453] R13: 0000000000000000 R14: 00007efe63965f80 R15: 00007ffe4922e6e8
[  150.121579][ T8453]  </TASK>
[  150.174074][ T8458] loop0: detected capacity change from 0 to 4096
[  150.182374][ T8458] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.198454][ T8458] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8208 sclass=netlink_route_socket pid=8458 comm=syz.0.1529
[  150.256542][ T8462] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1530'.
[  150.288095][ T8107] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.302483][ T8462] wireguard0: entered promiscuous mode
[  150.308214][ T8462] wireguard0: entered allmulticast mode
[  150.560502][ T8472] macvlan2: entered allmulticast mode
[  150.567245][ T8472] team_slave_0: entered promiscuous mode
[  150.572958][ T8472] team_slave_1: entered promiscuous mode
[  150.578710][ T8472] team0: entered allmulticast mode
[  150.583902][ T8472] team_slave_0: entered allmulticast mode
[  150.589668][ T8472] team_slave_1: entered allmulticast mode
[  150.598324][ T8472] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  150.608158][ T8472] bond0: (slave macvlan2): Enslaving as an active interface with an up link
[  150.700443][ T8483] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=60 sclass=netlink_route_socket pid=8483 comm=syz.0.1536
[  150.915292][ T8507] vlan2: entered allmulticast mode
[  151.013506][ T8513] bridge0: port 2(bridge_slave_1) entered disabled state
[  151.029015][ T8513] bridge0: port 2(bridge_slave_1) entered blocking state
[  151.036112][ T8513] bridge0: port 2(bridge_slave_1) entered forwarding state
[  151.037849][ T8515] loop4: detected capacity change from 0 to 512
[  151.050277][ T8515] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  151.062129][ T8515] EXT4-fs (loop4): 1 truncate cleaned up
[  151.069605][ T8515] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  151.094895][ T6604] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.164506][ T1662] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.189302][ T8538] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1557'.
[  151.210059][ T1662] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.261900][ T1662] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.278046][ T8509] chnl_net:caif_netlink_parms(): no params data found
[  151.332137][ T1662] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.343855][ T8509] bridge0: port 1(bridge_slave_0) entered blocking state
[  151.351008][ T8509] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.366570][ T8540] loop4: detected capacity change from 0 to 2048
[  151.375289][ T8509] bridge_slave_0: entered allmulticast mode
[  151.382255][ T8509] bridge_slave_0: entered promiscuous mode
[  151.389906][ T8540] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  151.396299][ T8509] bridge0: port 2(bridge_slave_1) entered blocking state
[  151.403434][ T8540] ext4 filesystem being mounted at /133/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  151.409183][ T8509] bridge0: port 2(bridge_slave_1) entered disabled state
[  151.427338][ T8509] bridge_slave_1: entered allmulticast mode
[  151.434295][ T8509] bridge_slave_1: entered promiscuous mode
[  151.452951][ T8509] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  151.464184][ T8509] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  151.704945][ T8509] team0: Port device team_slave_0 added
[  151.724741][ T6604] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.748328][ T8509] team0: Port device team_slave_1 added
[  151.779311][ T1662] bridge_slave_1: left allmulticast mode
[  151.785008][ T1662] bridge_slave_1: left promiscuous mode
[  151.790798][ T1662] bridge0: port 2(bridge_slave_1) entered disabled state
[  151.833215][ T1662] bridge_slave_0: left allmulticast mode
[  151.838935][ T1662] bridge_slave_0: left promiscuous mode
[  151.844641][ T1662] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.943678][ T8577] loop4: detected capacity change from 0 to 256
[  151.973949][ T8577] FAT-fs (loop4): Directory bread(block 64) failed
[  151.981035][ T8577] FAT-fs (loop4): Directory bread(block 65) failed
[  151.989046][ T8577] FAT-fs (loop4): Directory bread(block 66) failed
[  151.995675][ T8577] FAT-fs (loop4): Directory bread(block 67) failed
[  152.003187][ T8577] FAT-fs (loop4): Directory bread(block 68) failed
[  152.004732][ T8579] loop0: detected capacity change from 0 to 256
[  152.011094][ T8577] FAT-fs (loop4): Directory bread(block 69) failed
[  152.018450][ T8579] msdos: Bad value for 'gid'
[  152.024403][ T8577] FAT-fs (loop4): Directory bread(block 70) failed
[  152.027701][ T8579] msdos: Bad value for 'gid'
[  152.040074][ T8577] FAT-fs (loop4): Directory bread(block 71) failed
[  152.047073][ T1662] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  152.056600][ T8577] FAT-fs (loop4): Directory bread(block 72) failed
[  152.065011][ T8577] FAT-fs (loop4): Directory bread(block 73) failed
[  152.072906][ T1662] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  152.083699][ T1662] bond0 (unregistering): Released all slaves
[  152.113077][ T8509] batman_adv: batadv0: Adding interface: batadv_slave_0
[  152.120122][ T8509] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  152.146120][ T8509] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  152.158179][ T8509] batman_adv: batadv0: Adding interface: batadv_slave_1
[  152.165242][ T8509] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  152.191318][ T8509] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  152.221321][ T8509] hsr_slave_0: entered promiscuous mode
[  152.231721][ T8509] hsr_slave_1: entered promiscuous mode
[  152.243024][ T8509] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  152.250940][ T8509] Cannot create hsr debugfs directory
[  152.301588][ T1662] hsr_slave_0: left promiscuous mode
[  152.308638][ T1662] hsr_slave_1: left promiscuous mode
[  152.314994][ T1662] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  152.322438][ T1662] batman_adv: batadv0: Removing interface: batadv_slave_0
[  152.337294][ T1662] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  152.344725][ T1662] batman_adv: batadv0: Removing interface: batadv_slave_1
[  152.354785][ T1662] veth1_macvtap: left promiscuous mode
[  152.360372][ T1662] veth0_macvtap: left promiscuous mode
[  152.365927][ T1662] veth1_vlan: left promiscuous mode
[  152.371407][ T1662] veth0_vlan: left promiscuous mode
[  152.474683][ T8600] loop1: detected capacity change from 0 to 2048
[  152.484022][ T8600] EXT4-fs: Ignoring removed nomblk_io_submit option
[  152.491082][ T8600] ext4: Bad value for 'commit'
[  152.515057][ T1662] team0 (unregistering): Port device team_slave_1 removed
[  152.525976][ T1662] team0 (unregistering): Port device team_slave_0 removed
[  152.688209][ T8613] loop0: detected capacity change from 0 to 164
[  152.695367][ T8613] rock: corrupted directory entry. extent=41, offset=65536, size=8
[  152.801269][ T8633] FAULT_INJECTION: forcing a failure.
[  152.801269][ T8633] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  152.814468][ T8633] CPU: 1 UID: 0 PID: 8633 Comm: syz.1.1589 Not tainted 6.11.0-rc3-syzkaller-00010-g6b4aa469f049 #0
[  152.814494][ T8633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  152.814505][ T8633] Call Trace:
[  152.814512][ T8633]  <TASK>
[  152.814518][ T8633]  dump_stack_lvl+0xf2/0x150
[  152.814571][ T8633]  dump_stack+0x15/0x20
[  152.814623][ T8633]  should_fail_ex+0x229/0x230
[  152.814729][ T8633]  should_fail+0xb/0x10
[  152.814755][ T8633]  should_fail_usercopy+0x1a/0x20
[  152.814866][ T8633]  _copy_from_iter+0xd3/0xb00
[  152.814906][ T8633]  ? kmalloc_reserve+0x16e/0x190
[  152.814970][ T8633]  ? __build_skb_around+0x196/0x1f0
[  152.815037][ T8633]  ? __virt_addr_valid+0x1ed/0x250
[  152.815056][ T8633]  ? __check_object_size+0x35b/0x510
[  152.815129][ T8633]  pfkey_sendmsg+0x16c/0x970
[  152.815162][ T8633]  ? avc_has_perm+0xd4/0x160
[  152.815222][ T8633]  ? selinux_socket_sendmsg+0x182/0x1b0
[  152.815245][ T8633]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  152.815271][ T8633]  __sock_sendmsg+0x140/0x180
[  152.815388][ T8633]  ____sys_sendmsg+0x312/0x410
[  152.815413][ T8633]  __sys_sendmmsg+0x269/0x500
[  152.924451][ T8633]  __x64_sys_sendmmsg+0x57/0x70
[  152.929330][ T8633]  x64_sys_call+0xa49/0x2d60
[  152.933940][ T8633]  do_syscall_64+0xc9/0x1c0
[  152.938547][ T8633]  ? clear_bhb_loop+0x55/0xb0
[  152.943292][ T8633]  ? clear_bhb_loop+0x55/0xb0
[  152.948035][ T8633]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.953930][ T8633] RIP: 0033:0x7f777b2499f9
[  152.958389][ T8633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.978143][ T8633] RSP: 002b:00007f7779ec7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  152.986626][ T8633] RAX: ffffffffffffffda RBX: 00007f777b3e5f80 RCX: 00007f777b2499f9
[  152.994605][ T8633] RDX: 0400000000000002 RSI: 0000000020000180 RDI: 0000000000000003
[  153.002573][ T8633] RBP: 00007f7779ec7090 R08: 0000000000000000 R09: 0000000000000000
[  153.010557][ T8633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  153.018527][ T8633] R13: 0000000000000000 R14: 00007f777b3e5f80 R15: 00007fff3c0cbf78
[  153.026511][ T8633]  </TASK>
[  153.103336][ T8644] FAULT_INJECTION: forcing a failure.
[  153.103336][ T8644] name failslab, interval 1, probability 0, space 0, times 0
[  153.116087][ T8644] CPU: 1 UID: 0 PID: 8644 Comm: syz.0.1595 Not tainted 6.11.0-rc3-syzkaller-00010-g6b4aa469f049 #0
[  153.126776][ T8644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  153.136829][ T8644] Call Trace:
[  153.140105][ T8644]  <TASK>
[  153.143074][ T8644]  dump_stack_lvl+0xf2/0x150
[  153.147706][ T8644]  dump_stack+0x15/0x20
[  153.148665][ T8645] sctp: [Deprecated]: syz.1.1594 (pid 8645) Use of struct sctp_assoc_value in delayed_ack socket option.
