last executing test programs:

3.702197378s ago: executing program 1 (id=6511):
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)

3.653114562s ago: executing program 1 (id=6512):
r0 = syz_mount_image$msdos(&(0x7f0000000280), &(0x7f00000001c0)='./file0\x00', 0x10084d8, &(0x7f0000000180)=ANY=[@ANYRES32], 0xfd, 0x1c3, &(0x7f0000000b00)="$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")
open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x0, 0x116094000}], 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000400)=ANY=[@ANYRES16=r0, @ANYRES64=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000570000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x29, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xe}, 0x90)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
setsockopt(0xffffffffffffffff, 0x84, 0x7f, &(0x7f00000001c0)="020000800d80ffff", 0x8)

3.627948114s ago: executing program 1 (id=6513):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x3f, &(0x7f0000000080)=0x1, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000007d00000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_SUBMITURB(r3, 0x802c550a, &(0x7f0000000280)=@urb_type_interrupt={0x1, {0x1, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

3.604485786s ago: executing program 1 (id=6514):
r0 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @private}, 0x3, &(0x7f00000004c0)=[{&(0x7f0000000040)="91", 0x1}], 0x1, &(0x7f0000000000)=[@sndrcv={0x30}], 0x30}], 0x1, 0x0)

3.5511857s ago: executing program 1 (id=6515):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000004, 0x10012, r0, 0x0)
modify_ldt$write2(0x11, &(0x7f0000000000), 0x10)
socket$inet_sctp(0x2, 0x5, 0x84)
modify_ldt$write2(0x11, &(0x7f0000000040)={0x7, 0x20000800, 0x1000, 0x1, 0x3, 0x0, 0x1, 0x1, 0x1}, 0x10)

3.550844841s ago: executing program 1 (id=6516):
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x2, 0x0, 0x0, 0xff, 0x0, 0x7, 0x110, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_config_ext, 0x0, 0x0, 0xffffffff, 0x3, 0x0, 0x0, 0x4}, 0x0, 0x3, 0xffffffffffffffff, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sched_process_wait\x00'}, 0x10)
r0 = socket$kcm(0x29, 0x2, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSSOFTCAR(r1, 0x5453, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000380), 0x62301, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f00000011c0)={'vxcan0\x00', <r4=>0x0})
bind$can_j1939(r3, &(0x7f0000001200)={0x1d, r4, 0x0, {0x0, 0x0, 0x4}}, 0x18)
connect$can_j1939(r3, &(0x7f0000000080)={0x1d, r4}, 0x18)
writev(r3, &(0x7f00000004c0)=[{&(0x7f0000000440)="689dd3ab513fb70461c7cd400fe1b26f16780f12e91e015466d42c66399e1da67ddc7c74e60287010f53278e9f0106dfb4b84adab7f2ff7205a2ee56db6cc858b8ddf5a977cb5e03a948556507dc7e3016af11d6d2cb4085f4e028dd", 0x5c}], 0x1)
r5 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000240)={'vxcan0\x00', <r6=>0x0})
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48)
syz_open_dev$usbmon(&(0x7f00000000c0), 0x0, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
waitid(0x0, 0x0, 0x0, 0x4, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x100004, 0x220104, 0xb, 0x1}, 0x48)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000100)={r9, &(0x7f0000000200), 0x0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r8}, &(0x7f0000000240), &(0x7f00000003c0)=r10}, 0x20)
sendmsg$NL80211_CMD_START_AP(r10, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="28000400", @ANYRES16=0x0, @ANYBLOB="080027bd7000fcdbdf250f0000000c009900080000005200000008000c0003000000"], 0x28}, 0x1, 0x0, 0x0, 0x20040010}, 0x4000000)
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=@getchain={0x20, 0x11, 0x839, 0x0, 0x0, {0x0, 0x0, 0x0, r6}}, 0x24}}, 0x0)
write$cgroup_pressure(r0, &(0x7f0000000140)={'full', 0x20, 0x2}, 0x2f)

1.818698162s ago: executing program 3 (id=6544):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080), 0x4)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f00000003c0)=ANY=[], 0xfdef)

1.700243291s ago: executing program 3 (id=6547):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000240), 0x1, 0x787, &(0x7f0000001000)="$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")
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000300)={[{@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@resuid}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@lazytime}, {@jqfmt_vfsold}, {@usrquota}, {@data_err_abort}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
write$binfmt_aout(r1, &(0x7f00000002c0)=ANY=[], 0xc1)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000005, 0x10, r1, 0x0)
getsockopt$inet_int(r0, 0x10d, 0x96, 0x0, &(0x7f0000000040))

1.614992398s ago: executing program 3 (id=6548):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84) (async)
r1 = syz_io_uring_setup(0x4b2f, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000340), &(0x7f0000000300)=<r2=>0x0)
syz_io_uring_setup(0x4d0b, &(0x7f0000000080)={0x0, 0x702a, 0x0, 0x0, 0xfffffffc, 0x0, r1}, &(0x7f00000003c0)=<r3=>0x0, &(0x7f00000004c0))
syz_io_uring_submit(r3, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54}) (async)
io_uring_enter(r1, 0xb15, 0x0, 0x0, 0x0, 0x0)
ioctl$int_in(r0, 0x5452, &(0x7f0000000280)) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000002c0)={0x1, &(0x7f00000039c0)=[{0x6}]}) (async)
socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xfffffffe, 0x4}, 0x48) (async)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x0, 0xf, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000", @ANYBLOB="ed917c680f8b587322ee682eb4fd42087612e6ee3eab6d5d988b124b152737d584277e8d2864739525b15d2aac1e5abd5df25f55a57314ae9cbd2566d7da2f824dce5d9bd0c68414512d91e1cc7b810848ad1b8fd68064c907925375ccba5e60c274fedc0cdce6d68d4fc4134f9097b754e112c26c7d6ffc26286198de2ba70502b5582a7ff3997df8413421650419f0c18633b13687a17e6b3c1957cf99e72f98b672808fd6bfc6e3e382ff885f62180fe4879b235f55a99cbd23721d00ef8574b61159d234b3104b69f4082d5d", @ANYBLOB="0000000000000000b702000014000000b7030000010000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095", @ANYRESHEX=r3], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="200027bd7000ffdbdf250100001c66b94ba126000800"], 0x1c}}, 0x4004040)
r5 = socket$key(0xf, 0x3, 0x2) (async)
mremap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0xc00000, 0x4, &(0x7f0000400000/0xc00000)=nil) (async)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0) (async)
socket$netlink(0x10, 0x3, 0x0) (async)
io_setup(0x8, &(0x7f0000000000)=<r6=>0x0) (async)
r7 = eventfd2(0x0, 0x0)
io_submit(r6, 0x1, &(0x7f00000002c0)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r7, &(0x7f0000000180)="d1f7624a6b0e53c3", 0x8}]) (async)
io_submit(0x0, 0x1, &(0x7f0000000600)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, r7, 0x0}])
io_setup(0xfff, &(0x7f0000000040)=<r8=>0x0)
io_getevents(r8, 0x800, 0x0, &(0x7f00000001c0), &(0x7f00000000c0))
io_destroy(r6) (async)
writev(r7, &(0x7f0000000480)=[{&(0x7f0000000340)="7e9adf65e9c6bafa", 0x8}], 0x1) (async)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e000000020013000200000000000000ff0800ed05000600200000000a0006000000000026b900000000000000001ffeff0001000003f1dc7f7c6e7c0200010000000000004000020000000005000500000000000a"], 0x80}}, 0x0)
sendmmsg(r5, &(0x7f0000000180), 0x400008a, 0x0) (async)
sendmsg$key(r5, &(0x7f0000000140)={0x9, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="02090f0902"], 0x10}}, 0x0) (async)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

1.380432027s ago: executing program 3 (id=6553):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000000), 0xffffffffffffffff)
bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000340))
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x0, 0x5, 0x2, 0x1000}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdb4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe15, 0x5, 0x0, 0x0, 0x0, 0x0, 0x8, 0xffffffffffffff4b, 0x0}}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19}, 0x48)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000100))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x16, 0xc, &(0x7f0000000300)=ANY=[@ANYRES16, @ANYRESOCT, @ANYRESDEC], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x90)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000040), &(0x7f0000000380)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r0}, 0x10)
ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_MM_AUXV(0x23, 0xc, 0x0, 0xd)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000940)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000003c000000020a010400000000000000000700000508000a40000000000900010073797a31000000000900010073797a300000000008000240000000009c0000000c0a01010000000000000000070000000900020073797a31000000000900010073797a3000000000700003"], 0x120}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYRES16=0x0], 0x0, 0xfffffffe, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, 0x2}, 0x46764236a7c0ad06)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file0\x00', 0x40, &(0x7f00000005c0), 0x1, 0x583, &(0x7f0000000bc0)="$eJzs3U9oHFUYAPBvZhNr22haUFDpoahQoXST9I9WT+lVLBR6ELzEsNmGkE02Zje1CT2k9yIWFJVeqicFPSoiHsSLR69eFM+CaFFpepDIZHf7J8mu27TZLdnfD2b73rzpfu9l9ns7M8ywAfSsg9lLGvF0RJxJIgbvaOuLeuPB2nYr1y8WbvZFIYnV1bN/JJFExI3rFwuN7ZP6v3sjYjkinoqI7/sjDqcb41YWl6bHS6XifL0+VJ2ZG6osLh2ZmhmfLE4WZ4+99PKJk8dPjBwdeWBjvfzLlXcu//jqtSuffXFgufD+eBKjMVBvu3McD1Ltb9Ifo+vWH9+OYF2UNG3ZZOfz0MjV87w/Ip6MwcjVsx7Y+VZ3RawCPSq55/zfHeYM2AkaxwHZ+W9j6eTxx++naicgWdyV+lJr6atdm4hH185N9vyV3HVmkp1v7utkR9mRli9FxHBf38bPf1L//G3d8IPoINvqu1O1HbVx/6fZ/n/r8/p26+efgca10/vUmP9WNsx/6a35L9dk/jvTZox/3/j1o6bxL0U8s2n85Fb8ZJP4aUS82Wb8q69/fbJZ2+rHEYdi8/gNSevrw0PnpkrF4drrpjG+PXTglVbj39Mk/miL8Wfr5toc/1c/fPnscov4LzzXev9vFj87Bn+3zfj7b3z6WrO2LP5Ek/G3ip+tu9Zm/BdHD/7c5qYAAAAAAAAAAMA9SNfuZUvS/K1ymubztWd4n4g9aalcqR4+V16Ynajd87Yv+tPGnVaDtXqS1Ufq9+M26kfX1Y9FxP6IeC+3e62eL5RLE90ePAAAAAAAAAAAAAAAAAAAADwk9q57/v/vXO35f6BH+Mlv6F3yH3rX3fmfdK0fQOf5/ofeJf+hdzXL/5vfdLgjQMc1/f7v72w/gM5z/A+9S/5D75L/0LvkPwAAAAAAAAAAAAAAAAAAAAAAAAAAbIszp09ny+rN6xcLWX3i/OLCdPn8kYliZTo/s1DIF8rzc/nJcnmyVMwXyjP/936lcnluOGYXLgxVi5XqUGVxaWymvDBbHZuaGZ8sjhX9oggAAAAAAAAAAAAAAAAAAABsNLC2JGk+ItK1cprm8xGPRcS+6E/OTZWKwxHxeET8lOvfldVHut1pAAAAAAAAAAAAAAAAAAAA2GEqi0vT46VScb51IW1jm51XiIjldWvu7X3G/ulcn7PObum/J8v3FT2Jbu8mhW368AMAAAAAAAAAAAAAAAAAAB11+6HfbvcEAAAAAAAAAAAAAAAAAAAAeln6W/aaRMShwecH1rc+kqzkIj4ZzMpvXz37wYXxanV+JFv/Z26tPSKqH9bXH+1C94G2NfK0kccAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAbZXFpenxUqk4v8XCrjbep8tDBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANiS/wIAAP//7YjRGA==")
setxattr$trusted_overlay_upper(&(0x7f0000000200)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000240)=ANY=[], 0x835, 0x0)

1.331805951s ago: executing program 4 (id=6558):
mkdir(&(0x7f0000000300)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = dup(r1)
mount$9p_fd(0xedc000000000, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB="2c756e616d653dea"])

1.331421851s ago: executing program 4 (id=6559):
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x8002, &(0x7f00000000c0), 0x7, 0x4a9, &(0x7f0000000b40)="$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")
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000001080)={0x0, 0x0, 0x8000, {0x0, 0x1}, {0x5e, 0x2}, @cond=[{}, {0x0, 0x0, 0x0, 0x0, 0x4000}]})
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000800)='./bus\x00', 0x201480f, &(0x7f00000001c0)=ANY=[], 0x2, 0x67b, &(0x7f0000000980)="$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")
r0 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x25449, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000580)={@val={0x1c, 0xf5}, @val, @mpls={[{}], @ipv6=@icmpv6={0x0, 0x6, '\x00', 0x39, 0x3a, 0x0, @mcast2, @private1, {[], @ndisc_redir={0x89, 0x0, 0x0, '\x00', @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0, [{0x0, 0x2, "b0dcc4a3616748a199e53d96e28516"}]}}}}}, 0x73)
r3 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x822b01)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x101242, 0x0)
pwrite64(r4, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
setsockopt$XDP_UMEM_FILL_RING(r4, 0x11b, 0x5, &(0x7f0000000140)=0x1440, 0x4)
write$char_usb(r3, &(0x7f0000000040)="e2", 0x12d8)
ioperm(0x0, 0x3, 0x3f)
eventfd2(0x0, 0xc0801)
r5 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r5, 0x0, 0x0)
ioctl$F2FS_IOC_FLUSH_DEVICE(r0, 0x4008f50a, &(0x7f0000000180)={0x80, 0x9})
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r3, 0xc038943b, &(0x7f0000000240)={0xffffffffffffffff, 0x30, '\x00', 0x0, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})

1.099943851s ago: executing program 0 (id=6566):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[], &(0x7f0000000f40)=""/4096, 0x3e, 0x1000, 0x1}, 0x20)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x10, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, 0x0, 0x0)
fsopen(&(0x7f0000000040)='ramfs\x00', 0x0)
r1 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x214801, &(0x7f0000000000)=ANY=[], 0x0, 0x357, &(0x7f0000000180)="$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")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.throttle.io_serviced_recursive\x00', 0x275a, 0x0)
write$binfmt_aout(r2, &(0x7f00000002c0)=ANY=[], 0xc1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000840), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r3, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000940)={0x0}}, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x700000d, 0x10, r2, 0x0)
ioctl$FAT_IOCTL_SET_ATTRIBUTES(r1, 0x40047211, &(0x7f0000000140)=0x5)
r4 = openat$cgroup_ro(r2, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)=@newtaction={0x74, 0x30, 0x1, 0x0, 0x0, {}, [{0x60, 0x1, [@m_ct={0x5c, 0x1, 0x0, 0x0, {{0x7}, {0x34, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18}, @TCA_CT_ACTION={0x6}, @TCA_CT_NAT_PORT_MIN={0x6}, @TCA_CT_NAT_IPV4_MIN={0x2, 0x9, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x74}}, 0x0)
r6 = open(&(0x7f0000007f80)='./bus\x00', 0x145142, 0xc2)
copy_file_range(r6, 0x0, r6, 0x0, 0x0, 0x0)
r7 = socket$inet_dccp(0x2, 0x6, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xb, 0x16, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
getsockopt$inet_int(r7, 0x10d, 0xc3, 0x0, &(0x7f00000000c0))
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
lsm_get_self_attr(0x64, &(0x7f0000000000), &(0x7f0000001280)=0xdb, 0x0)
ioctl$F2FS_IOC_ABORT_ATOMIC_WRITE(r4, 0xf505, 0x0)
linkat(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x1800)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_encap(r8, 0x11, 0x64, &(0x7f0000000080)=0x2, 0x4)
bind$inet6(r8, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)