[  153.148665][ T8645] Use struct sctp_sack_info instead
[  153.151954][ T8644]  should_fail_ex+0x229/0x230
[  153.172986][ T8644]  ? ethnl_default_notify+0xbb/0x4a0
[  153.178282][ T8644]  should_failslab+0x8f/0xb0
[  153.182937][ T8644]  __kmalloc_noprof+0xa5/0x370
[  153.187720][ T8644]  ? sysvec_apic_timer_interrupt+0x44/0x80
[  153.193610][ T8644]  ethnl_default_notify+0xbb/0x4a0
[  153.198724][ T8644]  ethtool_notify+0xbb/0x1b0
[  153.203329][ T8644]  ethtool_set_coalesce+0x400/0x430
[  153.208568][ T8644]  dev_ethtool+0x66e/0x14c0
[  153.213076][ T8644]  ? __rcu_read_unlock+0x4e/0x70
[  153.218093][ T8644]  dev_ioctl+0x854/0xab0
[  153.222366][ T8644]  sock_do_ioctl+0x11c/0x260
[  153.226976][ T8644]  sock_ioctl+0x470/0x640
[  153.231372][ T8644]  ? __pfx_sock_ioctl+0x10/0x10
[  153.236309][ T8644]  __se_sys_ioctl+0xd3/0x150
[  153.240928][ T8644]  __x64_sys_ioctl+0x43/0x50
[  153.245568][ T8644]  x64_sys_call+0x15cc/0x2d60
[  153.250246][ T8644]  do_syscall_64+0xc9/0x1c0
[  153.254826][ T8644]  ? clear_bhb_loop+0x55/0xb0
[  153.259635][ T8644]  ? clear_bhb_loop+0x55/0xb0
[  153.264427][ T8644]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.270413][ T8644] RIP: 0033:0x7efe637c99f9
[  153.274821][ T8644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.294444][ T8644] RSP: 002b:00007efe62441038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  153.302881][ T8644] RAX: ffffffffffffffda RBX: 00007efe63965f80 RCX: 00007efe637c99f9
[  153.310847][ T8644] RDX: 0000000020000900 RSI: 0000000000008946 RDI: 0000000000000010
[  153.318820][ T8644] RBP: 00007efe62441090 R08: 0000000000000000 R09: 0000000000000000
[  153.326835][ T8644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  153.334817][ T8644] R13: 0000000000000000 R14: 00007efe63965f80 R15: 00007ffe4922e6e8
[  153.342789][ T8644]  </TASK>
[  153.378500][ T8509] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  153.389277][ T8509] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  153.401542][ T8509] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  153.416637][ T8509] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  153.468541][ T8509] 8021q: adding VLAN 0 to HW filter on device bond0
[  153.501777][ T8658] loop1: detected capacity change from 0 to 256
[  153.519823][ T8509] 8021q: adding VLAN 0 to HW filter on device team0
[  153.527692][ T8659] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1602'.
[  153.546340][ T3287] bridge0: port 1(bridge_slave_0) entered blocking state
[  153.553546][ T3287] bridge0: port 1(bridge_slave_0) entered forwarding state
[  153.566307][ T3372] bridge0: port 2(bridge_slave_1) entered blocking state
[  153.573585][ T3372] bridge0: port 2(bridge_slave_1) entered forwarding state
[  153.581863][ T8659] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=34 sclass=netlink_tcpdiag_socket pid=8659 comm=syz.0.1602
[  153.602485][ T8659] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1602'.
[  153.692752][ T8509] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  153.723223][ T8509] 8021q: adding VLAN 0 to HW filter on device batadv0
[  153.788008][ T8670] loop1: detected capacity change from 0 to 512
[  153.804932][ T8670] EXT4-fs: inline encryption not supported
[  153.815506][ T8670] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2842e018, mo2=0002]
[  153.832739][ T8670] System zones: 1-12
[  153.837371][ T8509] veth0_vlan: entered promiscuous mode
[  153.844897][ T8670] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1603: invalid indirect mapped block 8 (level 2)
[  153.847129][ T8509] veth1_vlan: entered promiscuous mode
[  153.864032][ T8670] EXT4-fs (loop1): 1 truncate cleaned up
[  153.872247][ T8670] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  153.874160][ T8509] veth0_macvtap: entered promiscuous mode
[  153.896270][ T8509] veth1_macvtap: entered promiscuous mode
[  153.904430][ T8215] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.909567][ T8509] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  153.924034][ T8509] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  153.933900][ T8509] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  153.944382][ T8509] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  153.954292][ T8509] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  153.964816][ T8509] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  153.974699][ T8509] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  153.985203][ T8509] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  153.996752][ T8509] batman_adv: batadv0: Interface activated: batadv_slave_0
[  154.006496][ T8682] netlink: 'syz.0.1606': attribute type 1 has an invalid length.
[  154.021019][ T8682] 8021q: adding VLAN 0 to HW filter on device bond1
[  154.030619][ T8509] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  154.041117][ T8509] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  154.050935][ T8509] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  154.061396][ T8509] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  154.071354][ T8509] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  154.081986][ T8509] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  154.091826][ T8509] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  154.102295][ T8509] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  154.115603][ T8509] batman_adv: batadv0: Interface activated: batadv_slave_1
[  154.123922][ T8684] netlink: 'syz.1.1607': attribute type 1 has an invalid length.
[  154.139052][ T8509] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  154.147965][ T8509] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  154.156786][ T8509] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  154.165494][ T8509] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  154.230229][ T8697] loop1: detected capacity change from 0 to 512
[  154.235938][ T8699] loop0: detected capacity change from 0 to 1024
[  154.243533][ T8699] EXT4-fs (loop0): Can't support bigalloc feature without extents feature
[  154.243533][ T8699] 
[  154.254292][ T8699] EXT4-fs (loop0): couldn't mount as ext2 due to feature incompatibilities
[  154.272288][ T8699] loop0: detected capacity change from 0 to 1024
[  154.283465][ T8699] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  154.293629][ T8699] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  154.301722][ T8699] System zones: 0-1, 3-36
[  154.307107][ T8699] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.967606][ T8712] loop4: detected capacity change from 0 to 512
[  154.988932][ T8712] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  155.001653][ T8712] ext4 filesystem being mounted at /137/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  155.015726][ T8712] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  155.031421][ T8712] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 2 with error 28
[  155.043738][ T8712] EXT4-fs (loop4): This should not happen!! Data will be lost
[  155.043738][ T8712] 
[  155.053422][ T8712] EXT4-fs (loop4): Total free blocks count 0
[  155.059440][ T8712] EXT4-fs (loop4): Free/Dirty block details
[  155.065346][ T8712] EXT4-fs (loop4): free_blocks=65280
[  155.070707][ T8712] EXT4-fs (loop4): dirty_blocks=2
[  155.075747][ T8712] EXT4-fs (loop4): Block reservation details
[  155.081760][ T8712] EXT4-fs (loop4): i_reserved_data_blocks=2
[  155.089377][ T8712] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 3 with error 28
[  155.114939][ T8107] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.168004][ T8720] loop1: detected capacity change from 0 to 1024
[  155.189030][ T8720] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  155.202798][ T8720] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.230805][ T8728] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1621'.
[  155.253291][ T8731] loop0: detected capacity change from 0 to 1764
[  155.260077][ T8731] iso9660: Unknown parameter '0x0000000000000003'
[  155.271043][ T8731] netlink: 'syz.0.1622': attribute type 13 has an invalid length.
[  155.278978][ T8731] netlink: 'syz.0.1622': attribute type 58 has an invalid length.
[  155.286822][ T8731] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1622'.
[  155.340552][ T8737] loop0: detected capacity change from 0 to 8192
[  155.383274][ T8742] loop0: detected capacity change from 0 to 256
[  155.601391][ T8752] FAULT_INJECTION: forcing a failure.
[  155.601391][ T8752] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  155.614536][ T8752] CPU: 1 UID: 0 PID: 8752 Comm: syz.1.1631 Not tainted 6.11.0-rc3-syzkaller-00010-g6b4aa469f049 #0
[  155.625325][ T8752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  155.635383][ T8752] Call Trace:
[  155.638663][ T8752]  <TASK>
[  155.641616][ T8752]  dump_stack_lvl+0xf2/0x150
[  155.646266][ T8752]  dump_stack+0x15/0x20
[  155.650499][ T8752]  should_fail_ex+0x229/0x230
[  155.655259][ T8752]  should_fail+0xb/0x10
[  155.659576][ T8752]  should_fail_usercopy+0x1a/0x20
[  155.664676][ T8752]  _copy_from_iter+0xd3/0xb00
[  155.669490][ T8752]  ? kmalloc_reserve+0x16e/0x190
[  155.674438][ T8752]  ? __build_skb_around+0x196/0x1f0
[  155.679651][ T8752]  ? __virt_addr_valid+0x1ed/0x250
[  155.684794][ T8752]  ? __check_object_size+0x35b/0x510
[  155.690096][ T8752]  pfkey_sendmsg+0x16c/0x970
[  155.694749][ T8752]  ? avc_has_perm+0xd4/0x160
[  155.699388][ T8752]  ? selinux_socket_sendmsg+0x182/0x1b0
[  155.704980][ T8752]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  155.710104][ T8752]  __sock_sendmsg+0x140/0x180
[  155.714787][ T8752]  ____sys_sendmsg+0x312/0x410
[  155.719569][ T8752]  __sys_sendmmsg+0x269/0x500
[  155.724331][ T8752]  ? trace_sys_enter+0x65/0xa0
[  155.729097][ T8752]  __x64_sys_sendmmsg+0x57/0x70
[  155.733968][ T8752]  x64_sys_call+0xa49/0x2d60
[  155.738602][ T8752]  do_syscall_64+0xc9/0x1c0
[  155.743115][ T8752]  ? clear_bhb_loop+0x55/0xb0
[  155.747889][ T8752]  ? clear_bhb_loop+0x55/0xb0
[  155.752571][ T8752]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.758565][ T8752] RIP: 0033:0x7f777b2499f9
[  155.763072][ T8752] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.782719][ T8752] RSP: 002b:00007f7779ec7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  155.791219][ T8752] RAX: ffffffffffffffda RBX: 00007f777b3e5f80 RCX: 00007f777b2499f9
[  155.799232][ T8752] RDX: 0400000000000002 RSI: 0000000020000180 RDI: 0000000000000003
[  155.807267][ T8752] RBP: 00007f7779ec7090 R08: 0000000000000000 R09: 0000000000000000
[  155.815256][ T8752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  155.823242][ T8752] R13: 0000000000000000 R14: 00007f777b3e5f80 R15: 00007fff3c0cbf78
[  155.831243][ T8752]  </TASK>
[  155.839782][ T8753] netlink: 'syz.0.1630': attribute type 1 has an invalid length.
[  156.015673][ T8767] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=8767 comm=syz.4.1636
[  156.028882][   T29] kauditd_printk_skb: 35 callbacks suppressed
[  156.028897][   T29] audit: type=1400 audit(1723590001.082:2524): avc:  denied  { read } for  pid=8766 comm="syz.4.1636" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  156.083779][ T8771] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1635'.
[  156.092748][ T8771] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1635'.
[  156.110760][ T8771] wireguard0: entered promiscuous mode
[  156.116277][ T8771] wireguard0: entered allmulticast mode
[  156.289439][ T8779] loop4: detected capacity change from 0 to 1024
[  156.296549][ T8779] EXT4-fs: Ignoring removed orlov option
[  156.304934][ T8779] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  156.315782][ T8779] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  156.326741][ T8779] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  156.339275][ T8779] EXT4-fs (loop4): invalid journal inode
[  156.345060][ T8779] EXT4-fs (loop4): can't get journal size
[  156.351778][ T8779] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  156.363466][ T8779] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  156.451402][ T6604] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.485117][    C1] sd 0:0:1:0: [sda] tag#8083 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  156.495614][    C1] sd 0:0:1:0: [sda] tag#8083 CDB: Read(6) 08 00 00 00 00 00
[  156.595373][ T8817] loop0: detected capacity change from 0 to 1024
[  156.608891][ T8817] EXT4-fs (loop0): can't mount with journal_async_commit, fs mounted w/o journal
[  156.706242][ T8826] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1656'.
[  156.731981][ T8830] loop0: detected capacity change from 0 to 164
[  156.739245][ T8830] Unable to read rock-ridge attributes
[  156.814889][ T8840] FAULT_INJECTION: forcing a failure.
[  156.814889][ T8840] name failslab, interval 1, probability 0, space 0, times 0
[  156.827558][ T8840] CPU: 1 UID: 0 PID: 8840 Comm: syz.0.1662 Not tainted 6.11.0-rc3-syzkaller-00010-g6b4aa469f049 #0
[  156.838345][ T8840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  156.848453][ T8840] Call Trace:
[  156.851726][ T8840]  <TASK>
[  156.854649][ T8840]  dump_stack_lvl+0xf2/0x150
[  156.859305][ T8840]  dump_stack+0x15/0x20
[  156.863462][ T8840]  should_fail_ex+0x229/0x230
[  156.868178][ T8840]  ? __alloc_skb+0x10b/0x310
[  156.872778][ T8840]  should_failslab+0x8f/0xb0
[  156.877460][ T8840]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  156.883591][ T8840]  __alloc_skb+0x10b/0x310
[  156.888013][ T8840]  pfkey_sendmsg+0x10d/0x970
[  156.892626][ T8840]  ? avc_has_perm+0xd4/0x160
[  156.897266][ T8840]  ? selinux_socket_sendmsg+0x182/0x1b0
[  156.902824][ T8840]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  156.908013][ T8840]  __sock_sendmsg+0x140/0x180
[  156.912777][ T8840]  ____sys_sendmsg+0x312/0x410
[  156.917617][ T8840]  __sys_sendmmsg+0x269/0x500
[  156.922323][ T8840]  __x64_sys_sendmmsg+0x57/0x70
[  156.927185][ T8840]  x64_sys_call+0xa49/0x2d60
[  156.931784][ T8840]  do_syscall_64+0xc9/0x1c0
[  156.936340][ T8840]  ? clear_bhb_loop+0x55/0xb0
[  156.941093][ T8840]  ? clear_bhb_loop+0x55/0xb0
[  156.945786][ T8840]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.951692][ T8840] RIP: 0033:0x7efe637c99f9
[  156.956109][ T8840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.975795][ T8840] RSP: 002b:00007efe62441038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  156.984337][ T8840] RAX: ffffffffffffffda RBX: 00007efe63965f80 RCX: 00007efe637c99f9
[  156.992309][ T8840] RDX: 0400000000000002 RSI: 0000000020000180 RDI: 0000000000000003
[  157.000282][ T8840] RBP: 00007efe62441090 R08: 0000000000000000 R09: 0000000000000000
[  157.008386][ T8840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  157.016364][ T8840] R13: 0000000000000000 R14: 00007efe63965f80 R15: 00007ffe4922e6e8
[  157.024339][ T8840]  </TASK>
[  157.268106][ T8866] loop0: detected capacity change from 0 to 4096
[  157.278237][ T8866] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.293946][   T29] audit: type=1326 audit(1723590002.342:2525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8870 comm="syz.1.1669" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f777b2499f9 code=0x0
[  157.334158][ T8107] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.357535][ T8874] loop0: detected capacity change from 0 to 164
[  157.364648][ T8874] Unable to read rock-ridge attributes
[  157.482292][   T29] audit: type=1400 audit(1723590002.532:2526): avc:  denied  { nlmsg_write } for  pid=8889 comm="syz.0.1675" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  157.519492][ T8890] loop0: detected capacity change from 0 to 512
[  157.526606][ T8890] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  157.537083][ T8890] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c843e12c, mo2=0002]
[  157.545148][ T8890] EXT4-fs (loop0): orphan cleanup on readonly fs
[  157.552138][ T8890] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1675: bg 0: block 361: padding at end of block bitmap is not set
[  157.566648][ T8890] EXT4-fs (loop0): Remounting filesystem read-only
[  157.573606][ T8890] EXT4-fs (loop0): 1 truncate cleaned up
[  157.579812][ T8890] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  157.592224][ T8890] SELinux: (dev loop0, type ext4) getxattr errno 5
[  157.599114][ T8890] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  157.640285][ T8898] FAULT_INJECTION: forcing a failure.
[  157.640285][ T8898] name failslab, interval 1, probability 0, space 0, times 0
[  157.653009][ T8898] CPU: 0 UID: 0 PID: 8898 Comm: syz.4.1678 Not tainted 6.11.0-rc3-syzkaller-00010-g6b4aa469f049 #0
[  157.663933][ T8898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  157.674110][ T8898] Call Trace:
[  157.677385][ T8898]  <TASK>
[  157.680313][ T8898]  dump_stack_lvl+0xf2/0x150
[  157.684943][ T8898]  dump_stack+0x15/0x20
[  157.689112][ T8898]  should_fail_ex+0x229/0x230
[  157.693795][ T8898]  ? nfnetlink_rcv+0x994/0x15b0
[  157.698648][ T8898]  should_failslab+0x8f/0xb0
[  157.703278][ T8898]  __kmalloc_cache_noprof+0x4b/0x2a0
[  157.708585][ T8898]  nfnetlink_rcv+0x994/0x15b0
[  157.713277][ T8898]  netlink_unicast+0x593/0x670
[  157.718079][ T8898]  netlink_sendmsg+0x5cc/0x6e0
[  157.722910][ T8898]  ? __pfx_netlink_sendmsg+0x10/0x10
[  157.728214][ T8898]  __sock_sendmsg+0x140/0x180
[  157.732904][ T8898]  ____sys_sendmsg+0x312/0x410
[  157.737672][ T8898]  __sys_sendmsg+0x1e9/0x280
[  157.742285][ T8898]  __x64_sys_sendmsg+0x46/0x50
[  157.747066][ T8898]  x64_sys_call+0x2689/0x2d60
[  157.751821][ T8898]  do_syscall_64+0xc9/0x1c0
[  157.756375][ T8898]  ? clear_bhb_loop+0x55/0xb0
[  157.761120][ T8898]  ? clear_bhb_loop+0x55/0xb0
[  157.765906][ T8898]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.771819][ T8898] RIP: 0033:0x7f0e946799f9
[  157.776224][ T8898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  157.795980][ T8898] RSP: 002b:00007f0e932f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  157.804422][ T8898] RAX: ffffffffffffffda RBX: 00007f0e94815f80 RCX: 00007f0e946799f9
[  157.812428][ T8898] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[  157.820460][ T8898] RBP: 00007f0e932f7090 R08: 0000000000000000 R09: 0000000000000000
[  157.828473][ T8898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  157.836456][ T8898] R13: 0000000000000000 R14: 00007f0e94815f80 R15: 00007ffe563fa148
[  157.844461][ T8898]  </TASK>
[  157.902211][ T8904] 9pnet_fd: Insufficient options for proto=fd
[  157.915882][ T8902] loop0: detected capacity change from 0 to 164
[  157.934437][ T8902] Unable to read rock-ridge attributes
[  157.946352][ T8904] netlink: 'syz.3.1680': attribute type 1 has an invalid length.
[  157.954283][ T8904] netlink: 'syz.3.1680': attribute type 4 has an invalid length.
[  157.962108][ T8904] netlink: 15334 bytes leftover after parsing attributes in process `syz.3.1680'.
[  158.089576][ T8932] FAULT_INJECTION: forcing a failure.