1.070167412s ago: executing program 4 (id=6567):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x20002)
r1 = dup(r0)
syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = dup(r2)
write$UHID_INPUT(r3, &(0x7f0000001040)={0xfc, {"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", 0x1000}}, 0x1006)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESOCT=r0])

995.134529ms ago: executing program 0 (id=6568):
add_key$fscrypt_v1(&(0x7f00000000c0), &(0x7f0000000240)={'fscrypt:', @desc1}, &(0x7f00000002c0)={0x0, "615a091a55a8c9a640115d99d981b3886420589c6685d4982a83b71b906769e737201ac6b7a7804454156569cbf3a5be811debc957b5831b89b59d703e748c7c", 0x10}, 0x48, 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @dev}}}, 0x108)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x14000, &(0x7f0000000100), 0x1, 0x50d, &(0x7f0000000a00)="$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")
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r2, 0x4b49, 0xfffffffffffffffc)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_MSG_GETRULE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, 0x7, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x2c}}, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
unshare(0x0)
bpf$MAP_DELETE_ELEM(0x2, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000140)=0x1, 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, @private2, 0x34b6bc3d}, 0x1c)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f000000e0c0), 0x10010)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x11a, 0x1, &(0x7f0000000000)=@ccm_128={{0x304}, "cdedbe27d7c9678a", "ed86a155b66f481507086fe637736e4c", "a2dc23ff", "00000000000400"}, 0x28)
write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x118)

850.34984ms ago: executing program 4 (id=6570):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1f, 0x0, 0x0, 0x1000, 0x0, 0x1}, 0x48)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x100000f, 0x28011, r0, 0x1000)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x14)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
r2 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
r3 = dup(r2)
getsockopt$PNPIPE_IFINDEX(r3, 0x113, 0x2, 0x0, 0x0)
connect$can_bcm(r1, &(0x7f0000000080), 0x10)
io_setup(0x9, &(0x7f0000000240)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f0000000100)=[&(0x7f00000000c0)={0x400000, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000200)="0500000093c21faf16da39de706f646800580f02000000003f420f000000000000580f02000000003f420f00000000000029ffffff000000", 0x20000238}])
r5 = syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401)
r6 = fcntl$dupfd(r5, 0x0, r5)
ioctl$USBDEVFS_SUBMITURB(r6, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x0, 0x1, 0x0, 0x0, 0x7995}, 0xfcb5, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
r7 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
syz_clone3(&(0x7f0000000340)={0x200103000, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r7}}, 0x58)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1f, 0x0, 0x0, 0x1000, 0x0, 0x1}, 0x48) (async)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x100000f, 0x28011, r0, 0x1000) (async)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0) (async)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x14) (async)
socket$can_bcm(0x1d, 0x2, 0x2) (async)
syz_init_net_socket$llc(0x1a, 0x1, 0x0) (async)
dup(r2) (async)
getsockopt$PNPIPE_IFINDEX(r3, 0x113, 0x2, 0x0, 0x0) (async)
connect$can_bcm(r1, &(0x7f0000000080), 0x10) (async)
io_setup(0x9, &(0x7f0000000240)) (async)
io_submit(r4, 0x1, &(0x7f0000000100)=[&(0x7f00000000c0)={0x400000, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000200)="0500000093c21faf16da39de706f646800580f02000000003f420f000000000000580f02000000003f420f00000000000029ffffff000000", 0x20000238}]) (async)
syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401) (async)
fcntl$dupfd(r5, 0x0, r5) (async)
ioctl$USBDEVFS_SUBMITURB(r6, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x0, 0x1, 0x0, 0x0, 0x7995}, 0xfcb5, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0}) (async)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0) (async)
syz_clone3(&(0x7f0000000340)={0x200103000, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r7}}, 0x58) (async)

846.783451ms ago: executing program 0 (id=6571):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10)
munlockall() (fail_nth: 2)

379.290249ms ago: executing program 3 (id=6573):
syz_mount_image$msdos(&(0x7f0000000100), &(0x7f0000000080)='./file1\x00', 0x8, &(0x7f00000001c0)={[{@dots}, {}, {@dots}, {@fat=@showexec}, {@dots}, {@nodots}, {@fat=@tz_utc}, {@fat=@quiet}, {@nodots}, {@dots}, {@fat=@showexec}, {@dots}, {@dots}, {@fat=@umask={'umask', 0x3d, 0x7fff}}, {@fat=@nfs}, {@dots}, {@fat=@tz_utc}, {@fat=@errors_continue}, {@nodots}, {@fat=@nocase}, {@dots}, {@dots}]}, 0xfd, 0x1bf, &(0x7f0000000680)="$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")
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000f40)={[{@noload}, {@mblk_io_submit}, {@lazytime}, {@nogrpid}, {@block_validity}, {@user_xattr}]}, 0x3, 0x449, &(0x7f0000000740)="$eJzs28trXNUfAPDvnSR995f8Sn30oUarGHwkTfqwCzeKggsLgi7qMiZpqZ020kSwpWgVqUspuC8uBf8CV7oRdSW41b0UimTTKghX7sy9ycxkJp2Jk0zrfD5wk3PuPZNzvnPvuXPOPZkA+tZo9iOJ2BURv0bEcDVbX2C0+uvO0pWZP5euzCSRpm/+kVTK3V66MlMULV63s8gMRpQ+TeJAk3oXLl0+N10uz13M8xOL59+bWLh0+fmz56fPzJ2ZuzB14sTRI5MvHJ861pU4s7hu7/9w/uC+196+fnLm1PV3fvw6KeJviKNLRtc6+FSadrm63tpdk04GVx/ftpmNoW0D1W4aQ5X+PxwDsXLyhuPVT3raOGBDpWmaPtj68NUU+A9LotctAHqj+KDP5r/FtklDj3vCrZeqE6As7jv5Vj0yGKW8zFDD/LabRiPi1NW/bmRbbMxzCACAOt9m45/nmo3/SlH7XOh/+RrKSET8PyL2RMTxiNgbEQ9EVMo+FBEPd1h/4yLJ6vFP6ea6AmtTNv57MV/bqh//FaO/GBnIc7sr8Q8lp8+W5w7n78lYDG3N8pNr1PHdK7983upY7fgv27L6i7Fg3o6bg1vrXzM7vTj9b2KudevjiP2DzeJPllcCkojYFxH711nH2We+OtjqWJP4/07T9EZbf7jJOlOn0i8jnq6e/6vREH8hWXt9cmJblOcOTxRXxWo//XztjVb13/38b6zs/O9oev0vxz+S1K7XLnRex7XfPms5p1nv9b8leatu3wfTi4sXJyO2JK8PRX6fWt4/1VBuaqV8Fv/Yoeb9f0+svBMHIiK7iB+JiEcj4rG87Y9HxBMRcWiN+H94+cl363aM7eog/o2VxT/b0flfSWyJxj3NEwPnvv+mrtKR6CD+7PwfraTG8j3t3P/aadf6rmYAAAC4/5QiYlckpfHldKk0Pl79H/69saNUnl9YfPb0/PsXZqvfERiJoVLxpGu45nnoZD6tL/JTDfkj+XPjLwa2V/LjM/Pl2V4HD31uZ4v+n/l9oNetAzZcF9bRgPuU/g/9S/+H/qX/Q/9q0v+396IdwOZr9vn/UQ/aAWy+hv5v2Q/6iPk/9C/9H/qX/g99aWF73P1L8hISqxJRuieaIdFJ4uSxtgv3+s4EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQHf8EAAD//yeb6Hg=")
r0 = creat(&(0x7f0000000d00)='./bus\x00', 0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_setup(0x200, &(0x7f0000000140)=<r1=>0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000540)={0x0, &(0x7f00000000c0)=""/220, 0x0, 0xdc}, 0x20)
ftruncate(0xffffffffffffffff, 0x81fd)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0x0, 0x20, 0x1, 0x0, r0, &(0x7f0000000000), 0x4000}])

308.591425ms ago: executing program 0 (id=6576):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000010000507000000000000000000000002", @ANYRES32, @ANYBLOB="e8ff3f0000000002280012000c00010076657468"], 0x48}}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), r0)
getsockname$packet(r0, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[], 0x48}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=@ipv4_newaddr={0x20, 0x14, 0x121, 0x0, 0x0, {0x2, 0x1f, 0x0, 0x0, r2}, [@IFA_LOCAL={0x8, 0x2, @dev}]}, 0x20}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x1, 0x803, 0x0)
r4 = socket(0x8, 0x2, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r4, &(0x7f0000000040))
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x1, 0x803, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f00000006c0))
sendmsg$nl_route_sched(r5, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000140)={&(0x7f0000002880), 0x226c}, 0x1, 0x0, 0x0, 0xa0}, 0x20000001)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFBRDADDR(0xffffffffffffffff, 0x891a, &(0x7f0000000700)={'batadv_slave_0\x00', {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}})
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, &(0x7f00000001c0)={@local}, 0x0)
sendmmsg$inet6(r4, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f00000026c0)=[{0x0}, {&(0x7f0000002500)="c05164fb4feda7f1b133256bd759179e319f727835678ac76d67a049be40c5d2cf8b21dd893ffc9233a758e790062e32928416691fe08a72ef7bf2", 0x3b}, {&(0x7f0000002540)}, {&(0x7f00000025c0)="0df89314a8bc44476d311f2edf6e0390b47f8b471ce89b2cd4f71a79f556b0d1e28b865957dbbeea9af7b5b6f52a9b5e08c59bb1b5e6442397c554845371730b631dfe262a8d5e055be9ee5906e1e79d413d70ebccc28826c72c3d769dfc22436dea50f3e717a6c089aa75f886aabdbd04dc2116634b8de08f244997a3f3edd07166e321a2c99edc6c15748025d975691a3d5647e85b0b4ee1e7782eacd31935d0fe54b84954d0d96a008af49b08df4300a4492786a485c94ecff181e58e1c74db9ed1c9c4a814dd6979757cefdf5a7ba45df57d639e365ac6810b", 0xdb}], 0x4}}, {{&(0x7f0000002740)={0xa, 0x4e21, 0xfffffff7, @private2, 0x4}, 0x1c, &(0x7f0000002880)=[{&(0x7f0000003200)="aa2a58b350b1b0c7eb703ee3f524c4bf0548cc1e3f081ae51aad7be2d1ee45793b3a2a640573096acb7cb4acdfd3e627ae47a21ddfcc8d83304c79df765a05063e33ae9af110c5fa067bc88909264c67bc04049814c9f5447471952f7c94c0699c6540ab1acbdc31560c070f3a2ae62d2956360c06fdd1e6761bce44fead21a6bbc044c05e1c3c33148894fe34b89062d6ce5f4d757136be5c21f4bdbdfc2321b813fd851752e6b45fe16a92ca6e3ad02adb8e86", 0xb4}], 0x1, &(0x7f0000000780)=ANY=[@ANYBLOB="900000000000000029000000370000000c0e0000001d00000502ffff0710fb201c98025c00000000000000000000040101c90afc0000000000000000000000000000010103000000c910fe8000000000000000000000000000bbc204000003ffad10fe8000000000000000000000000000aac204000000060000000000008a0695c6ceebd0b9fd568a00005520000000000014000000000000002900000034000000010000000000000014000000000000002900000043000000010000000000000014000000000000002900000034000000080000000000000000000000000000000000dc3d2049cb35085eb2d2620edbf9b46ef0297910b5d0f2ddce59f13f49d0535c1f8457dea3293df50978202ec2f9db6e83ede1b5d04b94ea85d85ec2e169b838e5bad3e4daf0c892ed305aaf5e17f79e03907fe1822f6b151029b5625b503a1d9169"], 0xd8}}], 0x3, 0x200048c4)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001b80)=ANY=[@ANYBLOB="180000830000000400008000"/24], 0x18}}, 0x20000000)
setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0xd0, &(0x7f0000000680), 0x10)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000540)=@newlink={0x20, 0x11, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, r7, 0x800}}, 0x20}}, 0x0)