[  158.089576][ T8932] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  158.102920][ T8932] CPU: 0 UID: 0 PID: 8932 Comm: syz.3.1686 Not tainted 6.11.0-rc3-syzkaller-00010-g6b4aa469f049 #0
[  158.113614][ T8932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  158.123685][ T8932] Call Trace:
[  158.127228][ T8932]  <TASK>
[  158.131219][ T8932]  dump_stack_lvl+0xf2/0x150
[  158.135857][ T8932]  dump_stack+0x15/0x20
[  158.140109][ T8932]  should_fail_ex+0x229/0x230
[  158.144814][ T8932]  should_fail+0xb/0x10
[  158.148985][ T8932]  should_fail_usercopy+0x1a/0x20
[  158.154039][ T8932]  _copy_to_user+0x1e/0xa0
[  158.158527][ T8932]  simple_read_from_buffer+0xa0/0x110
[  158.163913][ T8932]  proc_fail_nth_read+0xfc/0x140
[  158.168926][ T8932]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  158.174539][ T8932]  vfs_read+0x1a2/0x6e0
[  158.178712][ T8932]  ? __pfx_pppol2tp_connect+0x10/0x10
[  158.184160][ T8932]  ? __sys_connect+0xd4/0x1c0
[  158.188848][ T8932]  ksys_read+0xeb/0x1b0
[  158.193024][ T8932]  __x64_sys_read+0x42/0x50
[  158.197607][ T8932]  x64_sys_call+0x27d3/0x2d60
[  158.202317][ T8932]  do_syscall_64+0xc9/0x1c0
[  158.206846][ T8932]  ? clear_bhb_loop+0x55/0xb0
[  158.211544][ T8932]  ? clear_bhb_loop+0x55/0xb0
[  158.216254][ T8932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.222252][ T8932] RIP: 0033:0x7fe91f98843c
[  158.226771][ T8932] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8d 02 00 48
[  158.246503][ T8932] RSP: 002b:00007fe91e601030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  158.254920][ T8932] RAX: ffffffffffffffda RBX: 00007fe91fb25f80 RCX: 00007fe91f98843c
[  158.262926][ T8932] RDX: 000000000000000f RSI: 00007fe91e6010a0 RDI: 0000000000000004
[  158.270968][ T8932] RBP: 00007fe91e601090 R08: 0000000000000000 R09: 0000000000000000
[  158.279046][ T8932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  158.287035][ T8932] R13: 0000000000000000 R14: 00007fe91fb25f80 R15: 00007ffde67715e8
[  158.295027][ T8932]  </TASK>
[  158.327516][ T8906] chnl_net:caif_netlink_parms(): no params data found
[  158.379317][ T8935] loop4: detected capacity change from 0 to 512
[  158.393714][ T8906] bridge0: port 1(bridge_slave_0) entered blocking state
[  158.401112][ T8906] bridge0: port 1(bridge_slave_0) entered disabled state
[  158.411706][ T8906] bridge_slave_0: entered allmulticast mode
[  158.413970][ T8935] EXT4-fs (loop4): external journal device major/minor numbers have changed
[  158.419142][ T8906] bridge_slave_0: entered promiscuous mode
[  158.435668][ T8906] bridge0: port 2(bridge_slave_1) entered blocking state
[  158.442935][ T8906] bridge0: port 2(bridge_slave_1) entered disabled state
[  158.453293][ T8906] bridge_slave_1: entered allmulticast mode
[  158.467357][ T8906] bridge_slave_1: entered promiscuous mode
[  158.476110][ T8935] EXT4-fs (loop4): failed to open journal device unknown-block(2940,205839) -6
[  158.495945][ T5946] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  158.530572][ T8906] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  158.535947][ T8954] loop4: detected capacity change from 0 to 164
[  158.541939][ T8906] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  158.555311][ T8954] Unable to read rock-ridge attributes
[  158.559814][   T29] audit: type=1400 audit(1723590003.612:2527): avc:  denied  { ioctl } for  pid=8953 comm="syz.3.1691" path="socket:[30900]" dev="sockfs" ino=30900 ioctlcmd=0x8918 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  158.591706][ T5946] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  158.619215][ T8906] team0: Port device team_slave_0 added
[  158.626284][ T8906] team0: Port device team_slave_1 added
[  158.641791][ T5946] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  158.673055][ T8963] macvlan3: entered allmulticast mode
[  158.678992][ T8963] bond0: (slave macvlan3): Error -98 calling set_mac_address
[  158.697645][ T8906] batman_adv: batadv0: Adding interface: batadv_slave_0
[  158.704646][ T8906] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  158.730977][ T8906] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  158.748839][ T5946] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  158.769869][ T8906] batman_adv: batadv0: Adding interface: batadv_slave_1
[  158.777193][ T8906] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  158.803258][ T8906] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  158.878597][ T8906] hsr_slave_0: entered promiscuous mode
[  158.895279][ T8972] loop0: detected capacity change from 0 to 512
[  158.902000][ T8906] hsr_slave_1: entered promiscuous mode
[  158.909179][ T8906] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  158.926789][ T8906] Cannot create hsr debugfs directory
[  158.976285][ T5946] bridge_slave_1: left allmulticast mode
[  158.982310][ T5946] bridge_slave_1: left promiscuous mode
[  158.988269][ T5946] bridge0: port 2(bridge_slave_1) entered disabled state
[  159.008475][ T5946] bridge_slave_0: left allmulticast mode
[  159.014146][ T5946] bridge_slave_0: left promiscuous mode
[  159.019848][ T5946] bridge0: port 1(bridge_slave_0) entered disabled state
[  159.132516][ T8991] loop0: detected capacity change from 0 to 164
[  159.140636][ T8991] Unable to read rock-ridge attributes
[  159.224428][ T5946] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  159.241353][ T5946] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  159.261367][ T5946] bond0 (unregistering): Released all slaves
[  159.274312][ T8997] loop1: detected capacity change from 0 to 256
[  159.322284][ T9004] loop0: detected capacity change from 0 to 512
[  159.341195][ T9004] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.369542][ T9004] ext4 filesystem being mounted at /96/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  159.391495][ T5946] hsr_slave_0: left promiscuous mode
[  159.400585][ T5946] hsr_slave_1: left promiscuous mode
[  159.407007][ T5946] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  159.414590][ T5946] batman_adv: batadv0: Removing interface: batadv_slave_0
[  159.425975][ T9004] x_tables: ip_tables: osf match: only valid for protocol 6
[  159.434743][ T5946] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  159.436855][   T29] audit: type=1400 audit(1723590004.492:2528): avc:  denied  { name_bind } for  pid=9003 comm="syz.0.1708" src=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[  159.442324][ T5946] batman_adv: batadv0: Removing interface: batadv_slave_1
[  159.487581][ T5946] veth1_macvtap: left promiscuous mode
[  159.493207][ T5946] veth0_macvtap: left promiscuous mode
[  159.498755][ T5946] veth1_vlan: left promiscuous mode
[  159.503992][ T5946] veth0_vlan: left promiscuous mode
[  159.515895][ T9022] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1713'.
[  159.543632][ T9024] netlink: 228 bytes leftover after parsing attributes in process `syz.1.1716'.
[  159.595280][ T8107] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.664150][ T9027] loop1: detected capacity change from 0 to 164
[  159.701287][ T9027] Unable to read rock-ridge attributes
[  159.774923][ T5946] team0 (unregistering): Port device team_slave_1 removed
[  159.790173][ T5946] team0 (unregistering): Port device team_slave_0 removed
[  159.850413][ T9029] bridge0: port 2(bridge_slave_1) entered disabled state
[  159.858220][ T9029] bridge0: port 2(bridge_slave_1) entered blocking state
[  159.865364][ T9029] bridge0: port 2(bridge_slave_1) entered forwarding state
[  159.875885][ T9015] vlan2: entered allmulticast mode
[  159.896635][ T9025] wireguard0: entered promiscuous mode
[  159.902392][ T9025] wireguard0: entered allmulticast mode
[  160.115109][ T8906] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  160.140237][ T8906] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  160.158596][ T9057] FAULT_INJECTION: forcing a failure.
[  160.158596][ T9057] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  160.172135][ T9057] CPU: 0 UID: 0 PID: 9057 Comm: syz.1.1727 Not tainted 6.11.0-rc3-syzkaller-00010-g6b4aa469f049 #0
[  160.186294][ T9057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  160.196943][ T9057] Call Trace:
[  160.200233][ T9057]  <TASK>
[  160.203216][ T9057]  dump_stack_lvl+0xf2/0x150
[  160.207920][ T9057]  dump_stack+0x15/0x20
[  160.212169][ T9057]  should_fail_ex+0x229/0x230
[  160.216916][ T9057]  should_fail+0xb/0x10
[  160.221121][ T9057]  should_fail_usercopy+0x1a/0x20
[  160.226191][ T9057]  _copy_from_user+0x1e/0xd0
[  160.230893][ T9057]  __se_sys_splice+0x18a/0x390
[  160.235695][ T9057]  __x64_sys_splice+0x78/0x90
[  160.240412][ T9057]  x64_sys_call+0x2945/0x2d60
[  160.245110][ T9057]  do_syscall_64+0xc9/0x1c0
[  160.249683][ T9057]  ? clear_bhb_loop+0x55/0xb0
[  160.254420][ T9057]  ? clear_bhb_loop+0x55/0xb0
[  160.259114][ T9057]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.265100][ T9057] RIP: 0033:0x7f777b2499f9
[  160.269535][ T9057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.289325][ T9057] RSP: 002b:00007f7779ea6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  160.297862][ T9057] RAX: ffffffffffffffda RBX: 00007f777b3e6058 RCX: 00007f777b2499f9
[  160.305849][ T9057] RDX: 0000000000000009 RSI: 0000000000000000 RDI: 0000000000000008
[  160.313932][ T9057] RBP: 00007f7779ea6090 R08: 0000000000000009 R09: 0000000000000000
[  160.321998][ T9057] R10: 0000000020000140 R11: 0000000000000246 R12: 0000000000000001
[  160.329991][ T9057] R13: 0000000000000000 R14: 00007f777b3e6058 R15: 00007fff3c0cbf78
[  160.337985][ T9057]  </TASK>
[  160.370742][ T8906] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  160.391471][ T9057] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=60 sclass=netlink_route_socket pid=9057 comm=syz.1.1727
[  160.407521][ T8906] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  160.453372][ T9066] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  160.485614][ T9066] xt_CT: You must specify a L4 protocol and not use inversions on it
[  160.490896][ T8906] 8021q: adding VLAN 0 to HW filter on device bond0
[  160.512717][ T8906] 8021q: adding VLAN 0 to HW filter on device team0
[  160.522977][ T1662] bridge0: port 1(bridge_slave_0) entered blocking state
[  160.530113][ T1662] bridge0: port 1(bridge_slave_0) entered forwarding state
[  160.551835][ T8906] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  160.562364][ T8906] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  160.575834][ T1662] bridge0: port 2(bridge_slave_1) entered blocking state
[  160.582940][ T1662] bridge0: port 2(bridge_slave_1) entered forwarding state
[  160.626846][ T9071] loop4: detected capacity change from 0 to 164
[  160.641313][ T9071] Unable to read rock-ridge attributes
[  160.709888][ T9079] loop4: detected capacity change from 0 to 128
[  160.718163][ T8906] 8021q: adding VLAN 0 to HW filter on device batadv0
[  160.747474][ T9079] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  160.853361][ T8906] veth0_vlan: entered promiscuous mode
[  160.869750][ T8906] veth1_vlan: entered promiscuous mode
[  160.882169][ T9082] loop3: detected capacity change from 0 to 2048
[  160.901952][ T8906] veth0_macvtap: entered promiscuous mode
[  160.909370][ T9082] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  160.910951][ T8906] veth1_macvtap: entered promiscuous mode
[  160.934112][ T8906] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  160.944779][ T8906] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.955716][ T8906] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  160.961546][ T9082] ext4 filesystem being mounted at /10/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  160.966203][ T8906] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.986785][ T8906] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  160.997252][ T8906] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  161.007102][ T8906] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  161.017636][ T8906] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  161.029070][ T8906] batman_adv: batadv0: Interface activated: batadv_slave_0
[  161.037323][ T8906] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  161.047926][ T8906] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  161.057955][ T8906] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  161.068621][ T8906] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  161.078538][ T8906] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  161.089003][ T8906] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  161.098846][ T8906] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  161.109344][ T8906] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  161.120988][ T8906] batman_adv: batadv0: Interface activated: batadv_slave_1
[  161.133916][ T8906] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  161.142828][ T8906] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  161.151620][ T8906] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  161.160423][ T8906] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  161.258193][ T9105] netlink: 'syz.4.1740': attribute type 13 has an invalid length.