308.005115ms ago: executing program 0 (id=6577):
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=[0xffffffffffffffff]}, 0x90)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001b00)='/proc/slabinfo\x00', 0x0, 0x0)
r3 = signalfd(r1, &(0x7f0000000cc0)={[0x5]}, 0x8)
eventfd2(0x80000001, 0x1)
r4 = signalfd4(r1, &(0x7f0000000240)={[0x1]}, 0x8, 0x80000)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r4, 0xc0189375, &(0x7f00000011c0)={{0x1, 0x1, 0x18, <r5=>r0}, './file0\x00'})
io_submit(0x0, 0x9, &(0x7f0000001240)=[&(0x7f0000000980)={0x0, 0x0, 0x0, 0x5, 0x4, r1, &(0x7f0000000bc0)="3244bab82cbdcad2612c226186e072edfa94eb0e6d39df3a7454bff2892045bfc169b4a259743582e4a7f2b83350c8d427fdeb7d072033572ab7d6b89e3d38552edf8590a5a4d95e6c547ce62b8c81deb3308af77280826eac6dfcaad00a6f576081afe4df1860043b4779bd818539267af7bb9978748734ecbcd354b7bb5fcb8048372d33571c2decffd5a6c18b20", 0x8f, 0x0, 0x0, 0x0, r2}, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x3, r2, &(0x7f0000001f40)="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", 0x1000, 0x3ff, 0x0, 0x1, r2}, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x3, 0x2, r1, &(0x7f0000002f40)="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", 0x1000, 0x0, 0x0, 0x3, r3}, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x5, 0x6ab, r1, &(0x7f0000000e00)="e732f312481f78eb5b5e8c5d67f6c7d9", 0x10, 0x5, 0x0, 0x2, r2}, &(0x7f0000000f00)={0x0, 0x0, 0x0, 0x5, 0x9, r2, &(0x7f0000000e80), 0x0, 0x1, 0x0, 0x1, r2}, 0x0, &(0x7f0000001040)={0x0, 0x0, 0x0, 0x8, 0x80, r1, &(0x7f0000000f80)="b0cd0849f972c03a5e137e9150165655770d9ab8d7353d9db4aac6e5eef1e5d1b73df71c996c03793867f8f65f50042e78963474705f7961fbd09b37d638fdc390f5d17d40e8bab7dbb16f12e45897afd82fa942eb94a5a5cb7fa32ad74bd1d0ef5cd138c5a350663fb36c7731cee172ae6e3f44be23515aaa3850dcd43965fdef22e160b1670577203983ddab52837eaa196b3e1670ace543555ee60d12df42767f3b59eb0654faa73c9b49fe5c79e384589f73495c9930c55f8d1f7426c8", 0xbf, 0x7, 0x0, 0x2, r2}, &(0x7f0000001140)={0x0, 0x0, 0x0, 0x3, 0x80, 0xffffffffffffffff, &(0x7f0000001080)="e9d40e78f4cec1f36bcb667dcfdabbe4069c811cbc35d3e9f6ac1f5766f422b4b28908de266c066ea4dd8ea63f434645c9e68702a8765c3043c1544ba0458990f3e9183b14328ed0189d902783e3e4a99b8e661d4efaed66613173c967e2ac27eacbf752c427a200119d61264efd3b17723ef9831c7f0fe12a0538dbc716c8d68ba60a9f62823ed4258df9ce7a214a95c76b7cb04838ded4b22117e7c3530517a79bb501d9c8dc", 0xa7, 0x5, 0x0, 0x6, r2}, &(0x7f0000001200)={0x0, 0x0, 0x0, 0x3, 0x8, r1, &(0x7f0000001180)="d9a7f1514c85a106d0f90e75c2ef6220d8cf15ed4d14974038c241bbca75055e00e26bb3f3cf05085d9cd8ea56", 0x2d, 0x0, 0x0, 0x0, r5}])
getresuid(&(0x7f0000001380), &(0x7f0000001300), &(0x7f0000001340)=<r6=>0x0)
sendmsg$nl_xfrm(r2, &(0x7f0000001f00)={0x0, 0x0, &(0x7f0000001ec0)={&(0x7f0000001c40)=ANY=[@ANYBLOB="500100001900040025bd7000fcdbdf25fe880000000000000000000000000101fe8000000000000000400000000000aa000000004e2400000600200000000000", @ANYRES32=0x0, @ANYRES32=r6, @ANYBLOB="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"], 0x150}, 0x1, 0x0, 0x0, 0x41}, 0x50)
recvmmsg$unix(r2, &(0x7f0000000640)=[{{&(0x7f00000007c0), 0x6e, &(0x7f0000000440)=[{&(0x7f00000005c0)=""/76, 0x4c}, {&(0x7f00000002c0)=""/95, 0x5f}, {0x0}, {&(0x7f0000000340)=""/119, 0x77}, {&(0x7f0000000100)=""/59, 0x3b}], 0x5, &(0x7f00000004c0)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r7=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x48}}, {{&(0x7f0000000540)=@abs, 0x6e, &(0x7f00000006c0), 0x8, &(0x7f0000000700)}}, {{&(0x7f0000000740)=@abs, 0x6e, &(0x7f0000000a00)=[{0x0}, {&(0x7f0000000900)=""/66, 0x42}, {&(0x7f0000000700)=""/10}, {&(0x7f00000009c0)=""/29, 0x1d}], 0x4, &(0x7f00000001c0)=[@rights={{0x14, 0x1, 0x1, [<r8=>0xffffffffffffffff]}}, @cred={{0x1c}}], 0x38}}], 0x3, 0x40010000, &(0x7f0000000b80))
syz_open_dev$tty1(0xc, 0x4, 0x3)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001140)=@ipv4_newroute={0x1c, 0x66, 0x725}, 0x1c}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@bloom_filter={0x1e, 0xca6e, 0x7, 0x0, 0x420, r7, 0x80, '\x00', 0x0, r3, 0x3, 0x4, 0x5, 0x3}, 0x48)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@ipv4_newrule={0x3c, 0x20, 0x1, 0x0, 0x0, {0x2, 0x14, 0x10}, [@FRA_FLOW={0x8}, @FRA_GENERIC_POLICY=@FRA_IP_PROTO={0x5, 0x16, 0x89}, @FRA_DST={0x8, 0x1, @broadcast}, @FRA_SRC={0x8}]}, 0x3c}}, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000080)={r8, 0xe0, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x8, &(0x7f0000000280)}}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000000c0)='ext4_es_lookup_extent_exit\x00'}, 0x10)
r11 = open(&(0x7f0000007f80)='./bus\x00', 0x145142, 0x0)
ftruncate(r11, 0x2007ffb)
r12 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r12, 0x107, 0xd, &(0x7f0000000100)=@req3={0x10000, 0x1, 0x10000, 0x1}, 0x1c)
sendfile(r12, r11, 0x0, 0x1000000201005)
writev(r1, 0x0, 0x0)

262.619178ms ago: executing program 4 (id=6579):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x50032, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff762}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x4101}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c00000000000000f2ffffff850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETSW(r1, 0x5403, &(0x7f0000000000)={0x0, 0x0, 0x0, 0xffffffff, 0x0, "ff3f66fa733f1b33e356d25b90c98fe587b88a"})
write$binfmt_aout(r1, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba0700000000ebffffff0000f77fff00"})
r2 = syz_open_pts(r1, 0x0)
ioctl$TCSETAF(r1, 0x5408, &(0x7f0000000340)={0x0, 0x8, 0x8, 0x0, 0x0, "c201000800e60e00"})
r3 = dup3(r2, r1, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000003200)=ANY=[@ANYBLOB="850000002a00000025000000000000009500000000000000aecd48d6494d614dcc6fab5335ec06000000000000002176dd2963038e1d69ba7ea94c500dc4ef2fad96ed406f3cc2b0da31fa21caf5adcf920569c00cc1199684fa7c937f6d9ea2cfb0e60436e05425cc4686b066707de94a4f4d5fc79c1faca0f9d9924be41a9169bdfaf16da915b2e249ee1c6eee84309e7a23c19a39484809539fca4e0b6fab1aa7d55545a34effa077faa55c59e88254f54077f799bf168301000000bf2255d6a0244d35b213bda84cc172afd8cc2e47a7d8b85a5e3d77ac463920e231b7ae0da8616d2b79db2e3d5986c82b5aa94e539b204d58f91f5da6c025d060ab186d94af98af1da2b5952eb15855933a212304e03564f7f7a35dfc72c81256a55a25f8fe3b28d7e53c78fbfe5ab0255f347160ec83070000020000004015cf05003f6cded6a2f8550b973b81a484ebad04859d928365a7ea3fab8b4b380a00d72b0000000000001cf555c14d56b51c2298237bebfc08e0d5976a942b846970cfd98b9d4139f1111f2cc5e46ac1c10a9b030074bfbcd4b09012175484135f0e519f0b1e4aaa026d02000000a3ff4f8a4cf796b07a6ff61c5d52417fd703f7f14d8b78ac02ca3cdf6a662d8bc9c89c9120072a5d00dcdd8595356c9b2492aaf1264d4ef4a410c882834867bcd2b6e559d17879570c9ad943e392955f4f9ea13201bafe4f0f6ea5080000000cdcd2063d11dd665647223c78a996810000000571cbb17d9f37282462f0e9c147c0d497c61433c6ccc35601eef97ee611be8c97f4151ffdf6f7820549cda6cb799c6e924966a7f90bf8fd1e75ee76bd72346cfbb5567e54d3504723177d356c4604b7a492ecec37e83efceefd7ca2533659edc8be05cc85451c6a14507434eb54b6f43caea5c4bf690441974b155f5adc681a03c0bbb8358856175e2ce8b0cbbbe3c033e54ffca9ec9a7a3755e0f209150a07682c4e14e3a83558df6f3fc97f1730a136bdee07e98cb984b2e2304a1b63afefdb636e56bbaae4e62136574bc6371a0bb2be1a962aae9c1258da6ef590e1d85ea9e12b3025f43e7e08ccffc5064dea4c39cf4b98e1fc6efb5978f51e16b678eca0b658a56008948e561a9845e4ff29e2bdb1d0b923b272341c5e093fd66a294351c5356c1d06c92cf8ce3c7c56cd31121624d74517fd3666277f670e812b28e2f30d035cee5d0e77a3c7220000000000000005a474816bc59d2e2a00092419304b338a987e9d3044d856ce24f370030be3b5f79f034b8d3ebce68663ef5af469abe75b314fae31a0445859a5ece8fb11a4ee8e46354c9c3a041e12289ee34463aaf28345bd168b4177ce37ed85464c31679053e7f9d04bb5cb51da0b7958989fd70f241262d0af3246eb4fc4bda345360200000001fbddeacd3adaa4d2ee6fe0d072ccd44341f7fd53df588e791ee8b489a7c9efe3625a9d971b5997485d6a063dc6f7359e2eccc2fb39d401adf59d44e58eb1c60b3475be31a9b7cf42b6402312d2725b8d9fa700a86407e79ae29d2c117ca65fc86c2dce97aa03279a66ec87122219b0f796ab92b1adecae50fdb40f7f02f750d6c977a1919f9f69a6cfefdf879d447df53f3b9b70d10355b0030000000000ea8809820000553d18a6cc50feeb7bfad9b7be3283b6450d264e7712d2f1d7004548b19162cef04d18d4f5987baab97a9bfbd8f185b5631820420bf5b6522c0e21c882c66f55e550fafa4cedd763ada3104f25ffb6d95e07de02205fca4f18a2eb5b63e45d5d80fe527340935aa3c0b4f3f45bfff2418a18217747ae442e31560e5b741445ea2a1acee2a81425ef1b71c1d2a0a765d20b30f87af976a46f9a9a1ac7dea1ea6845f9aa6623920dacc107f532348cc21164efe794874eac73381e6f523d9c8c21578fe3245097c280abe51427b9f6cd72b51b7689969c72fb632d1c072492d9da6d0252803c66730cd5eac907f09b9695906313f88735fce513974a24eee239baa91322608c6fc01e1b9e16587bb5f721303e6b89000000fa08ad0731c4b839688b22c4da2a6bc4cf45dbeea042f9b33393f85a0417854d221a2d5f96bc64647f15daa2ba79cd0f4254ed55217912ef84bd2927df82fc061aef2920c49b2a90886da75561173fa186cb7ee86dd4285c4721eb428c953296ac2f5d825da54dbef07c1b349b4901e093d13e6b9a0000009b5b22e887bc061d40bcaf0aa18623fd9b7179ccc692baffffffff5c4decf9d080a8ac7e82d4cde1267aa64b2a94fd87a009e6742c2ddc3a9d7eccbb1831b1fa218277c2814a91cab7cb59c697166d6f1bb1a360470000000000000000000000000000000000000000000000000000f9f9b4ce7e871f507084c8c88e0652decbe579b042d84ea94597dd1059620a050f69ea03b99b4e19d35f4a3b54e96ae2172effecec80f6baa4bf69a6ebf53928867d596987024952b698d4a01c08aca45ea8727be6c8bc8fdcdff1917db98f152625b8465bc46dbe9762d1183ec79f4ab393541a6d9cabc4de71c5a65d228e6db483cca06858dc6727c7a2322c9580d9afc33f6fcf87518ecca6dd027cb995f1eb4e98e4b500b5843d4ee1d28831707923f000"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x3d)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r4)
read$rfkill(r3, &(0x7f00000002c0), 0x8)
read$watch_queue(r3, &(0x7f0000000e00)=""/4096, 0x1000)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000180))

261.897928ms ago: executing program 3 (id=6580):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x10001}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='attr/fscreate\x00')
writev(r1, &(0x7f0000000480)=[{&(0x7f0000000580)="1789a99126094f970bcbbca6b4ec62ac82a4366d159ce37a990106dfb2a011167db62be1642e88b9584ba24f4e46ca7e6757b12ac345895d2efd73055ecae1802ba9215b3388fe177341dccde02c1b5e381159d6ef704fb967652ed6175528c9be9bc8bdd076a69853edc400857675936decd7de8971cba7fb63a2bf72782ce1653858e210a0aceb822039a842ab76efb1496a817a01b1447b03431c1b58ecc4490a9afa38ce152100b8f87ba66d3409cd9ddf7d06cc755f9b49a6472288c22489b32a7c9353444f6fd07032a2eeaf97f208eb7c42", 0xd5}, {&(0x7f0000000740)="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", 0x170}, {&(0x7f0000000680)="0ec0668ecefe2008d36844e8cd6675067471a44bb4d24cea77e4bcd77ec2441681e81ad01fb7efc590b90015c3ecedcbed09048b2eb9f7c732f9cc76d0a5025bf82f995a000000", 0x47}], 0x3)
socket$packet(0x11, 0x0, 0x300)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0xc0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x18, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = perf_event_open(&(0x7f00000003c0)={0x4, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0x0, 0xffffffffffffffff, 0x5)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007bdfd57ab6789d719471978fe521168af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r3, @ANYRES64=r0], &(0x7f0000000200)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcf}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r4)
r5 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IMADDTIMER(r5, 0x80044940, &(0x7f0000000080)=0x14)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x6}]})
syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(r6, 0x0, 0x0)
r7 = socket$phonet_pipe(0x23, 0x5, 0x2)
dup3(r7, r5, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, 0x0, 0x0)
r8 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
connect$x25(r8, &(0x7f0000000200)={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x2, 0x2}}, 0x12)
read$rfkill(r1, 0x0, 0x0)
ioctl$sock_bt_hci(r1, 0x400448e0, &(0x7f0000000000)="4e4f15e0716bbf3f03fceb3844c93215a8084d1c1f34424d0a0a89443646d7dca76be3c0cd196366084b9fe0d176d2ec62")
socket$phonet_pipe(0x23, 0x5, 0x2)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x2)

201.460473ms ago: executing program 2 (id=6581):
add_key$fscrypt_v1(&(0x7f00000000c0), &(0x7f0000000240)={'fscrypt:', @desc1}, &(0x7f00000002c0)={0x0, "615a091a55a8c9a640115d99d981b3886420589c6685d4982a83b71b906769e737201ac6b7a7804454156569cbf3a5be811debc957b5831b89b59d703e748c7c", 0x10}, 0x48, 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @dev}}}, 0x108)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x14000, &(0x7f0000000100), 0x1, 0x50d, &(0x7f0000000a00)="$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")
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r2, 0x4b49, 0xfffffffffffffffc)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_MSG_GETRULE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, 0x7, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x2c}}, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
unshare(0x0)
bpf$MAP_DELETE_ELEM(0x2, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000140)=0x1, 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, @private2, 0x34b6bc3d}, 0x1c)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f000000e0c0), 0x10010)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x11a, 0x1, &(0x7f0000000000)=@ccm_128={{0x304}, "cdedbe27d7c9678a", "ed86a155b66f481507086fe637736e4c", "a2dc23ff", "00000000000400"}, 0x28)
write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x118)

177.342326ms ago: executing program 4 (id=6582):
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f00000000c0)='./bus\x00', 0xa08886, &(0x7f0000000040)=ANY=[], 0x3, 0x2b9, &(0x7f0000000ac0)="$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")
ioctl$F2FS_IOC_WRITE_CHECKPOINT(r0, 0xf507, 0x0)
r1 = open(&(0x7f0000000100)='./file0\x00', 0x60c2, 0x0)
r2 = open$dir(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)
r3 = open(&(0x7f0000000040)='./file0\x00', 0x141042, 0x0)
write$P9_RREADLINK(r3, &(0x7f0000000300), 0x16)
r4 = dup3(r3, r1, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f00000001c0)={'syztnl1\x00', &(0x7f0000000340)={'ip6tnl0\x00', <r5=>0x0, 0x4, 0xf6, 0x2, 0x1, 0x0, @remote, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x7, 0x0, 0x6}})
ioctl$sock_inet6_SIOCDELRT(r4, 0x890c, &(0x7f00000006c0)={@local, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @dev={0xfe, 0x80, '\x00', 0x1e}, 0x2, 0x0, 0x0, 0x100, 0x7, 0x200000, r5})
sendfile(r4, r2, 0x0, 0x800008038)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000180), 0xffffffffffffffff)
sendfile(r1, r2, 0x0, 0xef84)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_freezer_state(r6, &(0x7f00000000c0), 0x2, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001040)='blkio.bfq.time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r8, &(0x7f00000000c0), 0x10f)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000005, 0x10012, r8, 0x0)
write$cgroup_freezer_state(r7, &(0x7f0000000280)='FREEZING\x00', 0x9)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000a40)=ANY=[@ANYBLOB="9feb010018000000000000002400000024000000020000000000000000000004000000030000000000000004f5ff0000000000000000000d020000000000d1aebb675b744d29a2f24e98cdad8f9d1d523166faae048293a54595ad8952dea2e4a10fb16d36103cf6f21b1899bba7f5c30209e49746c2d197ac91e1ee7de81a8397656ef33f421d7a5927218aae3186a1f9ba6139542c7b0c616c"], 0xffffffffffffffff, 0x3e, 0xb1, 0x2}, 0x20)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r9 = socket(0x25, 0x1, 0x0)
setsockopt$packet_int(r9, 0x107, 0x0, 0x0, 0x4)

165.475856ms ago: executing program 2 (id=6583):
perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$pidfd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$link(0x9, r0, 0xfffffffffffffffb)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x220a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000003a80)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x5}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x50, 0x3, 0xa, 0x201, 0x0, 0x0, {0x5}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_COUNTERS={0x10, 0x8, 0x0, 0x1, [@NFTA_COUNTER_BYTES={0xc}]}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}]}], {0x14}}, 0x98}}, 0x0)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket(0x0, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$HCIINQUIRY(0xffffffffffffffff, 0x800448d4, &(0x7f0000000080)={0x0, 0x200, "00fa00"})
bind$inet(r2, &(0x7f0000000040)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r2, &(0x7f0000000080)={0x2, 0x4e21, @empty}, 0x10)
readv(r2, &(0x7f00000007c0)=[{&(0x7f0000000440)=""/217, 0xd9}], 0x1)
sendto(r2, &(0x7f00000002c0)='%', 0x300000, 0x0, 0x0, 0x0)

162.127717ms ago: executing program 0 (id=6584):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000000), 0xffffffffffffffff)
bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000340))
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x0, 0x5, 0x2, 0x1000}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdb4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe15, 0x5, 0x0, 0x0, 0x0, 0x0, 0x8, 0xffffffffffffff4b, 0x0}}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19}, 0x48)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000100))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x16, 0xc, &(0x7f0000000300)=ANY=[@ANYRES16, @ANYRESOCT, @ANYRESDEC], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x90)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000040), &(0x7f0000000380)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r0}, 0x10)
ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_MM_AUXV(0x23, 0xc, 0x0, 0xd)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000940)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000003c000000020a010400000000000000000700000508000a40000000000900010073797a31000000000900010073797a300000000008000240000000009c0000000c0a01010000000000000000070000000900020073797a31000000000900010073797a3000000000700003"], 0x120}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYRES16=0x0], 0x0, 0xfffffffe, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, 0x2}, 0x46764236a7c0ad06)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file0\x00', 0x40, &(0x7f00000005c0), 0x1, 0x583, &(0x7f0000000bc0)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000200)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000240)=ANY=[], 0x835, 0x0)

66.976784ms ago: executing program 2 (id=6585):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
ioctl$EXT4_IOC_MIGRATE(r1, 0xff04)
r2 = syz_open_procfs(0x0, &(0x7f0000000600)='fd/4\x00')
ioctl$EXT4_IOC_GROUP_EXTEND(r2, 0x40305839, &(0x7f0000000240))
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, 0xffffffffffffffff)
setsockopt$packet_rx_ring(r3, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x0, 0x0, 0xffffffff}, 0x1c)
syz_emit_ethernet(0x1327, &(0x7f0000000c40)={@broadcast, @empty, @void, {@ipv6={0x86dd, @icmpv6={0x4, 0x6, "81c82d", 0x12f1, 0x3a, 0xff, @local, @loopback, {[@routing={0x1, 0x8, 0x1, 0x3, 0x0, [@local, @ipv4={'\x00', '\xff\xff', @remote}, @private1, @mcast2]}, @hopopts={0x3c, 0x6, '\x00', [@pad1, @calipso={0x7, 0x28, {0x1, 0x8, 0x7, 0x8, [0x6, 0x0, 0x6, 0x8]}}, @ra={0x5, 0x2, 0x4}]}, @fragment={0x5, 0x0, 0x6, 0x1, 0x0, 0x2, 0x68}, @hopopts={0x29, 0x8, '\x00', [@padn={0x1, 0x1, [0x0]}, @hao={0xc9, 0x10, @remote}, @generic={0x9, 0x1e, "0f4063cc997c5c9b9cbe89bf237cb1b37560cb56d06d8bdae9457d80e3bb"}, @enc_lim={0x4, 0x1, 0x1}, @jumbo={0xc2, 0x4, 0x80000000}, @ra={0x5, 0x2, 0xa2e}, @pad1]}], @pkt_toobig={0x2, 0x0, 0x0, 0x2, {0xb, 0x6, "e1de99", 0x6, 0x0, 0x0, @remote, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}, [@routing={0xb5, 0x6, 0x1, 0x2, 0x0, [@private1, @dev={0xfe, 0x80, '\x00', 0x2f}, @remote]}, @dstopts={0x67, 0x0, '\x00', [@pad1]}, @dstopts={0x67, 0x204, '\x00', [@generic={0x5, 0x1000, "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"}, @pad1, @hao={0xc9, 0x10, @ipv4={'\x00', '\xff\xff', @loopback}}, @jumbo={0xc2, 0x4, 0x6}, @pad1, @jumbo={0xc2, 0x4, 0x2666}]}, @srh={0x2f, 0x2, 0x4, 0x1, 0xe8, 0x0, 0x6, [@private0]}, @dstopts={0x3c, 0x3, '\x00', [@hao={0xc9, 0x10, @local}, @ra={0x5, 0x2, 0xffff}, @enc_lim={0x4, 0x1, 0x81}, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}]}, @fragment={0x5e, 0x0, 0x81, 0x1, 0x0, 0x2, 0x67}, @srh={0x3a, 0x14, 0x4, 0xa, 0x0, 0x3f964b6924e78012, 0x41bb, [@local, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @mcast2, @private2={0xfc, 0x2, '\x00', 0x1}, @private2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev={0xfe, 0x80, '\x00', 0x23}, @private2={0xfc, 0x2, '\x00', 0x1}]}, @fragment={0x4, 0x0, 0x1, 0x1, 0x0, 0x6, 0x68}, @dstopts={0x88, 0xb, '\x00', [@calipso={0x7, 0x40, {0x0, 0xe, 0xfe, 0x3, [0x0, 0x4, 0x1ff, 0x2, 0x7, 0x7, 0x1]}}, @calipso={0x7, 0x10, {0x0, 0x2, 0x3, 0x5, [0x7fffffff]}}, @pad1, @ra={0x5, 0x2, 0x81}, @padn={0x1, 0x2, [0x0, 0x0]}]}], "093cf3be120fb72750"}}}}}}}, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x3, &(0x7f0000000000)=0x7, 0x4)

39.760596ms ago: executing program 2 (id=6586):
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x0)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x40047451, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, 0x0)
ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000000000070200a9cdffffffb703000008000000b7040000010021008500000015000000180100002020782500000000002020207b1af8ff00000000bfa1000000000000070100e6cfffffffb702000008000000b7030000000000008500000006000000"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0857f9f582f0300000000000000", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

27.673998ms ago: executing program 2 (id=6587):
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r2, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8) (async)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r2, 0x84, 0x17, &(0x7f0000000400)=ANY=[@ANYBLOB="15"], 0x9)
close_range(r1, 0xffffffffffffffff, 0x0) (async)
r3 = socket(0x10, 0x2, 0x0)
recvfrom$x25(r0, &(0x7f0000000440)=""/165, 0xa5, 0x40012000, &(0x7f0000000200)={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x3}}, 0x12) (async)
unshare(0x480) (async)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000040), &(0x7f0000cab000)=0x7) (async)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a84000000090a01030000000000000000000000003c0011800b0001006e756d67656e00002c00028008000a400000000008000f4000000000080005400000001808000340000000080900010073797a300000000008a10040ffffff00140000001100010000000000000000000000000a"], 0xac}}, 0x0) (async)
set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9) (async)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r5, &(0x7f0000000080), 0x1c) (async)
setsockopt$inet6_tcp_TCP_ULP(r5, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r5, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4) (async)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r5, 0x6, 0x1d, &(0x7f0000000340), 0x14)
write$binfmt_script(r5, &(0x7f00000000c0)={'#! ', './file0'}, 0xb) (async)
setsockopt$inet6_tcp_TLS_TX(r5, 0x11a, 0x2, &(0x7f0000000500)=@gcm_256={{0x303}, "2a4001011f891d5b", "11682d84dd05bb63ae661f051e1e79ceafeaa60a5bd1dc83db142ade2bd907fd", "fd6ed24e", "d4e9e1c90d89691c"}, 0x38) (async)
sendmsg$IPSET_CMD_TEST(r3, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000180)={&(0x7f0000000800)={0x120, 0xb, 0x6, 0x101, 0x0, 0x0, {0xa, 0x0, 0x5}, [@IPSET_ATTR_ADT={0x14, 0x8, 0x0, 0x1, [{0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_BYTES={0xc, 0x18, 0x1, 0x0, 0x8}}]}, @IPSET_ATTR_DATA={0x6c, 0x7, 0x0, 0x1, [@IPSET_ATTR_BYTES={0xc, 0x18, 0x1, 0x0, 0x6}, @IPSET_ATTR_COMMENT={0x7, 0x1a, '#\\\x00'}, @IPSET_ATTR_ETHER={0xa, 0x11, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0xb6}, @IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x80000001}, @IPSET_ATTR_IP2_TO={0x18, 0x16, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}}, @IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}}}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0xf5}]}, @IPSET_ATTR_ADT={0x84, 0x8, 0x0, 0x1, [{0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_BYTES={0xc}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_BYTES={0xc, 0x18, 0x1, 0x0, 0x514}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0xfff}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0xffff}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_BYTES={0xc, 0x18, 0x1, 0x0, 0xaf28}}, {0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP_TO={0x18, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @private2}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_COMMENT={0x6, 0x1a, '\xaa\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAME={0x9, 0x12, 'syz2\x00'}}]}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x10001}]}, 0x120}, 0x1, 0x0, 0x0, 0x4008000}, 0x0)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x47, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
socket$phonet_pipe(0x23, 0x5, 0x2) (async)
getsockopt$PNPIPE_HANDLE(0xffffffffffffffff, 0x113, 0x2, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='./file0\x00', 0x802053, 0x0, 0xfc, 0x0, &(0x7f00000000c0))
r6 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000300)={'bond0\x00', <r7=>0x0})
bind$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @link_local}, 0x14) (async)
socket$nl_route(0x10, 0x3, 0x0)

0s ago: executing program 2 (id=6588):
setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, 0x0, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
openat$vsock(0xffffffffffffff9c, 0x0, 0x200000, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000006c0)={'syztnl1\x00', 0x0})
socket$key(0xf, 0x3, 0x2)
r1 = socket$nl_route(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
r2 = socket$inet6(0xa, 0x6, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000540)={'team_slave_1\x00', &(0x7f00000004c0)=@ethtool_rxfh_indir={0x39}})
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e20}, 0x1c)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x14, 0x4, 0x4, 0x22}, 0x48)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r3, 0x1, 0xf, &(0x7f0000000040)=0xe5, 0x4)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000001400)={0xffffffffffffffff, &(0x7f0000001940), &(0x7f0000001300)=@tcp=r3}, 0x20)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r1, 0x40189429, &(0x7f0000000480)={0x0, 0xffffffffffffffcd, 0x10001})
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000040)={'team0\x00', <r4=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000100)=@newlink={0x4c, 0x10, 0x403, 0x11, 0x0, {0x0, 0x0, 0x3, 0x0, 0x5a614}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @geneve={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GENEVE_PORT={0x6, 0x5, 0x4e23}]}}}, @IFLA_LINK={0x8}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x4c}}, 0x0)

kernel console output (not intermixed with test programs):