[  161.304154][ T8509] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.363288][ T9114] netdevsim netdevsim3 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  161.372197][ T9114] netdevsim netdevsim3 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  161.381029][ T9114] netdevsim netdevsim3 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  161.390025][ T9114] netdevsim netdevsim3 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  161.400450][ T9114] geneve2: entered promiscuous mode
[  161.405339][ T9101] loop4: detected capacity change from 0 to 1024
[  161.405686][ T9114] geneve2: entered allmulticast mode
[  161.475360][ T9116] loop3: detected capacity change from 0 to 1024
[  161.492708][ T9101] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.521745][ T9116] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.540153][ T9123] loop0: detected capacity change from 0 to 512
[  161.561737][ T9116] 9pnet_fd: Insufficient options for proto=fd
[  161.568320][ T9123] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.581203][   T29] audit: type=1326 audit(1723590006.642:2529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9115 comm="syz.3.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91f9899f9 code=0x7ffc0000
[  161.606354][   T29] audit: type=1326 audit(1723590006.642:2530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9115 comm="syz.3.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fe91f9899f9 code=0x7ffc0000
[  161.629875][   T29] audit: type=1326 audit(1723590006.642:2531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9115 comm="syz.3.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91f9899f9 code=0x7ffc0000
[  161.653336][   T29] audit: type=1326 audit(1723590006.642:2532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9115 comm="syz.3.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91f9899f9 code=0x7ffc0000
[  161.662639][ T9123] ext4 filesystem being mounted at /103/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  161.676805][   T29] audit: type=1326 audit(1723590006.642:2533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9115 comm="syz.3.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe91f9899f9 code=0x7ffc0000
[  161.710787][   T29] audit: type=1326 audit(1723590006.642:2534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9115 comm="syz.3.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91f9899f9 code=0x7ffc0000
[  161.734273][   T29] audit: type=1326 audit(1723590006.642:2535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9115 comm="syz.3.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91f9899f9 code=0x7ffc0000
[  161.758051][   T29] audit: type=1326 audit(1723590006.642:2536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9115 comm="syz.3.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fe91f9899f9 code=0x7ffc0000
[  161.761771][ T9123] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, 
[  161.781441][   T29] audit: type=1326 audit(1723590006.642:2537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9115 comm="syz.3.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91f9899f9 code=0x7ffc0000
[  161.781477][   T29] audit: type=1326 audit(1723590006.642:2538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9115 comm="syz.3.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91f9899f9 code=0x7ffc0000
[  161.793387][ T9131] loop2: detected capacity change from 0 to 2048
[  161.813520][ T9123] block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  161.891766][ T8509] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.908719][ T9123] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 2 with error 28
[  161.912130][ T9131] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2568 sclass=netlink_route_socket pid=9131 comm=syz.2.1749
[  161.921082][ T9123] EXT4-fs (loop0): This should not happen!! Data will be lost
[  161.921082][ T9123] 
[  161.943646][ T9123] EXT4-fs (loop0): Total free blocks count 0
[  161.949831][ T9123] EXT4-fs (loop0): Free/Dirty block details
[  161.955821][ T9123] EXT4-fs (loop0): free_blocks=65280
[  161.961218][ T9123] EXT4-fs (loop0): dirty_blocks=2
[  161.966319][ T9123] EXT4-fs (loop0): Block reservation details
[  161.972349][ T9123] EXT4-fs (loop0): i_reserved_data_blocks=2
[  162.006232][ T9132] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  162.095629][ T9143] loop0: detected capacity change from 0 to 164
[  162.122956][ T9143] Unable to read rock-ridge attributes
[  162.149444][ T9145] netlink: 196 bytes leftover after parsing attributes in process `syz.2.1752'.
[  162.163271][ T9148] loop3: detected capacity change from 0 to 512
[  162.201804][ T9148] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  162.254505][ T8509] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.344335][ T9158] FAULT_INJECTION: forcing a failure.
[  162.344335][ T9158] name failslab, interval 1, probability 0, space 0, times 0
[  162.357122][ T9158] CPU: 0 UID: 0 PID: 9158 Comm: syz.2.1757 Not tainted 6.11.0-rc3-syzkaller-00010-g6b4aa469f049 #0
[  162.367977][ T9158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  162.378078][ T9158] Call Trace:
[  162.381360][ T9158]  <TASK>
[  162.384305][ T9158]  dump_stack_lvl+0xf2/0x150
[  162.388929][ T9158]  dump_stack+0x15/0x20
[  162.393164][ T9158]  should_fail_ex+0x229/0x230
[  162.397885][ T9158]  ? ethnl_default_notify+0xe5/0x4a0
[  162.403319][ T9158]  should_failslab+0x8f/0xb0
[  162.407933][ T9158]  __kmalloc_noprof+0xa5/0x370
[  162.412749][ T9158]  ethnl_default_notify+0xe5/0x4a0
[  162.417919][ T9158]  ethtool_notify+0xbb/0x1b0
[  162.422518][ T9158]  ethtool_set_coalesce+0x400/0x430
[  162.427829][ T9158]  dev_ethtool+0x66e/0x14c0
[  162.432400][ T9158]  ? __rcu_read_unlock+0x4e/0x70
[  162.437345][ T9158]  dev_ioctl+0x854/0xab0
[  162.441594][ T9158]  sock_do_ioctl+0x11c/0x260
[  162.446210][ T9158]  sock_ioctl+0x470/0x640
[  162.450558][ T9158]  ? __pfx_sock_ioctl+0x10/0x10
[  162.455494][ T9158]  __se_sys_ioctl+0xd3/0x150
[  162.460156][ T9158]  __x64_sys_ioctl+0x43/0x50
[  162.464762][ T9158]  x64_sys_call+0x15cc/0x2d60
[  162.469476][ T9158]  do_syscall_64+0xc9/0x1c0
[  162.474031][ T9158]  ? clear_bhb_loop+0x55/0xb0
[  162.478729][ T9158]  ? clear_bhb_loop+0x55/0xb0
[  162.483422][ T9158]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.489331][ T9158] RIP: 0033:0x7f418b9899f9
[  162.493745][ T9158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.513379][ T9158] RSP: 002b:00007f418a607038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  162.521831][ T9158] RAX: ffffffffffffffda RBX: 00007f418bb25f80 RCX: 00007f418b9899f9
[  162.529806][ T9158] RDX: 0000000020000900 RSI: 0000000000008946 RDI: 0000000000000010
[  162.537783][ T9158] RBP: 00007f418a607090 R08: 0000000000000000 R09: 0000000000000000
[  162.545754][ T9158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  162.553733][ T9158] R13: 0000000000000000 R14: 00007f418bb25f80 R15: 00007ffd4e319628
[  162.561714][ T9158]  </TASK>
[  162.590333][ T6604] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.603431][ T9161] loop0: detected capacity change from 0 to 512
[  162.635063][ T9161] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.654832][ T9161] ext4 filesystem being mounted at /106/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  162.689019][ T9175] FAULT_INJECTION: forcing a failure.
[  162.689019][ T9175] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  162.702423][ T9175] CPU: 1 UID: 0 PID: 9175 Comm: syz.4.1762 Not tainted 6.11.0-rc3-syzkaller-00010-g6b4aa469f049 #0
[  162.713110][ T9175] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  162.723241][ T9175] Call Trace:
[  162.726515][ T9175]  <TASK>
[  162.729455][ T9175]  dump_stack_lvl+0xf2/0x150
[  162.734065][ T9175]  dump_stack+0x15/0x20
[  162.738233][ T9175]  should_fail_ex+0x229/0x230
[  162.743004][ T9175]  should_fail_alloc_page+0xfd/0x110
[  162.748371][ T9175]  __alloc_pages_noprof+0x109/0x360
[  162.753590][ T9175]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  162.758972][ T9175]  folio_alloc_mpol_noprof+0x36/0x70
[  162.764340][ T9175]  shmem_get_folio_gfp+0x3eb/0xd80
[  162.769475][ T9175]  shmem_fault+0x100/0x260
[  162.773900][ T9175]  __do_fault+0xb6/0x200
[  162.778159][ T9175]  handle_mm_fault+0xc0a/0x2940
[  162.783020][ T9175]  ? follow_page_pte+0x35f/0xc40
[  162.787974][ T9175]  ? mt_find+0x70a/0x880
[  162.792226][ T9175]  __get_user_pages+0x499/0x10d0
[  162.797267][ T9175]  __gup_longterm_locked+0xdcd/0x10b0
[  162.802666][ T9175]  ? down_read+0x171/0x4b0
[  162.807121][ T9175]  pin_user_pages_remote+0x7f/0xb0
[  162.812326][ T9175]  process_vm_rw+0x4f7/0x8c0
[  162.816962][ T9175]  ? ksys_write+0x178/0x1b0
[  162.821527][ T9175]  __x64_sys_process_vm_writev+0x7a/0x90
[  162.827185][ T9175]  x64_sys_call+0x1a4/0x2d60
[  162.831785][ T9175]  do_syscall_64+0xc9/0x1c0
[  162.836322][ T9175]  ? clear_bhb_loop+0x55/0xb0
[  162.841078][ T9175]  ? clear_bhb_loop+0x55/0xb0
[  162.845881][ T9175]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.851838][ T9175] RIP: 0033:0x7f0e946799f9
[  162.856251][ T9175] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.875863][ T9175] RSP: 002b:00007f0e932f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[  162.884362][ T9175] RAX: ffffffffffffffda RBX: 00007f0e94815f80 RCX: 00007f0e946799f9
[  162.892380][ T9175] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 00000000000001d3
[  162.900358][ T9175] RBP: 00007f0e932f7090 R08: 000000000000023a R09: 0000000000000000
[  162.908402][ T9175] R10: 0000000020121000 R11: 0000000000000246 R12: 0000000000000002
[  162.916390][ T9175] R13: 0000000000000000 R14: 00007f0e94815f80 R15: 00007ffe563fa148
[  162.924371][ T9175]  </TASK>
[  162.988958][ T8107] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.036077][ T9185] netlink: 'syz.4.1765': attribute type 1 has an invalid length.