 ip=0x7f19f63a5f19 code=0x0
[  361.048339][   T29] audit: type=1326 audit(2000000445.959:5235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22794 comm="syz.2.6013" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7fb8865f19 code=0x0
[  361.201847][T22800] usb usb8: usbfs: process 22800 (syz.3.6014) did not claim interface 0 before use
[  361.458266][T22810] loop4: detected capacity change from 0 to 8192
[  361.570982][T22810]  loop4: p1 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p216 p217 p218 p219 p220 p221 p222 p223 p224 p225 p22
[  361.572074][T22810] loop4: p4 start 3388997632 is beyond EOD, truncated
[  361.678264][T22816] netlink: 'syz.4.6018': attribute type 2 has an invalid length.
[  361.686075][T22816] netlink: 'syz.4.6018': attribute type 8 has an invalid length.
[  361.774232][T22812] tmpfs: Bad value for 'mpol'
[  361.783616][    C0] eth0: bad gso: type: 1, size: 1408
[  361.939001][T22833] loop2: detected capacity change from 0 to 256
[  361.947749][T22832] loop4: detected capacity change from 0 to 128
[  361.952661][T22833] msdos: Unknown parameter 'ÿÿÿÿ'
[  362.119871][T22843] loop4: detected capacity change from 0 to 1024
[  362.134543][T22843] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  362.164028][T22454] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.187908][T22849] loop4: detected capacity change from 0 to 1024
[  362.195099][T22849] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  362.214859][T22849] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  362.234717][T22454] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.255392][T22853] loop4: detected capacity change from 0 to 512
[  362.263279][T22853] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #17: comm syz.4.6032: iget: bogus i_mode (0)
[  362.276261][T22853] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.6032: couldn't read orphan inode 17 (err -117)
[  362.289252][T22853] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  362.313963][T22853] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.6032: bg 0: block 7: invalid block bitmap
[  362.337915][T22454] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.413889][T22858] loop1: detected capacity change from 0 to 2048
[  362.466489][T22860] team0 (unregistering): Port device team_slave_0 removed
[  362.490825][T22860] team0 (unregistering): Port device team_slave_1 removed
[  362.510200][T22858] __nla_validate_parse: 1 callbacks suppressed
[  362.510215][T22858] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6034'.
[  362.577959][T22863] loop4: detected capacity change from 0 to 2048
[  362.595543][T22863] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  362.619800][   T28] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  362.636357][   T28] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  362.648586][   T28] EXT4-fs (loop4): This should not happen!! Data will be lost
[  362.648586][   T28] 
[  362.658693][   T28] EXT4-fs (loop4): Total free blocks count 0
[  362.664722][   T28] EXT4-fs (loop4): Free/Dirty block details
[  362.670650][   T28] EXT4-fs (loop4): free_blocks=2415919104
[  362.676406][   T28] EXT4-fs (loop4): dirty_blocks=16
[  362.681514][   T28] EXT4-fs (loop4): Block reservation details
[  362.687595][   T28] EXT4-fs (loop4): i_reserved_data_blocks=1
[  362.695606][T22454] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.757487][T22882] bridge_slave_0: left allmulticast mode
[  362.763214][T22882] bridge_slave_0: left promiscuous mode
[  362.768946][T22882] bridge0: port 1(bridge_slave_0) entered disabled state
[  362.875310][T22882] bridge_slave_1: left allmulticast mode
[  362.881129][T22882] bridge_slave_1: left promiscuous mode
[  362.886870][T22882] bridge0: port 2(bridge_slave_1) entered disabled state
[  362.911973][T22882] bond0: (slave bond_slave_0): Releasing backup interface
[  362.926898][T22882] bond0: (slave bond_slave_1): Releasing backup interface
[  362.950462][T22882] team0: Port device team_slave_0 removed
[  362.959460][T22882] team0: Port device team_slave_1 removed
[  362.966804][T22882] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  362.974341][T22882] batman_adv: batadv0: Removing interface: batadv_slave_0
[  362.981097][T22897] loop3: detected capacity change from 0 to 1024
[  362.988606][T22897] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  362.989494][T22882] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  363.005873][T22882] batman_adv: batadv0: Removing interface: batadv_slave_1
[  363.025442][T22886] tmpfs: Bad value for 'mpol'
[  363.072309][T22903] loop4: detected capacity change from 0 to 1024
[  363.074188][T22906] loop3: detected capacity change from 0 to 256
[  363.087360][T22907] loop2: detected capacity change from 0 to 1024
[  363.096455][T22903] EXT4-fs: quotafile must be on filesystem root
[  363.103614][T22906] msdos: Unknown parameter 'ÿÿÿÿ'
[  363.131451][T22903] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  363.152080][T22913] netlink: 36 bytes leftover after parsing attributes in process `syz.1.6052'.
[  363.180384][T22913] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=48 sclass=netlink_audit_socket pid=22913 comm=syz.1.6052
[  363.288852][T22919] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6054'.
[  363.335407][T22921] loop2: detected capacity change from 0 to 128
[  363.352862][T22921] ext4 filesystem being mounted at /281/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  363.394024][T22927] loop3: detected capacity change from 0 to 256
[  363.409795][T22918] hub 6-0:1.0: USB hub found
[  363.411303][T22927] msdos: Unknown parameter 'ÿÿÿÿ'
[  363.414689][T22918] hub 6-0:1.0: 8 ports detected
[  363.516230][T22931] loop4: detected capacity change from 0 to 1024
[  363.530749][T22931] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  363.544159][T22934] loop2: detected capacity change from 0 to 512
[  363.585347][T22934] ext4 filesystem being mounted at /282/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  363.609350][T22934] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6058'.
[  363.619023][T22945] loop4: detected capacity change from 0 to 1024
[  363.688039][T22951] loop2: detected capacity change from 0 to 1024
[  363.703024][T22951] EXT4-fs: quotafile must be on filesystem root
[  363.721585][T22951] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  363.756352][T22964] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6068'.
[  363.817200][T22964] hub 6-0:1.0: USB hub found
[  363.822148][T22964] hub 6-0:1.0: 8 ports detected
[  363.910143][T22987] netlink: 72 bytes leftover after parsing attributes in process `syz.2.6077'.
[  363.938101][T22989] loop2: detected capacity change from 0 to 1024
[  363.971322][T18832] EXT4-fs error (device loop2): ext4_readdir:260: inode #11: block 38: comm syz-executor: path /289/file1/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=327680, rec_len=0, size=1024 fake=0
[  363.974227][T22999] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  364.001323][T18832] EXT4-fs error (device loop2): ext4_empty_dir:3126: inode #11: block 38: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=327680, rec_len=0, size=1024 fake=0
[  364.029230][T18832] EXT4-fs error (device loop2): ext4_readdir:260: inode #11: block 38: comm syz-executor: path /289/file1/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=327680, rec_len=0, size=1024 fake=0
[  364.053731][T18832] EXT4-fs error (device loop2): ext4_empty_dir:3126: inode #11: block 38: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=327680, rec_len=0, size=1024 fake=0
[  364.077911][T22976] tmpfs: Bad value for 'mpol'
[  364.110450][T18832] EXT4-fs error (device loop2): ext4_readdir:260: inode #11: block 38: comm syz-executor: path /289/file1/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=327680, rec_len=0, size=1024 fake=0
[  364.153603][T23007] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6084'.
[  364.168657][T18832] EXT4-fs error (device loop2): ext4_empty_dir:3126: inode #11: block 38: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=327680, rec_len=0, size=1024 fake=0
[  364.193498][T18832] EXT4-fs error (device loop2): ext4_readdir:260: inode #11: block 38: comm syz-executor: path /289/file1/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=327680, rec_len=0, size=1024 fake=0
[  364.218201][T18832] EXT4-fs error (device loop2): ext4_empty_dir:3126: inode #11: block 38: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=327680, rec_len=0, size=1024 fake=0
[  364.263429][T23007] hub 6-0:1.0: USB hub found
[  364.272701][T23007] hub 6-0:1.0: 8 ports detected
[  364.335935][T18832] EXT4-fs error (device loop2): ext4_readdir:260: inode #11: block 38: comm syz-executor: path /289/file1/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=327680, rec_len=0, size=1024 fake=0
[  364.370026][T18832] EXT4-fs error (device loop2): ext4_empty_dir:3126: inode #11: block 38: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=327680, rec_len=0, size=1024 fake=0
[  364.408881][   T29] audit: type=1400 audit(2000000449.319:5236): avc:  denied  { create } for  pid=23013 comm="syz.0.6087" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  364.676149][T23026] FAULT_INJECTION: forcing a failure.
[  364.676149][T23026] name failslab, interval 1, probability 0, space 0, times 0
[  364.688926][T23026] CPU: 1 UID: 0 PID: 23026 Comm: syz.1.6090 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  364.699342][T23026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  364.709411][T23026] Call Trace:
[  364.712682][T23026]  <TASK>
[  364.715601][T23026]  dump_stack_lvl+0xf2/0x150
[  364.720181][T23026]  dump_stack+0x15/0x20
[  364.724321][T23026]  should_fail_ex+0x229/0x230
[  364.728992][T23026]  ? vm_area_dup+0x2c/0x130
[  364.733548][T23026]  should_failslab+0x8f/0xb0
[  364.738210][T23026]  kmem_cache_alloc_noprof+0x4c/0x290
[  364.743592][T23026]  vm_area_dup+0x2c/0x130
[  364.747913][T23026]  __split_vma+0xf7/0x690
[  364.752250][T23026]  do_vmi_align_munmap+0x1a5/0xa60
[  364.757359][T23026]  do_vmi_munmap+0x1fb/0x250
[  364.761947][T23026]  do_munmap+0x7a/0xb0
[  364.766145][T23026]  __se_sys_mremap+0xabc/0xf20
[  364.770900][T23026]  ? fput+0x13b/0x180
[  364.774945][T23026]  __x64_sys_mremap+0x67/0x80
[  364.779605][T23026]  x64_sys_call+0x29c8/0x2e00
[  364.784282][T23026]  do_syscall_64+0xc9/0x1c0
[  364.788842][T23026]  ? clear_bhb_loop+0x55/0xb0
[  364.793509][T23026]  ? clear_bhb_loop+0x55/0xb0
[  364.798239][T23026]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  364.804140][T23026] RIP: 0033:0x7fb0a6805f19
[  364.808540][T23026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  364.828186][T23026] RSP: 002b:00007fb0a5a87048 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  364.836585][T23026] RAX: ffffffffffffffda RBX: 00007fb0a6995f60 RCX: 00007fb0a6805f19
[  364.844544][T23026] RDX: 0000000000003000 RSI: 0000000000003000 RDI: 0000000020ff6000
[  364.852524][T23026] RBP: 00007fb0a5a870a0 R08: 0000000020ffd000 R09: 0000000000000000
[  364.860481][T23026] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  364.868480][T23026] R13: 000000000000000b R14: 00007fb0a6995f60 R15: 00007ffc25b543a8
[  364.876457][T23026]  </TASK>
[  364.930701][T23036] loop1: detected capacity change from 0 to 1024
[  364.939953][T23036] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  364.967091][   T28] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  365.019054][   T28] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  365.068277][   T28] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  365.085904][T23063] usb usb8: usbfs: process 23063 (syz.3.6100) did not claim interface 0 before use
[  365.110839][   T28] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  365.191656][T23051] chnl_net:caif_netlink_parms(): no params data found
[  365.210918][   T28] bridge_slave_1: left allmulticast mode
[  365.217465][   T28] bridge_slave_1: left promiscuous mode
[  365.223228][   T28] bridge0: port 2(bridge_slave_1) entered disabled state
[  365.231707][   T28] bridge_slave_0: left allmulticast mode
[  365.237403][   T28] bridge_slave_0: left promiscuous mode
[  365.243206][   T28] bridge0: port 1(bridge_slave_0) entered disabled state
[  365.276671][T23056] tmpfs: Bad value for 'mpol'
[  365.496981][   T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  365.517058][   T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  365.540192][   T28] bond0 (unregistering): Released all slaves
[  365.568657][   T28] bond1 (unregistering): Released all slaves
[  365.594366][   T28] bond2 (unregistering): Released all slaves
[  365.741524][T23051] bridge0: port 1(bridge_slave_0) entered blocking state
[  365.748713][T23051] bridge0: port 1(bridge_slave_0) entered disabled state
[  365.760859][T23051] bridge_slave_0: entered allmulticast mode
[  365.783080][T23051] bridge_slave_0: entered promiscuous mode
[  365.791883][   T28] hsr_slave_0: left promiscuous mode
[  365.799871][   T28] hsr_slave_1: left promiscuous mode
[  365.805707][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  365.813230][   T28] batman_adv: batadv0: Removing interface: batadv_slave_0
[  365.820881][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  365.828382][   T28] batman_adv: batadv0: Removing interface: batadv_slave_1
[  365.837039][   T28] veth1_macvtap: left promiscuous mode
[  365.842721][   T28] veth0_macvtap: left promiscuous mode
[  365.848422][   T28] veth1_vlan: left promiscuous mode
[  365.977815][T23051] bridge0: port 2(bridge_slave_1) entered blocking state
[  365.985010][T23051] bridge0: port 2(bridge_slave_1) entered disabled state
[  365.992214][T23051] bridge_slave_1: entered allmulticast mode
[  365.998998][T23051] bridge_slave_1: entered promiscuous mode
[  366.017447][T23051] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  366.024479][T23086] hub 6-0:1.0: USB hub found
[  366.032160][T23092] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6106'.
[  366.044949][T23051] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  366.050044][T23086] hub 6-0:1.0: 8 ports detected
[  366.079396][T23051] team0: Port device team_slave_0 added
[  366.091783][T23051] team0: Port device team_slave_1 added
[  366.098000][T23106] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6113'.
[  366.115283][    C0] eth0: bad gso: type: 1, size: 1408
[  366.121328][T23106] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=23106 comm=syz.1.6113
[  366.122006][T23051] batman_adv: batadv0: Adding interface: batadv_slave_0
[  366.140755][T23051] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  366.152083][   T29] audit: type=1400 audit(2000000451.059:5237): avc:  denied  { nlmsg_read } for  pid=23107 comm="syz.0.6114" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  366.166666][T23051] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  366.167486][T23051] batman_adv: batadv0: Adding interface: batadv_slave_1
[  366.204874][T23051] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  366.230885][T23051] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  366.249810][T23120] loop1: detected capacity change from 0 to 512
[  366.257017][T23120] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  366.268608][T23120] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[  366.277285][T23120] EXT4-fs (loop1): 1 truncate cleaned up
[  366.281785][T23051] hsr_slave_0: entered promiscuous mode
[  366.289664][T23051] hsr_slave_1: entered promiscuous mode
[  366.340789][   T29] audit: type=1326 audit(2000000451.249:5238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23128 comm="syz.1.6119" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb0a6805f19 code=0x0
[  366.392036][   T28] IPVS: stop unused estimator thread 0...
[  366.519324][T23123] tmpfs: Bad value for 'mpol'
[  366.592521][T23051] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  366.601710][T23051] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  366.610479][T23051] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  366.619683][T23051] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  366.637482][T23051] bridge0: port 2(bridge_slave_1) entered blocking state
[  366.644589][T23051] bridge0: port 2(bridge_slave_1) entered forwarding state
[  366.680817][T23051] 8021q: adding VLAN 0 to HW filter on device bond0
[  366.692989][T15507] bridge0: port 2(bridge_slave_1) entered disabled state
[  366.711796][T23051] 8021q: adding VLAN 0 to HW filter on device team0
[  366.726112][ T4552] bridge0: port 1(bridge_slave_0) entered blocking state
[  366.733251][ T4552] bridge0: port 1(bridge_slave_0) entered forwarding state
[  366.764871][T15507] bridge0: port 2(bridge_slave_1) entered blocking state
[  366.771937][T15507] bridge0: port 2(bridge_slave_1) entered forwarding state
[  366.789914][T23051] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  366.800613][T23051] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  366.857681][T23148] loop3: detected capacity change from 0 to 1024
[  366.861080][T23051] 8021q: adding VLAN 0 to HW filter on device batadv0
[  366.865073][T23148] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  366.940033][T23051] veth0_vlan: entered promiscuous mode
[  366.948280][T23051] veth1_vlan: entered promiscuous mode
[  366.967059][T23051] veth0_macvtap: entered promiscuous mode
[  366.969187][T23160] loop3: detected capacity change from 0 to 1024
[  366.979671][T23160] EXT4-fs: quotafile must be on filesystem root
[  366.981363][T23051] veth1_macvtap: entered promiscuous mode
[  367.030519][T23051] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  367.041134][T23051] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  367.051006][T23051] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  367.061462][T23051] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  367.071424][T23051] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  367.081955][T23051] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  367.091956][T23051] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  367.102457][T23051] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  367.112449][T23051] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  367.123032][T23051] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  367.134455][T23051] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  367.144936][T23051] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  367.158612][T23051] batman_adv: batadv0: Interface activated: batadv_slave_0
[  367.169481][T23051] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  367.179972][T23051] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  367.189910][T23051] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  367.200359][T23051] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  367.210197][T23051] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  367.220657][T23051] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  367.230548][T23051] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  367.241000][T23051] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  367.250904][T23051] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  367.261397][T23051] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  367.271271][T23051] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  367.281859][T23051] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  367.306585][T23051] batman_adv: batadv0: Interface activated: batadv_slave_1
[  367.317726][T23167] netlink: 'syz.3.6127': attribute type 1 has an invalid length.
[  367.350620][T23051] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  367.359389][T23051] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  367.368348][T23051] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  367.377136][T23051] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  367.450131][T23177] loop4: detected capacity change from 0 to 1024
[  367.480033][T23179] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6135'.
[  367.482739][   T29] audit: type=1400 audit(2000000452.389:5239): avc:  denied  { ioctl } for  pid=23178 comm="syz.1.6135" path="socket:[94788]" dev="sockfs" ino=94788 ioctlcmd=0x8940 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  367.491684][T23177] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  367.528223][T23179] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  367.537055][T23179] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  367.545793][T23179] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  367.554671][T23179] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  367.567520][T23179] vxlan0: entered allmulticast mode
[  367.575088][T23171] netlink: 'syz.0.6130': attribute type 2 has an invalid length.
[  367.582971][T23171] netlink: 'syz.0.6130': attribute type 8 has an invalid length.
[  367.590712][T23171] netlink: 132 bytes leftover after parsing attributes in process `syz.0.6130'.
[  367.591149][T23186] loop3: detected capacity change from 0 to 1024
[  367.606455][T23186] EXT4-fs: quotafile must be on filesystem root
[  367.647717][T23192] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6098'.
[  367.689614][T23206] usb usb8: usbfs: process 23206 (syz.0.6139) did not claim interface 0 before use
[  367.708246][T23192] hub 6-0:1.0: USB hub found
[  367.712960][T23192] hub 6-0:1.0: 8 ports detected
[  367.736103][   T29] audit: type=1326 audit(2000000452.649:5240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23214 comm="syz.1.6145" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb0a6805f19 code=0x0
[  367.764461][T23217] loop2: detected capacity change from 0 to 256
[  367.770939][T23217] msdos: Unknown parameter 'ÿÿÿÿ'
[  367.793326][T23220] loop2: detected capacity change from 0 to 1024
[  367.799893][T23220] EXT4-fs: quotafile must be on filesystem root
[  367.855915][T23229] loop2: detected capacity change from 0 to 1024
[  367.864566][T23229] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  367.876333][T23197] tmpfs: Bad value for 'mpol'
[  367.906747][T23234] bridge0: port 3(vlan2) entered blocking state
[  367.913196][T23234] bridge0: port 3(vlan2) entered disabled state
[  367.919758][T23234] vlan2: entered allmulticast mode
[  367.926948][T23234] vlan2: left allmulticast mode
[  368.010770][T23239] netlink: 'syz.2.6153': attribute type 1 has an invalid length.
[  368.018917][T23241] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6153'.
[  368.549161][T23249] loop4: detected capacity change from 0 to 2048
[  368.635431][    C0] eth0: bad gso: type: 1, size: 1408
[  368.641487][ T8780] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  368.665142][T23255] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6157'.
[  368.674336][ T8780] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  368.686593][ T8780] EXT4-fs (loop4): This should not happen!! Data will be lost
[  368.686593][ T8780] 
[  368.696273][ T8780] EXT4-fs (loop4): Total free blocks count 0
[  368.702293][ T8780] EXT4-fs (loop4): Free/Dirty block details
[  368.708259][ T8780] EXT4-fs (loop4): free_blocks=2415919104
[  368.714101][ T8780] EXT4-fs (loop4): dirty_blocks=16
[  368.719297][ T8780] EXT4-fs (loop4): Block reservation details
[  368.725285][ T8780] EXT4-fs (loop4): i_reserved_data_blocks=1
[  368.747199][T23259] loop3: detected capacity change from 0 to 1024
[  368.758436][T23262] loop4: detected capacity change from 0 to 256
[  368.769528][T23251] hub 6-0:1.0: USB hub found
[  368.774966][T23262] msdos: Unknown parameter 'ÿÿÿÿ'
[  368.777403][   T29] audit: type=1326 audit(2000000453.689:5241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23258 comm="syz.3.6160" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7eff829a5f19 code=0x0
[  368.787402][T23251] hub 6-0:1.0: 8 ports detected
[  368.816561][T23267] FAULT_INJECTION: forcing a failure.
[  368.816561][T23267] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  368.829641][T23267] CPU: 1 UID: 0 PID: 23267 Comm: syz.4.6162 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  368.840060][T23267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  368.850133][T23267] Call Trace:
[  368.853428][T23267]  <TASK>
[  368.856345][T23267]  dump_stack_lvl+0xf2/0x150
[  368.860937][T23267]  dump_stack+0x15/0x20
[  368.865128][T23267]  should_fail_ex+0x229/0x230
[  368.869831][T23267]  should_fail+0xb/0x10
[  368.874037][T23267]  should_fail_usercopy+0x1a/0x20
[  368.879057][T23267]  _copy_to_user+0x1e/0xa0
[  368.883514][T23267]  simple_read_from_buffer+0xa0/0x110
[  368.889014][T23267]  proc_fail_nth_read+0xfc/0x140
[  368.893956][T23267]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  368.899505][T23267]  vfs_read+0x1a2/0x6e0
[  368.903725][T23267]  ? __rcu_read_unlock+0x4e/0x70
[  368.908730][T23267]  ? __fget_files+0x1da/0x210
[  368.913395][T23267]  ksys_read+0xeb/0x1b0
[  368.917550][T23267]  __x64_sys_read+0x42/0x50
[  368.922070][T23267]  x64_sys_call+0x2a36/0x2e00
[  368.926783][T23267]  do_syscall_64+0xc9/0x1c0
[  368.931334][T23267]  ? clear_bhb_loop+0x55/0xb0
[  368.935998][T23267]  ? clear_bhb_loop+0x55/0xb0
[  368.940659][T23267]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  368.946584][T23267] RIP: 0033:0x7f4b814149fc
[  368.951068][T23267] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  368.970670][T23267] RSP: 002b:00007f4b80697040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  368.979122][T23267] RAX: ffffffffffffffda RBX: 00007f4b815a5f60 RCX: 00007f4b814149fc
[  368.987234][T23267] RDX: 000000000000000f RSI: 00007f4b806970b0 RDI: 0000000000000006
[  368.995317][T23267] RBP: 00007f4b806970a0 R08: 0000000000000000 R09: 0000000000000000
[  369.003274][T23267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  369.011231][T23267] R13: 000000000000000b R14: 00007f4b815a5f60 R15: 00007ffdbbdd69e8
[  369.019308][T23267]  </TASK>
[  369.080188][T23271] bridge0: port 3(vlan2) entered blocking state
[  369.082700][   T29] audit: type=1400 audit(2000000453.989:5242): avc:  denied  { tracepoint } for  pid=23273 comm="syz.2.6165" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  369.086583][T23271] bridge0: port 3(vlan2) entered disabled state
[  369.115572][T23271] vlan2: entered allmulticast mode
[  369.123244][T23271] vlan2: left allmulticast mode
[  369.160652][   T29] audit: type=1326 audit(2000000454.069:5243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23280 comm="syz.1.6167" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb0a6805f19 code=0x0
[  369.191217][T23282] 9pnet_fd: Insufficient options for proto=fd
[  369.241544][T23285] loop4: detected capacity change from 0 to 1024
[  369.335434][T23292] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6169'.
[  369.355893][T23276] tmpfs: Bad value for 'mpol'
[  369.414174][T23292] hub 6-0:1.0: USB hub found
[  369.424291][T23292] hub 6-0:1.0: 8 ports detected
[  369.556882][T23297] usb usb8: usbfs: process 23297 (syz.4.6170) did not claim interface 0 before use
[  369.607002][T23299] loop3: detected capacity change from 0 to 256
[  369.615135][T23299] msdos: Unknown parameter 'ÿÿÿÿ'
[  369.645457][T23303] loop3: detected capacity change from 0 to 1024
[  369.725953][T23307] loop3: detected capacity change from 0 to 1024
[  369.734549][T23307] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  369.751439][T23309] loop2: detected capacity change from 0 to 1764
[  369.773624][T23313] loop3: detected capacity change from 0 to 128
[  369.807270][ T8780] kworker/u8:60: attempt to access beyond end of device
[  369.807270][ T8780] loop3: rw=1, sector=129, nr_sectors = 912 limit=128
[  369.826560][T23317] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6178'.
[  369.845917][T23319] bridge0: port 1(vlan2) entered blocking state
[  369.852259][T23319] bridge0: port 1(vlan2) entered disabled state
[  369.858970][T23319] vlan2: entered allmulticast mode
[  369.864594][T23319] vlan2: left allmulticast mode
[  369.881732][T23317] hub 6-0:1.0: USB hub found
[  369.886519][T23317] hub 6-0:1.0: 8 ports detected
[  369.941549][T23323] loop2: detected capacity change from 0 to 8192
[  369.943745][T23325] loop3: detected capacity change from 0 to 2048
[  369.979352][T23323]  loop2: p1 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p216 p217 p218 p219 p220 p221 p222 p223 p224 p225 p22
[  369.988058][T23323] loop2: p4 start 3388997632 is beyond EOD, truncated
[  370.090081][   T28] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  370.125722][   T28] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  370.137964][   T28] EXT4-fs (loop3): This should not happen!! Data will be lost
[  370.137964][   T28] 
[  370.147695][   T28] EXT4-fs (loop3): Total free blocks count 0
[  370.153778][   T28] EXT4-fs (loop3): Free/Dirty block details
[  370.159743][   T28] EXT4-fs (loop3): free_blocks=2415919104
[  370.165552][   T28] EXT4-fs (loop3): dirty_blocks=16
[  370.170810][   T28] EXT4-fs (loop3): Block reservation details
[  370.176835][   T28] EXT4-fs (loop3): i_reserved_data_blocks=1
[  370.186220][T23337] netlink: 'syz.2.6180': attribute type 2 has an invalid length.
[  370.194019][T23337] netlink: 'syz.2.6180': attribute type 8 has an invalid length.
[  370.201804][T23337] netlink: 132 bytes leftover after parsing attributes in process `syz.2.6180'.
[  370.209401][T23339] loop1: detected capacity change from 0 to 4096
[  370.229093][T23343] loop3: detected capacity change from 0 to 256
[  370.244291][T23343] msdos: Unknown parameter 'ÿÿÿÿ'
[  370.264324][T23339] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6185'.
[  370.282115][T23348] loop3: detected capacity change from 0 to 128
[  370.343746][T23353] loop4: detected capacity change from 0 to 1024
[  370.369843][T23353] EXT4-fs mount: 37 callbacks suppressed
[  370.369859][T23353] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  370.444478][T23364] loop2: detected capacity change from 0 to 2048
[  370.452305][T23364] EXT4-fs (loop2): invalid inodes per group: 0
[  370.452305][T23364] 
[  370.490414][T22454] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  370.519049][T23369] loop4: detected capacity change from 0 to 2048
[  370.526881][   T29] audit: type=1326 audit(2000000455.439:5244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23371 comm="syz.2.6195" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f21e63f5f19 code=0x0
[  370.553943][   T29] audit: type=1400 audit(2000000455.469:5245): avc:  denied  { getopt } for  pid=23373 comm="syz.0.6196" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  370.577808][T23369] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  370.606106][ T3107] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  370.621075][ T3107] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  370.633405][ T3107] EXT4-fs (loop4): This should not happen!! Data will be lost
[  370.633405][ T3107] 
[  370.643071][ T3107] EXT4-fs (loop4): Total free blocks count 0
[  370.646104][T23358] tmpfs: Bad value for 'mpol'
[  370.649038][ T3107] EXT4-fs (loop4): Free/Dirty block details
[  370.649052][ T3107] EXT4-fs (loop4): free_blocks=2415919104
[  370.649066][ T3107] EXT4-fs (loop4): dirty_blocks=16
[  370.670592][ T3107] EXT4-fs (loop4): Block reservation details
[  370.676609][ T3107] EXT4-fs (loop4): i_reserved_data_blocks=1
[  370.685869][T22454] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  370.739730][T23390] loop4: detected capacity change from 0 to 8192
[  370.749130][T23391] usb usb8: usbfs: process 23391 (syz.0.6201) did not claim interface 0 before use
[  370.789401][T23390]  loop4: p1 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p216 p217 p218 p219 p220 p221 p222 p223 p224 p225 p22
[  370.790413][T23390] loop4: p4 start 3388997632 is beyond EOD, truncated
[  370.964320][T23392] netlink: 'syz.4.6199': attribute type 2 has an invalid length.
[  370.972081][T23392] netlink: 'syz.4.6199': attribute type 8 has an invalid length.
[  370.979962][T23392] netlink: 132 bytes leftover after parsing attributes in process `syz.4.6199'.
[  371.033496][T22222] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  371.124871][T23398] loop4: detected capacity change from 0 to 128
[  371.184411][T23403] loop4: detected capacity change from 0 to 512
[  371.191908][T23403] EXT4-fs error (device loop4): ext4_map_blocks:609: inode #2: block 3: comm syz.4.6205: lblock 0 mapped to illegal pblock 3 (length 1)
[  371.206786][T23403] EXT4-fs warning (device loop4): dx_probe:823: inode #2: lblock 0: comm syz.4.6205: error -117 reading directory block
[  371.221213][T23403] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  371.222091][T23406] netlink: 68 bytes leftover after parsing attributes in process `syz.3.6206'.
[  371.230189][T23403] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  371.255027][T23403] EXT4-fs error (device loop4): ext4_map_blocks:609: inode #2: block 3: comm syz.4.6205: lblock 0 mapped to illegal pblock 3 (length 1)
[  371.269354][T23403] EXT4-fs warning (device loop4): dx_probe:823: inode #2: lblock 0: comm syz.4.6205: error -117 reading directory block
[  371.281198][T23411] loop3: detected capacity change from 0 to 1024
[  371.283425][T23403] EXT4-fs error (device loop4): ext4_map_blocks:609: inode #2: block 3: comm syz.4.6205: lblock 0 mapped to illegal pblock 3 (length 1)
[  371.290829][T23411] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  371.302405][T23403] EXT4-fs warning (device loop4): dx_probe:823: inode #2: lblock 0: comm syz.4.6205: error -117 reading directory block
[  371.327885][T23403] EXT4-fs error (device loop4): ext4_map_blocks:609: inode #2: block 3: comm syz.4.6205: lblock 0 mapped to illegal pblock 3 (length 1)