[  163.052362][ T9185] 8021q: adding VLAN 0 to HW filter on device bond1
[  163.098127][ T9190] loop4: detected capacity change from 0 to 512
[  163.146095][ T9194] FAULT_INJECTION: forcing a failure.
[  163.146095][ T9194] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  163.159429][ T9194] CPU: 0 UID: 0 PID: 9194 Comm: syz.4.1770 Not tainted 6.11.0-rc3-syzkaller-00010-g6b4aa469f049 #0
[  163.170164][ T9194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  163.180241][ T9194] Call Trace:
[  163.183548][ T9194]  <TASK>
[  163.186493][ T9194]  dump_stack_lvl+0xf2/0x150
[  163.191192][ T9194]  dump_stack+0x15/0x20
[  163.195534][ T9194]  should_fail_ex+0x229/0x230
[  163.200254][ T9194]  should_fail_alloc_page+0xfd/0x110
[  163.205598][ T9194]  __alloc_pages_noprof+0x109/0x360
[  163.210912][ T9194]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  163.216377][ T9194]  alloc_pages_noprof+0xe1/0x100
[  163.224021][ T9194]  get_free_pages_noprof+0xc/0x30
[  163.229090][ T9194]  do_proc_control+0x174/0x850
[  163.233967][ T9194]  ? should_fail_ex+0xd7/0x230
[  163.238839][ T9194]  usbdev_ioctl+0x284b/0x3e10
[  163.243607][ T9194]  ? do_vfs_ioctl+0x99e/0x1560
[  163.248563][ T9194]  ? selinux_file_ioctl+0x2f7/0x380
[  163.253797][ T9194]  ? __fget_files+0x1da/0x210
[  163.258578][ T9194]  ? __pfx_usbdev_ioctl+0x10/0x10
[  163.263626][ T9194]  __se_sys_ioctl+0xd3/0x150
[  163.268257][ T9194]  __x64_sys_ioctl+0x43/0x50
[  163.273049][ T9194]  x64_sys_call+0x15cc/0x2d60
[  163.277824][ T9194]  do_syscall_64+0xc9/0x1c0
[  163.282376][ T9194]  ? clear_bhb_loop+0x55/0xb0
[  163.287086][ T9194]  ? clear_bhb_loop+0x55/0xb0
[  163.291794][ T9194]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.297801][ T9194] RIP: 0033:0x7f0e946799f9
[  163.302244][ T9194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.321889][ T9194] RSP: 002b:00007f0e932f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  163.330324][ T9194] RAX: ffffffffffffffda RBX: 00007f0e94815f80 RCX: 00007f0e946799f9
[  163.338321][ T9194] RDX: 0000000020000040 RSI: 00000000c0105500 RDI: 0000000000000003
[  163.346312][ T9194] RBP: 00007f0e932f7090 R08: 0000000000000000 R09: 0000000000000000
[  163.354359][ T9194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  163.362343][ T9194] R13: 0000000000000000 R14: 00007f0e94815f80 R15: 00007ffe563fa148
[  163.370335][ T9194]  </TASK>
[  163.451433][ T9205] loop4: detected capacity change from 0 to 128
[  163.467797][ T9205] vfat: Unknown parameter 'syzkaller'
[  163.719321][ T9219] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1777'.
[  163.752539][ T9221] loop3: detected capacity change from 0 to 1024
[  163.768749][ T9221] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  163.782848][ T9221] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.853110][ T9237] loop2: detected capacity change from 0 to 2048
[  163.870793][ T9237] loop2: detected capacity change from 0 to 1024
[  163.877569][ T9237] EXT4-fs: Ignoring removed orlov option
[  163.883379][ T9237] EXT4-fs: Ignoring removed nomblk_io_submit option
[  163.898005][ T9237] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  163.939339][ T9242] loop3: detected capacity change from 0 to 256
[  163.977690][ T9110] netlink: 'syz.1.1741': attribute type 13 has an invalid length.
[  164.006333][ T9250] loop3: detected capacity change from 0 to 512
[  164.048411][ T9250] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  164.056421][ T9250] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  164.074369][ T9250] System zones: 0-1, 15-15, 18-18, 34-34
[  164.092607][ T9250] EXT4-fs (loop3): orphan cleanup on readonly fs
[  164.102596][ T9250] EXT4-fs warning (device loop3): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  164.117206][ T9250] EXT4-fs (loop3): Cannot turn on quotas: error -22
[  164.125568][ T9250] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1785: bg 0: block 40: padding at end of block bitmap is not set
[  164.153216][ T9250] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  164.169242][ T9250] EXT4-fs (loop3): 1 truncate cleaned up
[  164.176472][ T9250] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  164.209297][ T9250] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1785'.
[  164.231172][ T8509] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.275576][ T9267] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1791'.
[  164.330575][ T9273] netlink: 'syz.4.1794': attribute type 30 has an invalid length.
[  164.338634][ T9273] (unnamed net_device) (uninitialized): option arp_missed_max: invalid value (0)
[  164.347803][ T9273] (unnamed net_device) (uninitialized): option arp_missed_max: allowed values 1 - 255
[  164.369720][ T9110] loop1: detected capacity change from 0 to 1024
[  164.384346][ T9275] loop3: detected capacity change from 0 to 1024
[  164.391475][ T9275] EXT4-fs: Ignoring removed orlov option
[  164.397678][ T9275] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  164.406449][ T9275] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  164.417435][ T9275] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  164.430419][ T9275] EXT4-fs (loop3): invalid journal inode
[  164.436208][ T9275] EXT4-fs (loop3): can't get journal size
[  164.443004][ T9275] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  164.456418][ T9275] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  164.475201][ T9110] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.494843][ T8509] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.578315][ T9295] loop0: detected capacity change from 0 to 256
[  165.051270][ T9311] loop2: detected capacity change from 0 to 1024
[  165.060782][ T9311] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.083744][ T8906] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.136326][ T9318] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1810'.
[  165.191537][ T9324] netlink: 'syz.4.1813': attribute type 4 has an invalid length.
[  165.279817][ T9332] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1812'.
[  165.288833][ T9332] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1812'.
[  165.351443][ T9332] wireguard0: entered promiscuous mode
[  165.357079][ T9332] wireguard0: entered allmulticast mode
[  165.674258][ T8215] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.685400][ T9349] wg1: entered promiscuous mode
[  165.749719][ T9357] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1823'.
[  165.758878][ T9357] tipc: Started in network mode
[  165.763754][ T9357] tipc: Node identity 40170020000000006e, cluster identity 8
[  165.783138][ T9361] x_tables: ip_tables: osf match: only valid for protocol 6
[  165.790878][ T9363] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  165.799121][ T9363] batadv_slave_0: entered allmulticast mode
[  165.830059][ T9367] macvlan3: entered allmulticast mode
[  165.835746][ T9367] bond0: (slave macvlan3): Error -98 calling set_mac_address
[  165.914768][ T9376] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1832'.
[  166.097485][ T9388] loop2: detected capacity change from 0 to 512
[  166.110228][ T9388] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.122999][ T9388] ext4 filesystem being mounted at /26/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  166.137167][ T9388] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  166.143716][ T9388] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  166.151294][ T9388] vhci_hcd vhci_hcd.0: Device attached
[  166.185507][ T9388] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(11)
[  166.192217][ T9388] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  166.199669][ T9388] vhci_hcd vhci_hcd.0: Device attached
[  166.238412][ T9395] vhci_hcd: connection closed
[  166.238634][   T36] vhci_hcd: stop threads
[  166.247639][   T36] vhci_hcd: release socket
[  166.252068][   T36] vhci_hcd: disconnect device
[  166.257572][ T9393] vhci_hcd: connection closed
[  166.257889][   T36] vhci_hcd: stop threads
[  166.266942][   T36] vhci_hcd: release socket
[  166.271383][   T36] vhci_hcd: disconnect device
[  166.512113][ T9411] netlink: 'syz.0.1830': attribute type 13 has an invalid length.
[  166.553427][ T9371] loop0: detected capacity change from 0 to 1024
[  166.570546][ T9371] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.666312][ T9415] bridge0: port 2(bridge_slave_1) entered disabled state
[  166.675154][ T9415] bridge0: port 2(bridge_slave_1) entered blocking state
[  166.682247][ T9415] bridge0: port 2(bridge_slave_1) entered forwarding state
[  166.718167][ T9417] loop1: detected capacity change from 0 to 256
[  166.772224][ T8906] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.802018][   T29] kauditd_printk_skb: 125 callbacks suppressed
[  166.802048][   T29] audit: type=1326 audit(1723590011.852:2663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9422 comm="syz.2.1847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f418b9899f9 code=0x7ffc0000
[  166.835681][   T29] audit: type=1326 audit(1723590011.872:2664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9422 comm="syz.2.1847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f418b9899f9 code=0x7ffc0000
[  166.859214][   T29] audit: type=1326 audit(1723590011.872:2665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9422 comm="syz.2.1847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f418b9899f9 code=0x7ffc0000
[  166.885297][   T29] audit: type=1326 audit(1723590011.932:2666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9422 comm="syz.2.1847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f418b9899f9 code=0x7ffc0000
[  166.908764][   T29] audit: type=1326 audit(1723590011.932:2667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9422 comm="syz.2.1847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f418b9899f9 code=0x7ffc0000
[  166.917239][ T8107] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.940000][ T9428] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1850'.
[  166.952162][   T29] audit: type=1326 audit(1723590011.992:2668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9422 comm="syz.2.1847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=195 compat=0 ip=0x7f418b9899f9 code=0x7ffc0000
[  166.975700][   T29] audit: type=1326 audit(1723590011.992:2669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9422 comm="syz.2.1847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f418b9899f9 code=0x7ffc0000
[  166.975804][   T29] audit: type=1326 audit(1723590011.992:2670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9422 comm="syz.2.1847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f418b9899f9 code=0x7ffc0000
[  166.975836][   T29] audit: type=1326 audit(1723590011.992:2671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9422 comm="syz.2.1847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f418b9899f9 code=0x7ffc0000
[  166.975873][   T29] audit: type=1326 audit(1723590011.992:2672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9422 comm="syz.2.1847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f418b9899f9 code=0x7ffc0000
[  167.225238][ T9447] loop4: detected capacity change from 0 to 2048
[  167.238447][ T9447] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.250629][ T9447] ext4 filesystem being mounted at /204/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  167.367052][ T6604] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.629147][ T9468] netdevsim netdevsim4 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  167.638087][ T9468] netdevsim netdevsim4 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  167.646989][ T9468] netdevsim netdevsim4 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  167.655854][ T9468] netdevsim netdevsim4 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  167.674413][ T9468] geneve2: entered promiscuous mode
[  167.679738][ T9468] geneve2: entered allmulticast mode
[  167.718590][ T9474] FAULT_INJECTION: forcing a failure.