[  371.345393][T23403] EXT4-fs warning (device loop4): dx_probe:823: inode #2: lblock 0: comm syz.4.6205: error -117 reading directory block
[  371.345820][T23411] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  371.364399][T23414] loop1: detected capacity change from 0 to 2048
[  371.389394][T19350] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  371.392408][T23403] EXT4-fs error (device loop4): ext4_map_blocks:609: inode #2: block 3: comm syz.4.6205: lblock 0 mapped to illegal pblock 3 (length 1)
[  371.399764][T23414] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  371.413445][T23403] EXT4-fs warning (device loop4): dx_probe:823: inode #2: lblock 0: comm syz.4.6205: error -117 reading directory block
[  371.441588][T23403] EXT4-fs error (device loop4): ext4_map_blocks:609: inode #2: block 3: comm syz.4.6205: lblock 0 mapped to illegal pblock 3 (length 1)
[  371.450281][T23423] loop3: detected capacity change from 0 to 512
[  371.464591][T23403] EXT4-fs warning (device loop4): dx_probe:823: inode #2: lblock 0: comm syz.4.6205: error -117 reading directory block
[  371.464740][T23418] loop2: detected capacity change from 0 to 128
[  371.480412][T23403] EXT4-fs error (device loop4): ext4_map_blocks:609: inode #2: block 3: comm syz.4.6205: lblock 0 mapped to illegal pblock 3 (length 1)
[  371.484007][T23418] ext4: Unknown parameter 'noacl'
[  371.499371][T23403] EXT4-fs warning (device loop4): dx_probe:823: inode #2: lblock 0: comm syz.4.6205: error -117 reading directory block
[  371.526268][T23423] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  371.548472][T23423] ext4 filesystem being mounted at /233/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  371.565072][   T29] audit: type=1404 audit(2000000456.469:5246): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  371.565904][T23403] EXT4-fs error (device loop4): ext4_map_blocks:609: inode #2: block 3: comm syz.4.6205: lblock 0 mapped to illegal pblock 3 (length 1)
[  371.580163][   T29] audit: type=1404 audit(2000000456.479:5247): enforcing=0 old_enforcing=1 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  371.609189][   T29] audit: type=1400 audit(2000000456.479:5248): avc:  denied  { read write } for  pid=23402 comm="syz.4.6205" name="loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  371.610715][T23403] EXT4-fs warning (device loop4): dx_probe:823: inode #2: lblock 0: comm syz.4.6205: error -117 reading directory block
[  371.636086][ T3107] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  371.661449][T23427] syz_tun: default FDB implementation only supports local addresses
[  371.666207][ T3107] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  371.681909][ T3107] EXT4-fs (loop1): This should not happen!! Data will be lost
[  371.681909][ T3107] 
[  371.691575][ T3107] EXT4-fs (loop1): Total free blocks count 0
[  371.697655][ T3107] EXT4-fs (loop1): Free/Dirty block details
[  371.703594][ T3107] EXT4-fs (loop1): free_blocks=2415919104
[  371.703661][T23190] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 255: padding at end of block bitmap is not set
[  371.709599][ T3107] EXT4-fs (loop1): dirty_blocks=16
[  371.728848][ T3107] EXT4-fs (loop1): Block reservation details
[  371.735013][ T3107] EXT4-fs (loop1): i_reserved_data_blocks=1
[  371.741459][T19350] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  371.741660][   T29] audit: type=1400 audit(2000000456.479:5249): avc:  denied  { open } for  pid=23402 comm="syz.4.6205" path="/dev/loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  371.757228][T23434] loop2: detected capacity change from 0 to 8192
[  371.774818][   T29] audit: type=1400 audit(2000000456.479:5250): avc:  denied  { write } for  pid=23402 comm="syz.4.6205" name="/" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  371.781597][T22454] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  371.802609][   T29] audit: type=1400 audit(2000000456.479:5251): avc:  denied  { add_name } for  pid=23402 comm="syz.4.6205" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  371.802631][   T29] audit: type=1400 audit(2000000456.479:5252): avc:  denied  { create } for  pid=23402 comm="syz.4.6205" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  371.802650][   T29] audit: type=1400 audit(2000000456.579:5253): avc:  denied  { unmount } for  pid=22454 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  371.802684][   T29] audit: type=1400 audit(2000000456.599:5254): avc:  denied  { prog_load } for  pid=23426 comm="syz.0.6212" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  371.802701][   T29] audit: type=1400 audit(2000000456.599:5255): avc:  denied  { bpf } for  pid=23426 comm="syz.0.6212" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  371.814028][T22222] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  371.898309][T23439] loop3: detected capacity change from 0 to 128
[  371.925788][T23441] netlink: 'syz.2.6213': attribute type 2 has an invalid length.
[  371.936441][T23441] netlink: 'syz.2.6213': attribute type 8 has an invalid length.
[  371.958411][T23446] loop1: detected capacity change from 0 to 1024
[  371.973920][T23434]  loop2: p1 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p216 p217 p218 p219 p220 p221 p222 p223 p224 p225 p22
[  371.978366][T23446] EXT4-fs: quotafile must be on filesystem root
[  371.992752][T23434] loop2: p4 start 3388997632 is beyond EOD, truncated
[  372.185638][T23462] usb usb8: usbfs: process 23462 (syz.0.6222) did not claim interface 0 before use
[  372.201380][T23436] tmpfs: Bad value for 'mpol'
[  372.710072][T23478] loop4: detected capacity change from 0 to 128
[  372.721804][T23480] loop1: detected capacity change from 0 to 1024
[  372.728675][T23480] EXT4-fs: quotafile must be on filesystem root
[  372.750668][T23482] loop1: detected capacity change from 0 to 512
[  372.774850][T23482] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  372.787665][T23482] ext4 filesystem being mounted at /73/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  372.801139][T23482] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #2: comm syz.1.6230: corrupted inode contents
[  372.813051][T23482] EXT4-fs error (device loop1): ext4_dirty_inode:6014: inode #2: comm syz.1.6230: mark_inode_dirty error
[  372.824882][T23482] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #2: comm syz.1.6230: corrupted inode contents
[  372.837077][T23482] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #2: comm syz.1.6230: mark_inode_dirty error
[  372.856279][T22222] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.884915][T23492] __nla_validate_parse: 2 callbacks suppressed
[  372.884928][T23492] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6233'.
[  372.905987][T23492] wireguard0: entered promiscuous mode
[  372.911488][T23492] wireguard0: entered allmulticast mode
[  372.958787][T23497] loop1: detected capacity change from 0 to 2048
[  372.976697][T23497] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  373.029085][   T28] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  373.045710][   T28] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  373.058146][   T28] EXT4-fs (loop1): This should not happen!! Data will be lost
[  373.058146][   T28] 
[  373.067951][   T28] EXT4-fs (loop1): Total free blocks count 0
[  373.073962][   T28] EXT4-fs (loop1): Free/Dirty block details
[  373.079853][   T28] EXT4-fs (loop1): free_blocks=2415919104
[  373.085608][   T28] EXT4-fs (loop1): dirty_blocks=16
[  373.090716][   T28] EXT4-fs (loop1): Block reservation details
[  373.096795][   T28] EXT4-fs (loop1): i_reserved_data_blocks=1
[  373.103729][T22222] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  373.178403][T23529] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  373.186211][T23529] team0: Port device macvlan2 added
[  373.218077][T23505] tmpfs: Bad value for 'mpol'
[  373.226018][T23531] usb usb8: usbfs: process 23531 (syz.0.6247) did not claim interface 0 before use
[  373.412353][T23536] Â: renamed from pim6reg1
[  373.662220][T23538] loop4: detected capacity change from 0 to 8192
[  373.698443][T23538]  loop4: p1 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p216 p217 p218 p219 p220 p221 p222 p223 p224 p225 p22
[  373.699686][T23538] loop4: p4 start 3388997632 is beyond EOD, truncated
[  373.889319][T23541] netlink: 'syz.4.6250': attribute type 2 has an invalid length.
[  373.897147][T23541] netlink: 'syz.4.6250': attribute type 8 has an invalid length.
[  373.905080][T23541] netlink: 132 bytes leftover after parsing attributes in process `syz.4.6250'.
[  373.921201][T23542] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  373.929610][T23542] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  374.002162][T23547] loop1: detected capacity change from 0 to 1024
[  374.009126][T23547] EXT4-fs: quotafile must be on filesystem root
[  374.074231][T23553] loop4: detected capacity change from 0 to 1024
[  374.086213][T23553] EXT4-fs: quotafile must be on filesystem root
[  374.095198][T23562] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6261'.
[  374.122203][T23567] loop4: detected capacity change from 0 to 1024
[  374.129144][T23567] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  374.162455][T23567] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  374.200739][T22454] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  374.232396][T23593] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6273'.
[  374.254490][T23595] loop4: detected capacity change from 0 to 1024
[  374.261265][T23595] EXT4-fs: quotafile must be on filesystem root
[  374.272878][T23596] usb usb8: usbfs: process 23596 (syz.1.6268) did not claim interface 0 before use
[  374.333567][T23609] loop2: detected capacity change from 0 to 1024
[  374.340781][T23609] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  374.351793][T23609] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  374.374060][T23051] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  374.386322][T23618] loop4: detected capacity change from 0 to 512
[  374.394179][T23618] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  374.404142][    C0] eth0: bad gso: type: 1, size: 1408
[  374.407079][T23618] EXT4-fs (loop4): 1 orphan inode deleted
[  374.415415][T23618] EXT4-fs (loop4): 1 truncate cleaned up
[  374.420611][T23623] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6286'.
[  374.421601][T23618] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  374.443996][T23618] FAULT_INJECTION: forcing a failure.
[  374.443996][T23618] name failslab, interval 1, probability 0, space 0, times 0
[  374.445100][T23626] loop2: detected capacity change from 0 to 1024
[  374.456828][T23618] CPU: 0 UID: 0 PID: 23618 Comm: syz.4.6285 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  374.463335][T23626] EXT4-fs: quotafile must be on filesystem root
[  374.473417][T23618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  374.473432][T23618] Call Trace:
[  374.473440][T23618]  <TASK>
[  374.473447][T23618]  dump_stack_lvl+0xf2/0x150
[  374.500578][T23618]  dump_stack+0x15/0x20
[  374.504745][T23618]  should_fail_ex+0x229/0x230
[  374.509497][T23618]  ? io_uring_alloc_task_context+0x4d/0x2d0
[  374.515434][T23618]  should_failslab+0x8f/0xb0
[  374.520043][T23618]  __kmalloc_cache_noprof+0x4b/0x2a0
[  374.521205][T23628] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6288'.
[  374.525323][T23618]  ? alloc_file_pseudo+0x106/0x140
[  374.539349][T23618]  io_uring_alloc_task_context+0x4d/0x2d0
[  374.545080][T23618]  ? __anon_inode_getfile+0x21c/0x260
[  374.550659][T23618]  __io_uring_add_tctx_node+0x1e0/0x2b0
[  374.556271][T23618]  io_uring_create+0x7fe/0x920
[  374.561015][T23618]  __se_sys_io_uring_setup+0x1d2/0x1e0
[  374.566538][T23618]  __x64_sys_io_uring_setup+0x31/0x40
[  374.571980][T23618]  x64_sys_call+0x173c/0x2e00
[  374.572017][T23618]  do_syscall_64+0xc9/0x1c0
[  374.572035][T23618]  ? clear_bhb_loop+0x55/0xb0
[  374.572095][T23618]  ? clear_bhb_loop+0x55/0xb0
[  374.572110][T23618]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  374.572209][T23618] RIP: 0033:0x7f4b81415f19
[  374.572223][T23618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  374.572238][T23618] RSP: 002b:00007f4b80696fd8 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[  374.572276][T23618] RAX: ffffffffffffffda RBX: 00007f4b815a5f60 RCX: 00007f4b81415f19
[  374.572288][T23618] RDX: 0000000020000280 RSI: 0000000020000140 RDI: 0000000000000110
[  374.572299][T23618] RBP: 0000000020000140 R08: 0000000000000000 R09: 0000000020000280
[  374.572363][T23618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  374.572374][T23618] R13: 0000000020000240 R14: 0000000000000110 R15: 0000000020000280
[  374.572387][T23618]  </TASK>
[  374.593973][T22454] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  374.696527][T23636] netlink: 'syz.4.6289': attribute type 10 has an invalid length.
[  374.713960][T23638] netlink: 40 bytes leftover after parsing attributes in process `syz.4.6290'.
[  374.764811][T23648] FAULT_INJECTION: forcing a failure.
[  374.764811][T23648] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  374.778162][T23648] CPU: 1 UID: 0 PID: 23648 Comm: syz.3.6294 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  374.788575][T23648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  374.798628][T23648] Call Trace:
[  374.801970][T23648]  <TASK>
[  374.804957][T23648]  dump_stack_lvl+0xf2/0x150
[  374.809561][T23648]  dump_stack+0x15/0x20
[  374.813707][T23648]  should_fail_ex+0x229/0x230
[  374.818381][T23648]  should_fail_alloc_page+0xfd/0x110
[  374.823660][T23648]  __alloc_pages_noprof+0x109/0x360
[  374.828905][T23648]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  374.834325][T23648]  vma_alloc_folio_noprof+0x182/0x2d0
[  374.839763][T23648]  handle_mm_fault+0xf13/0x28c0
[  374.844671][T23648]  exc_page_fault+0x3b9/0x650
[  374.849339][T23648]  asm_exc_page_fault+0x26/0x30
[  374.854271][T23648] RIP: 0033:0x7eff8286b523
[  374.858669][T23648] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  374.878322][T23648] RSP: 002b:00007eff81c264b0 EFLAGS: 00010206
[  374.884397][T23648] RAX: 0000000000002000 RBX: 00007eff81c26550 RCX: 00007eff79807000
[  374.892353][T23648] RDX: 00007eff81c266f0 RSI: 0000000000000003 RDI: 00007eff81c265f0
[  374.900308][T23648] RBP: 000000000000000c R08: 0000000000000009 R09: 00000000000001b3
[  374.908262][T23648] R10: 00000000000001b8 R11: 00007eff81c26550 R12: 0000000000000001
[  374.916218][T23648] R13: 00007eff82a25fa0 R14: 00000000000000ed R15: 00007eff81c265f0
[  374.924177][T23648]  </TASK>
[  374.927543][T23648] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  374.939162][T23648] loop3: detected capacity change from 0 to 512
[  374.950145][T23652] FAULT_INJECTION: forcing a failure.
[  374.950145][T23652] name failslab, interval 1, probability 0, space 0, times 0
[  374.956878][T23648] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  374.962951][T23652] CPU: 0 UID: 0 PID: 23652 Comm: syz.2.6295 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  374.976920][T23648] EXT4-fs (loop3): 1 orphan inode deleted
[  374.983104][T23652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  374.983117][T23652] Call Trace:
[  374.983125][T23652]  <TASK>
[  374.983131][T23652]  dump_stack_lvl+0xf2/0x150
[  374.983159][T23652]  dump_stack+0x15/0x20
[  374.983202][T23652]  should_fail_ex+0x229/0x230
[  374.988900][T23648] EXT4-fs (loop3): 1 truncate cleaned up
[  374.998923][T23652]  ? __kernfs_new_node+0x6a/0x380
[  374.998948][T23652]  should_failslab+0x8f/0xb0
[  375.002717][T23648] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  375.005112][T23652]  kmem_cache_alloc_noprof+0x4c/0x290
[  375.005141][T23652]  ? kstrdup+0x55/0x80
[  375.005156][T23652]  __kernfs_new_node+0x6a/0x380
[  375.005178][T23652]  ? make_kgid+0x115/0x310
[  375.065031][T23652]  ? net_ns_get_ownership+0xae/0xd0
[  375.070260][T23652]  ? __pfx_net_get_ownership+0x10/0x10
[  375.075778][T23652]  kernfs_create_dir_ns+0xc8/0x1b0
[  375.080891][T23652]  sysfs_create_dir_ns+0xd7/0x1e0
[  375.085975][T23652]  kobject_add_internal+0x49e/0x7a0
[  375.091157][T23652]  kobject_add+0xdc/0x160
[  375.095478][T23652]  ? kobject_get+0x99/0xd0
[  375.099884][T23652]  ? kobject_put+0x107/0x180
[  375.104464][T23652]  ? device_add+0x2fa/0x790
[  375.109019][T23652]  device_add+0x309/0x790
[  375.113332][T23652]  netdev_register_kobject+0x100/0x230
[  375.118830][T23652]  register_netdevice+0x910/0xe30
[  375.123856][T23652]  register_vlan_dev+0x222/0x470
[  375.128848][T23652]  vlan_newlink+0x2e3/0x320
[  375.133337][T23652]  ? __pfx_vlan_newlink+0x10/0x10
[  375.138367][T23652]  rtnl_newlink+0xeff/0x1690
[  375.143023][T23652]  ? security_capable+0x64/0x80
[  375.147853][T23652]  ? ns_capable+0x7d/0xb0