[  167.718590][ T9474] name failslab, interval 1, probability 0, space 0, times 0
[  167.731320][ T9474] CPU: 0 UID: 0 PID: 9474 Comm: syz.1.1865 Not tainted 6.11.0-rc3-syzkaller-00010-g6b4aa469f049 #0
[  167.742013][ T9474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  167.752094][ T9474] Call Trace:
[  167.755386][ T9474]  <TASK>
[  167.758368][ T9474]  dump_stack_lvl+0xf2/0x150
[  167.762989][ T9474]  dump_stack+0x15/0x20
[  167.767277][ T9474]  should_fail_ex+0x229/0x230
[  167.771975][ T9474]  ? kstrdup_const+0x3e/0x50
[  167.776811][ T9474]  should_failslab+0x8f/0xb0
[  167.781534][ T9474]  __kmalloc_node_track_caller_noprof+0xa6/0x380
[  167.787887][ T9474]  kstrdup+0x3a/0x80
[  167.791794][ T9474]  kstrdup_const+0x3e/0x50
[  167.796296][ T9474]  alloc_vfsmnt+0xa9/0x300
[  167.800753][ T9474]  clone_mnt+0x45/0x7a0
[  167.805032][ T9474]  copy_tree+0x2df/0x7f0
[  167.809376][ T9474]  propagate_one+0x328/0x470
[  167.813996][ T9474]  propagate_mnt+0x303/0x660
[  167.818602][ T9474]  attach_recursive_mnt+0x2d9/0xff0
[  167.823832][ T9474]  graft_tree+0xe6/0x100
[  167.828098][ T9474]  do_loopback+0x203/0x2d0
[  167.832575][ T9474]  path_mount+0x3d0/0xb30
[  167.836929][ T9474]  __se_sys_mount+0x27c/0x2d0
[  167.841635][ T9474]  ? fput+0x13b/0x180
[  167.845690][ T9474]  __x64_sys_mount+0x67/0x80
[  167.850330][ T9474]  x64_sys_call+0x203e/0x2d60
[  167.855025][ T9474]  do_syscall_64+0xc9/0x1c0
[  167.859557][ T9474]  ? clear_bhb_loop+0x55/0xb0
[  167.864290][ T9474]  ? clear_bhb_loop+0x55/0xb0
[  167.869003][ T9474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.874916][ T9474] RIP: 0033:0x7f777b2499f9
[  167.879343][ T9474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  167.898990][ T9474] RSP: 002b:00007f7779ec7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  167.907457][ T9474] RAX: ffffffffffffffda RBX: 00007f777b3e5f80 RCX: 00007f777b2499f9
[  167.915433][ T9474] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000020000440
[  167.923492][ T9474] RBP: 00007f7779ec7090 R08: 0000000000000000 R09: 0000000000000000
[  167.931468][ T9474] R10: 00000000010a5840 R11: 0000000000000246 R12: 0000000000000002
[  167.939449][ T9474] R13: 0000000000000000 R14: 00007f777b3e5f80 R15: 00007fff3c0cbf78
[  167.947509][ T9474]  </TASK>
[  168.108856][ T9489] loop0: detected capacity change from 0 to 512
[  168.134676][ T9493] loop4: detected capacity change from 0 to 1024
[  168.161315][ T9489] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.203760][ T9493] netlink: 'syz.4.1871': attribute type 10 has an invalid length.
[  168.222185][ T8107] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.250309][ T9493] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  168.285720][ T3287] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.375511][ T3287] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.419624][ T9505] loop0: detected capacity change from 0 to 2048
[  168.442157][ T3287] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.459604][ T9505] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.514692][ T3287] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.577063][ T9525] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  168.627851][ T5946] EXT4-fs (loop0): Delayed block allocation failed for inode 19 at logical offset 0 with max blocks 33 with error 28
[  168.640221][ T5946] EXT4-fs (loop0): This should not happen!! Data will be lost
[  168.640221][ T5946] 
[  168.649941][ T5946] EXT4-fs (loop0): Total free blocks count 0
[  168.656105][ T5946] EXT4-fs (loop0): Free/Dirty block details
[  168.662066][ T5946] EXT4-fs (loop0): free_blocks=2415919104
[  168.667834][ T5946] EXT4-fs (loop0): dirty_blocks=48
[  168.673023][ T5946] EXT4-fs (loop0): Block reservation details
[  168.679040][ T5946] EXT4-fs (loop0): i_reserved_data_blocks=3
[  168.707797][ T3287] bridge_slave_1: left allmulticast mode
[  168.713476][ T3287] bridge_slave_1: left promiscuous mode
[  168.719180][ T3287] bridge0: port 2(bridge_slave_1) entered disabled state
[  168.747878][ T3287] bridge_slave_0: left allmulticast mode
[  168.748193][ T9533] loop4: detected capacity change from 0 to 512
[  168.753536][ T3287] bridge_slave_0: left promiscuous mode
[  168.765534][ T9533] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  168.765577][ T3287] bridge0: port 1(bridge_slave_0) entered disabled state
[  168.774588][ T9533] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  168.793128][ T8107] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.802793][ T9533] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  168.816813][ T9533] System zones: 0-2, 18-18, 34-34
[  168.822499][ T9533] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  168.884084][ T9533] EXT4-fs (loop4): 1 truncate cleaned up
[  168.890562][ T9533] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.011262][ T3287] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  169.023647][ T3287] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  169.037986][ T3287] bond0 (unregistering): (slave macvlan2): Releasing backup interface
[  169.046917][ T3287] team0: left allmulticast mode
[  169.051798][ T3287] team_slave_0: left allmulticast mode
[  169.057349][ T3287] team_slave_1: left allmulticast mode
[  169.062915][ T3287] team_slave_0: left promiscuous mode
[  169.068317][ T3287] team_slave_1: left promiscuous mode
[  169.098283][ T3287] bond0 (unregistering): Released all slaves
[  169.179547][ T9499] chnl_net:caif_netlink_parms(): no params data found
[  169.204053][ T9552] netlink: 'syz.3.1859': attribute type 13 has an invalid length.
[  169.214292][ T3287] hsr_slave_0: left promiscuous mode
[  169.223660][ T3287] hsr_slave_1: left promiscuous mode
[  169.229708][ T3287] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  169.237177][ T3287] batman_adv: batadv0: Removing interface: batadv_slave_0
[  169.247264][ T3287] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  169.254813][ T3287] batman_adv: batadv0: Removing interface: batadv_slave_1
[  169.285026][ T3287] veth1_macvtap: left promiscuous mode
[  169.290605][ T3287] veth0_macvtap: left promiscuous mode
[  169.296227][ T3287] veth1_vlan: left promiscuous mode
[  169.301510][ T3287] veth0_vlan: left promiscuous mode
[  169.474860][ T3287] team0 (unregistering): Port device team_slave_1 removed
[  169.487788][ T3287] team0 (unregistering): Port device team_slave_0 removed
[  169.568085][ T6604] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.589541][ T9499] bridge0: port 1(bridge_slave_0) entered blocking state
[  169.596758][ T9499] bridge0: port 1(bridge_slave_0) entered disabled state
[  169.605562][ T9499] bridge_slave_0: entered allmulticast mode
[  169.612347][ T9499] bridge_slave_0: entered promiscuous mode
[  169.621274][ T9499] bridge0: port 2(bridge_slave_1) entered blocking state
[  169.628529][ T9499] bridge0: port 2(bridge_slave_1) entered disabled state
[  169.636077][ T9499] bridge_slave_1: entered allmulticast mode
[  169.644281][ T9499] bridge_slave_1: entered promiscuous mode
[  169.668662][ T9499] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  169.681617][ T9499] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  169.720264][ T9499] team0: Port device team_slave_0 added
[  169.733600][ T9499] team0: Port device team_slave_1 added
[  169.764454][ T9499] batman_adv: batadv0: Adding interface: batadv_slave_0
[  169.771443][ T9499] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  169.771522][ T9573] FAULT_INJECTION: forcing a failure.
[  169.771522][ T9573] name failslab, interval 1, probability 0, space 0, times 0
[  169.797415][ T9499] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  169.820763][ T9573] CPU: 1 UID: 0 PID: 9573 Comm: syz.0.1890 Not tainted 6.11.0-rc3-syzkaller-00010-g6b4aa469f049 #0
[  169.831510][ T9573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  169.841656][ T9573] Call Trace:
[  169.844931][ T9573]  <TASK>
[  169.847884][ T9573]  dump_stack_lvl+0xf2/0x150
[  169.852562][ T9573]  dump_stack+0x15/0x20
[  169.856780][ T9573]  should_fail_ex+0x229/0x230
[  169.861489][ T9573]  ? __alloc_skb+0x10b/0x310
[  169.866162][ T9573]  should_failslab+0x8f/0xb0
[  169.870772][ T9573]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  169.876621][ T9573]  __alloc_skb+0x10b/0x310
[  169.881132][ T9573]  pfkey_sendmsg+0x751/0x970
[  169.885746][ T9573]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  169.890871][ T9573]  __sock_sendmsg+0x140/0x180
[  169.895606][ T9573]  ____sys_sendmsg+0x312/0x410
[  169.900466][ T9573]  __sys_sendmmsg+0x269/0x500
[  169.905218][ T9573]  __x64_sys_sendmmsg+0x57/0x70
[  169.910081][ T9573]  x64_sys_call+0xa49/0x2d60
[  169.914744][ T9573]  do_syscall_64+0xc9/0x1c0
[  169.919261][ T9573]  ? clear_bhb_loop+0x55/0xb0
[  169.923953][ T9573]  ? clear_bhb_loop+0x55/0xb0
[  169.928644][ T9573]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.934630][ T9573] RIP: 0033:0x7efe637c99f9
[  169.939115][ T9573] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  169.958742][ T9573] RSP: 002b:00007efe62441038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  169.967175][ T9573] RAX: ffffffffffffffda RBX: 00007efe63965f80 RCX: 00007efe637c99f9
[  169.975208][ T9573] RDX: 0400000000000002 RSI: 0000000020000180 RDI: 0000000000000003
[  169.983183][ T9573] RBP: 00007efe62441090 R08: 0000000000000000 R09: 0000000000000000
[  169.991159][ T9573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  169.999131][ T9573] R13: 0000000000000000 R14: 00007efe63965f80 R15: 00007ffe4922e6e8
[  170.007140][ T9573]  </TASK>
[  170.028492][ T9499] batman_adv: batadv0: Adding interface: batadv_slave_1
[  170.035483][ T9499] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  170.061532][ T9499] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  170.087541][ T9576] loop4: detected capacity change from 0 to 128
[  170.108201][ T9576] vfat: Unknown parameter 'syzkaller'
[  170.125399][ T9499] hsr_slave_0: entered promiscuous mode
[  170.129017][ T9458] loop3: detected capacity change from 0 to 1024
[  170.138889][ T9499] hsr_slave_1: entered promiscuous mode
[  170.189784][ T9458] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  170.370938][ T9586] loop2: detected capacity change from 0 to 164
[  170.388723][ T9584] netlink: 'syz.2.1893': attribute type 1 has an invalid length.
[  170.440723][ T9590] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=60 sclass=netlink_route_socket pid=9590 comm=syz.0.1894
[  170.471249][ T9592] __nla_validate_parse: 2 callbacks suppressed
[  170.471268][ T9592] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1895'.
[  170.498979][ T9594] FAULT_INJECTION: forcing a failure.
[  170.498979][ T9594] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  170.512133][ T9594] CPU: 0 UID: 0 PID: 9594 Comm: syz.2.1896 Not tainted 6.11.0-rc3-syzkaller-00010-g6b4aa469f049 #0
[  170.522871][ T9594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  170.533041][ T9594] Call Trace:
[  170.536535][ T9594]  <TASK>
[  170.539544][ T9594]  dump_stack_lvl+0xf2/0x150
[  170.544169][ T9594]  dump_stack+0x15/0x20
[  170.548349][ T9594]  should_fail_ex+0x229/0x230
[  170.553102][ T9594]  should_fail+0xb/0x10
[  170.557292][ T9594]  should_fail_usercopy+0x1a/0x20
[  170.562327][ T9594]  _copy_from_iter+0xd3/0xb00
[  170.567192][ T9594]  ? kmalloc_reserve+0x16e/0x190
[  170.572150][ T9594]  ? __build_skb_around+0x196/0x1f0
[  170.577373][ T9594]  ? __virt_addr_valid+0x1ed/0x250
[  170.582583][ T9594]  ? __check_object_size+0x35b/0x510
[  170.587888][ T9594]  pfkey_sendmsg+0x16c/0x970
[  170.592488][ T9594]  ? avc_has_perm+0xd4/0x160
[  170.597101][ T9594]  ? selinux_socket_sendmsg+0x182/0x1b0
[  170.602656][ T9594]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  170.607786][ T9594]  __sock_sendmsg+0x140/0x180
[  170.612566][ T9594]  ____sys_sendmsg+0x312/0x410
[  170.617412][ T9594]  __sys_sendmmsg+0x269/0x500
[  170.622181][ T9594]  __x64_sys_sendmmsg+0x57/0x70
[  170.627055][ T9594]  x64_sys_call+0xa49/0x2d60
[  170.631723][ T9594]  do_syscall_64+0xc9/0x1c0
[  170.636360][ T9594]  ? clear_bhb_loop+0x55/0xb0
[  170.641057][ T9594]  ? clear_bhb_loop+0x55/0xb0
[  170.645785][ T9594]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.651737][ T9594] RIP: 0033:0x7f418b9899f9
[  170.656175][ T9594] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.675907][ T9594] RSP: 002b:00007f418a607038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  170.684468][ T9594] RAX: ffffffffffffffda RBX: 00007f418bb25f80 RCX: 00007f418b9899f9
[  170.692501][ T9594] RDX: 0400000000000002 RSI: 0000000020000180 RDI: 0000000000000003
[  170.700485][ T9594] RBP: 00007f418a607090 R08: 0000000000000000 R09: 0000000000000000
[  170.708460][ T9594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  170.716490][ T9594] R13: 0000000000000000 R14: 00007f418bb25f80 R15: 00007ffd4e319628
[  170.724559][ T9594]  </TASK>
[  170.770221][ T9604] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1899'.
[  170.781776][ T9499] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  170.795479][ T9499] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  170.806593][ T9499] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  170.815600][ T9499] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  170.882932][ T9499] 8021q: adding VLAN 0 to HW filter on device bond0
[  170.898450][ T9499] 8021q: adding VLAN 0 to HW filter on device team0
[  170.910043][ T3287] bridge0: port 1(bridge_slave_0) entered blocking state
[  170.917170][ T3287] bridge0: port 1(bridge_slave_0) entered forwarding state
[  170.930736][ T1662] bridge0: port 2(bridge_slave_1) entered blocking state
[  170.937951][ T1662] bridge0: port 2(bridge_slave_1) entered forwarding state
[  170.958797][ T9499] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  170.969307][ T9499] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  171.037813][ T9499] 8021q: adding VLAN 0 to HW filter on device batadv0
[  171.123073][ T9499] veth0_vlan: entered promiscuous mode
[  171.133534][ T9499] veth1_vlan: entered promiscuous mode
[  171.152297][ T9499] veth0_macvtap: entered promiscuous mode
[  171.161810][ T9499] veth1_macvtap: entered promiscuous mode
[  171.176647][ T9499] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.187470][ T9499] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.197486][ T9499] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.208133][ T9499] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.218029][ T9499] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.228546][ T9499] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.243178][ T9499] batman_adv: batadv0: Interface activated: batadv_slave_0
[  171.253920][ T9499] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  171.264542][ T9499] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.274573][ T9499] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  171.285108][ T9499] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.295088][ T9499] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  171.305615][ T9499] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.315476][ T9499] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  171.326059][ T9499] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.339361][ T9499] batman_adv: batadv0: Interface activated: batadv_slave_1
[  171.358332][ T9499] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  171.367126][ T9499] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  171.375999][ T9499] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  171.384738][ T9499] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  171.405992][ T8509] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.488810][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.496631][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.504226][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.512056][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.519512][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.526944][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.534349][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.541876][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.549659][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.557233][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.564674][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.572199][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.579644][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.587217][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.594631][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.602155][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.609695][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.617196][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.624663][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.632142][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.639588][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.647130][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.654650][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.662100][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.669780][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.677240][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.684677][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.692118][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.699664][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.707132][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.714616][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.722077][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.729886][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.737510][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.745374][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.752915][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.760601][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.768165][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.775565][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.783048][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.790578][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.798134][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.805601][ T4389] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  171.816521][ T9661] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1914'.
[  171.825623][ T9661] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1914'.
[  171.837519][ T4389] hid-generic 0000:0000:0000.0010: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  171.883130][ T9664] loop1: detected capacity change from 0 to 512
[  171.927423][ T9664] loop1: detected capacity change from 0 to 512
[  171.935859][ T9664] EXT4-fs error (device loop1): __ext4_iget:4985: inode #15: block 1803188595: comm syz.1.1915: invalid block
[  171.949385][ T9664] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.1915: couldn't read orphan inode 15 (err -117)
[  171.967550][ T9664] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.039500][ T9620] loop4: detected capacity change from 0 to 256
[  172.060189][ T9672] program syz.1.1915 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  172.200816][ T9673] ==================================================================
[  172.208927][ T9673] BUG: KCSAN: data-race in __delete_from_swap_cache / folio_mapping
[  172.216912][ T9673] 
[  172.219225][ T9673] write to 0xffffea0005008c28 of 8 bytes by task 9672 on cpu 1:
[  172.226856][ T9673]  __delete_from_swap_cache+0x1f0/0x290
[  172.232401][ T9673]  delete_from_swap_cache+0x72/0xe0
[  172.237684][ T9673]  folio_free_swap+0x19f/0x1c0
[  172.242451][ T9673]  free_pages_and_swap_cache+0x1f7/0x410
[  172.248084][ T9673]  tlb_flush_mmu+0x2cf/0x440
[  172.252679][ T9673]  tlb_finish_mmu+0x8c/0x100
[  172.257271][ T9673]  zap_page_range_single+0x27e/0x2f0
[  172.262550][ T9673]  do_madvise+0xfaa/0x2620
[  172.266985][ T9673]  __x64_sys_madvise+0x61/0x70
[  172.271745][ T9673]  x64_sys_call+0x2320/0x2d60
[  172.276433][ T9673]  do_syscall_64+0xc9/0x1c0
[  172.280941][ T9673]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.286839][ T9673] 
[  172.289181][ T9673] read to 0xffffea0005008c28 of 8 bytes by task 9673 on cpu 0:
[  172.296723][ T9673]  folio_mapping+0xd2/0x110
[  172.301254][ T9673]  lru_add_fn+0x89/0x440
[  172.305507][ T9673]  folio_batch_move_lru+0x15f/0x230
[  172.310707][ T9673]  folio_add_lru+0x13e/0x1f0
[  172.315330][ T9673]  reclaim_folio_list+0x145/0x1e0
[  172.320358][ T9673]  reclaim_pages+0x215/0x270
[  172.324955][ T9673]  madvise_cold_or_pageout_pte_range+0xe49/0xec0
[  172.331282][ T9673]  walk_pgd_range+0x807/0xee0
[  172.335956][ T9673]  __walk_page_range+0xc5/0x330
[  172.340799][ T9673]  walk_page_range+0x395/0x4e0
[  172.345555][ T9673]  do_madvise+0x1a3e/0x2620
[  172.350227][ T9673]  __x64_sys_madvise+0x61/0x70
[  172.355205][ T9673]  x64_sys_call+0x2320/0x2d60
[  172.359927][ T9673]  do_syscall_64+0xc9/0x1c0
[  172.364532][ T9673]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.370431][ T9673] 
[  172.372773][ T9673] value changed: 0x0000000000000339 -> 0x0000000000000000
[  172.379978][ T9673] 
[  172.382321][ T9673] Reported by Kernel Concurrency Sanitizer on:
[  172.388480][ T9673] CPU: 0 UID: 0 PID: 9673 Comm: syz.1.1915 Not tainted 6.11.0-rc3-syzkaller-00010-g6b4aa469f049 #0
[  172.399147][ T9673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  172.409194][ T9673] ==================================================================
[  172.728105][ T9499] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.914079][ T9676] netlink: 'syz.2.1916': attribute type 13 has an invalid length.
[  172.963288][ T9668] loop2: detected capacity change from 0 to 1024
[  172.980119][ T9668] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.946076][ T8906] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.