[  375.152172][T23652]  ? __pfx_rtnl_newlink+0x10/0x10
[  375.157177][T23652]  rtnetlink_rcv_msg+0x6aa/0x710
[  375.162129][T23652]  ? ref_tracker_free+0x3a5/0x410
[  375.167185][T23652]  ? __dev_queue_xmit+0x161/0x1fe0
[  375.172278][T23652]  netlink_rcv_skb+0x12c/0x230
[  375.177023][T23652]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  375.182467][T23652]  rtnetlink_rcv+0x1c/0x30
[  375.186907][T23652]  netlink_unicast+0x593/0x670
[  375.191695][T23652]  netlink_sendmsg+0x5cc/0x6e0
[  375.196441][T23652]  ? __pfx_netlink_sendmsg+0x10/0x10
[  375.201714][T23652]  __sock_sendmsg+0x140/0x180
[  375.206456][T23652]  ____sys_sendmsg+0x312/0x410
[  375.211284][T23652]  __sys_sendmsg+0x1e9/0x280
[  375.215929][T23652]  __x64_sys_sendmsg+0x46/0x50
[  375.220677][T23652]  x64_sys_call+0x26f8/0x2e00
[  375.225415][T23652]  do_syscall_64+0xc9/0x1c0
[  375.229898][T23652]  ? clear_bhb_loop+0x55/0xb0
[  375.234561][T23652]  ? clear_bhb_loop+0x55/0xb0
[  375.239217][T23652]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.245099][T23652] RIP: 0033:0x7f21e63f5f19
[  375.249495][T23652] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  375.269259][T23652] RSP: 002b:00007f21e5677048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  375.277689][T23652] RAX: ffffffffffffffda RBX: 00007f21e6585f60 RCX: 00007f21e63f5f19
[  375.285771][T23652] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000009
[  375.293720][T23652] RBP: 00007f21e56770a0 R08: 0000000000000000 R09: 0000000000000000
[  375.301671][T23652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  375.309669][T23652] R13: 000000000000000b R14: 00007f21e6585f60 R15: 00007ffc1a484378
[  375.317641][T23652]  </TASK>
[  375.320944][T23652] kobject: kobject_add_internal failed for vlan2 (error: -12 parent: net)
[  375.333825][T19350] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  375.355411][T23655] loop1: detected capacity change from 0 to 2048
[  375.367230][T23657] loop3: detected capacity change from 0 to 1024
[  375.386429][T23655] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  375.399796][T23657] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  375.428204][T23671] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6302'.
[  375.439426][ T3107] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  375.483071][ T3107] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  375.495345][ T3107] EXT4-fs (loop1): This should not happen!! Data will be lost
[  375.495345][ T3107] 
[  375.505100][ T3107] EXT4-fs (loop1): Total free blocks count 0
[  375.511146][ T3107] EXT4-fs (loop1): Free/Dirty block details
[  375.517049][ T3107] EXT4-fs (loop1): free_blocks=2415919104
[  375.522837][ T3107] EXT4-fs (loop1): dirty_blocks=16
[  375.527979][ T3107] EXT4-fs (loop1): Block reservation details
[  375.534142][ T3107] EXT4-fs (loop1): i_reserved_data_blocks=1
[  375.648235][T19350] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  375.676108][T23683] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6304'.
[  375.748909][T23682] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  375.771301][T22222] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  375.788828][T23686] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6307'.
[  375.857991][T23689] loop3: detected capacity change from 0 to 8192
[  375.890245][T23704] loop2: detected capacity change from 0 to 1024
[  375.899297][T23704] EXT4-fs: quotafile must be on filesystem root
[  375.913525][T23689]  loop3: p1 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p216 p217 p218 p219 p220 p221 p222 p223 p224 p225 p22
[  375.920556][T23689] loop3: p4 start 3388997632 is beyond EOD, truncated
[  376.036967][T23715] loop2: detected capacity change from 0 to 128
[  376.066552][T23718] netlink: 'syz.3.6306': attribute type 2 has an invalid length.
[  376.074362][T23718] netlink: 'syz.3.6306': attribute type 8 has an invalid length.
[  376.130797][T23726] loop1: detected capacity change from 0 to 1024
[  376.155244][T23726] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  376.261890][T22222] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  376.771672][   T29] kauditd_printk_skb: 170 callbacks suppressed
[  376.771711][   T29] audit: type=1400 audit(2000000461.679:5426): avc:  denied  { create } for  pid=23761 comm="syz.3.6332" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  376.797923][   T29] audit: type=1400 audit(2000000461.699:5427): avc:  denied  { bind } for  pid=23761 comm="syz.3.6332" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  376.819817][T23762] loop3: detected capacity change from 0 to 256
[  377.070100][   T29] audit: type=1400 audit(2000000461.979:5428): avc:  denied  { read } for  pid=23780 comm="syz.0.6338" path="socket:[95777]" dev="sockfs" ino=95777 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  377.105947][T23776] loop2: detected capacity change from 0 to 8192
[  377.138674][   T29] audit: type=1400 audit(2000000462.049:5429): avc:  denied  { write } for  pid=23790 comm="syz.3.6342" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  377.167125][T23776]  loop2: p1 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p216 p217 p218 p219 p220 p221 p222 p223 p224 p225 p22
[  377.169239][T23776] loop2: p4 start 3388997632 is beyond EOD, truncated
[  377.281712][T23798] usb usb8: usbfs: process 23798 (syz.4.6341) did not claim interface 0 before use
[  377.294161][   T29] audit: type=1326 audit(2000000462.209:5430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23796 comm="syz.0.6344" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f19f63a5f19 code=0x0
[  377.318340][T23799] netlink: 'syz.2.6335': attribute type 2 has an invalid length.
[  377.326139][T23799] netlink: 'syz.2.6335': attribute type 8 has an invalid length.
[  377.444361][    C0] vxcan0: j1939_tp_rxtimer: 0xffff88810f31da00: rx timeout, send abort
[  377.452695][    C0] vxcan0: j1939_tp_rxtimer: 0xffff88810f31c800: rx timeout, send abort
[  377.461077][    C0] vxcan0: j1939_xtp_rx_abort_one: 0xffff88810f31da00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  377.475495][    C0] vxcan0: j1939_xtp_rx_abort_one: 0xffff88810f31c800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  377.496241][   T29] audit: type=1400 audit(2000000462.409:5431): avc:  denied  { write } for  pid=23801 comm="syz.1.6346" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  377.513399][T23804] loop2: detected capacity change from 0 to 1024
[  377.529486][   T29] audit: type=1400 audit(2000000462.439:5432): avc:  denied  { create } for  pid=23805 comm="syz.1.6347" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  377.535890][T23804] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  377.651249][T23051] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  377.687611][T23817] loop2: detected capacity change from 0 to 1024
[  377.707054][T23817] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  377.727520][T23051] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  377.770052][    C0] eth0: bad gso: type: 1, size: 1408
[  377.790706][   T29] audit: type=1400 audit(2000000462.699:5433): avc:  denied  { write } for  pid=23827 comm="syz.1.6354" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  377.810697][   T29] audit: type=1400 audit(2000000462.699:5434): avc:  denied  { read } for  pid=23827 comm="syz.1.6354" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  377.844783][T23832] loop1: detected capacity change from 0 to 512
[  377.854215][T23832] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  377.866825][T23832] ext4 filesystem being mounted at /103/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  377.885770][   T29] audit: type=1400 audit(2000000462.799:5435): avc:  denied  { write } for  pid=23830 comm="syz.2.6355" path="socket:[96898]" dev="sockfs" ino=96898 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  377.918411][T23831] hub 6-0:1.0: USB hub found
[  377.923370][T23831] hub 6-0:1.0: 8 ports detected
[  377.974719][T23844] loop2: detected capacity change from 0 to 512
[  377.983978][T23844] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  377.996720][T23844] ext4 filesystem being mounted at /52/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  378.011221][T23844] netlink: 'syz.2.6358': attribute type 10 has an invalid length.
[  378.019327][T23844] __nla_validate_parse: 7 callbacks suppressed
[  378.019393][T23844] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6358'.
[  378.036309][T23844] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check.
[  378.051901][T23850] netlink: 40 bytes leftover after parsing attributes in process `syz.4.6360'.
[  378.068443][T23051] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  378.081223][T23852] loop4: detected capacity change from 0 to 128
[  378.091564][T23854] loop2: detected capacity change from 0 to 1024
[  378.105048][T23854] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  378.144310][T23051] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  378.161940][T23864] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6367'.
[  378.201145][T23867] loop2: detected capacity change from 0 to 2048
[  378.215990][T23867] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  378.240985][T23864] hub 6-0:1.0: USB hub found
[  378.249171][T23864] hub 6-0:1.0: 8 ports detected
[  378.311687][T23051] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  378.363299][T23875] usb usb8: usbfs: process 23875 (syz.3.6368) did not claim interface 0 before use
[  378.384598][T23876] usb usb8: usbfs: process 23876 (syz.2.6369) did not claim interface 0 before use
[  378.400231][T23878] FAULT_INJECTION: forcing a failure.
[  378.400231][T23878] name failslab, interval 1, probability 0, space 0, times 0
[  378.413248][T23878] CPU: 0 UID: 0 PID: 23878 Comm: syz.0.6370 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  378.423665][T23878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  378.433847][T23878] Call Trace:
[  378.437122][T23878]  <TASK>
[  378.440043][T23878]  dump_stack_lvl+0xf2/0x150
[  378.444623][T23878]  dump_stack+0x15/0x20
[  378.448774][T23878]  should_fail_ex+0x229/0x230
[  378.453489][T23878]  ? io_cqring_event_overflow+0x5a/0x300
[  378.459180][T23878]  should_failslab+0x8f/0xb0
[  378.463803][T23878]  __kmalloc_noprof+0xa5/0x370
[  378.468559][T23878]  io_cqring_event_overflow+0x5a/0x300
[  378.474024][T23878]  io_req_cqe_overflow+0x89/0xb0
[  378.478993][T23878]  __io_submit_flush_completions+0x34e/0xa00
[  378.485041][T23878]  io_submit_sqes+0xe91/0x1080
[  378.489791][T23878]  ? kstrtouint_from_user+0xb0/0xe0
[  378.494981][T23878]  __se_sys_io_uring_enter+0x1c6/0x15a0
[  378.500531][T23878]  ? __fget_files+0x1da/0x210
[  378.505191][T23878]  ? fput+0x13b/0x180
[  378.509223][T23878]  ? ksys_write+0x178/0x1b0
[  378.513773][T23878]  __x64_sys_io_uring_enter+0x78/0x90
[  378.519133][T23878]  x64_sys_call+0x26d0/0x2e00
[  378.523809][T23878]  do_syscall_64+0xc9/0x1c0
[  378.528367][T23878]  ? clear_bhb_loop+0x55/0xb0
[  378.533028][T23878]  ? clear_bhb_loop+0x55/0xb0
[  378.537684][T23878]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  378.543567][T23878] RIP: 0033:0x7f19f63a5f19
[  378.547959][T23878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  378.567698][T23878] RSP: 002b:00007f19f5627048 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  378.576130][T23878] RAX: ffffffffffffffda RBX: 00007f19f6535f60 RCX: 00007f19f63a5f19
[  378.584178][T23878] RDX: 0000000000000000 RSI: 0000000000006254 RDI: 0000000000000004
[  378.592130][T23878] RBP: 00007f19f56270a0 R08: 0000000000000000 R09: 0000000000000000
[  378.600085][T23878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  378.608036][T23878] R13: 000000000000000b R14: 00007f19f6535f60 R15: 00007ffc01d98f68
[  378.616044][T23878]  </TASK>
[  378.650533][T22222] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  378.685554][T23886] loop1: detected capacity change from 0 to 512
[  378.694324][T23886] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  378.707243][T23886] EXT4-fs (loop1): 1 orphan inode deleted
[  378.713075][T23886] EXT4-fs (loop1): 1 truncate cleaned up
[  378.720915][T23886] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  378.747633][T22222] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  378.771008][T23897] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6379'.
[  378.835912][T23897] hub 6-0:1.0: USB hub found
[  378.840813][T23897] hub 6-0:1.0: 8 ports detected
[  378.879621][T23904] blktrace: Concurrent blktraces are not allowed on loop1
[  378.971306][T23907] loop1: detected capacity change from 0 to 512
[  378.978196][T23907] EXT4-fs: Ignoring removed oldalloc option
[  378.984241][T23907] /dev/loop1: Can't open blockdev
[  379.089322][T23911] netlink: 'syz.1.6384': attribute type 2 has an invalid length.
[  379.097200][T23911] netlink: 'syz.1.6384': attribute type 8 has an invalid length.
[  379.104958][T23911] netlink: 132 bytes leftover after parsing attributes in process `syz.1.6384'.
[  379.189903][T23930] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6391'.
[  379.211872][T23932] FAULT_INJECTION: forcing a failure.
[  379.211872][T23932] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  379.225139][T23932] CPU: 1 UID: 0 PID: 23932 Comm: syz.1.6393 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  379.235747][T23932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  379.245805][T23932] Call Trace:
[  379.249083][T23932]  <TASK>
[  379.251994][T23932]  dump_stack_lvl+0xf2/0x150
[  379.256568][T23932]  dump_stack+0x15/0x20
[  379.260734][T23932]  should_fail_ex+0x229/0x230
[  379.265435][T23932]  should_fail+0xb/0x10
[  379.269581][T23932]  should_fail_usercopy+0x1a/0x20
[  379.274597][T23932]  _copy_from_user+0x1e/0xd0
[  379.279208][T23932]  copy_msghdr_from_user+0x54/0x2a0
[  379.284552][T23932]  do_recvmmsg+0x290/0x720
[  379.288972][T23932]  __x64_sys_recvmmsg+0xe2/0x170
[  379.293939][T23932]  x64_sys_call+0x1b8b/0x2e00
[  379.298610][T23932]  do_syscall_64+0xc9/0x1c0
[  379.303136][T23932]  ? clear_bhb_loop+0x55/0xb0
[  379.307801][T23932]  ? clear_bhb_loop+0x55/0xb0
[  379.312457][T23932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  379.318343][T23932] RIP: 0033:0x7fb0a6805f19
[  379.322742][T23932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  379.342348][T23932] RSP: 002b:00007fb0a5a87048 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  379.350850][T23932] RAX: ffffffffffffffda RBX: 00007fb0a6995f60 RCX: 00007fb0a6805f19
[  379.358871][T23932] RDX: 027148e3ad6f70ee RSI: 0000000020001840 RDI: 0000000000000003
[  379.366897][T23932] RBP: 00007fb0a5a870a0 R08: 0000000000000000 R09: 0000000000000000
[  379.374848][T23932] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  379.382880][T23932] R13: 000000000000000b R14: 00007fb0a6995f60 R15: 00007ffc25b543a8
[  379.390915][T23932]  </TASK>
[  379.433468][T23937] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  379.437511][T23941] FAULT_INJECTION: forcing a failure.
[  379.437511][T23941] name failslab, interval 1, probability 0, space 0, times 0
[  379.454517][T23941] CPU: 0 UID: 0 PID: 23941 Comm: syz.3.6395 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  379.465012][T23941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  379.475065][T23941] Call Trace:
[  379.478366][T23941]  <TASK>
[  379.481355][T23941]  dump_stack_lvl+0xf2/0x150
[  379.485945][T23941]  dump_stack+0x15/0x20
[  379.490154][T23941]  should_fail_ex+0x229/0x230
[  379.494842][T23941]  ? _sctp_make_chunk+0xba/0x210
[  379.499789][T23941]  should_failslab+0x8f/0xb0
[  379.504445][T23941]  kmem_cache_alloc_noprof+0x4c/0x290
[  379.507535][T23943] netlink: 'syz.1.6396': attribute type 2 has an invalid length.
[  379.509820][T23941]  _sctp_make_chunk+0xba/0x210
[  379.517712][T23943] netlink: 'syz.1.6396': attribute type 8 has an invalid length.
[  379.522349][T23941]  sctp_make_heartbeat+0x47/0x380
[  379.530070][T23943] netlink: 132 bytes leftover after parsing attributes in process `syz.1.6396'.
[  379.535041][T23941]  sctp_sf_do_prm_requestheartbeat+0x29/0x130
[  379.550151][T23941]  sctp_do_sm+0xb8/0x31a0
[  379.554514][T23941]  ? mntput_no_expire+0x70/0x3c0
[  379.559586][T23941]  sctp_primitive_REQUESTHEARTBEAT+0x75/0x90
[  379.565623][T23941]  sctp_apply_peer_addr_params+0x86/0xb20
[  379.571354][T23941]  sctp_setsockopt_peer_addr_params+0x50b/0x540
[  379.577635][T23941]  sctp_setsockopt+0x704/0xea0
[  379.582463][T23941]  sock_common_setsockopt+0x64/0x80
[  379.587668][T23941]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  379.593620][T23941]  __sys_setsockopt+0x1d8/0x250
[  379.598478][T23941]  __x64_sys_setsockopt+0x66/0x80
[  379.603499][T23941]  x64_sys_call+0x2a0e/0x2e00
[  379.608169][T23941]  do_syscall_64+0xc9/0x1c0
[  379.612676][T23941]  ? clear_bhb_loop+0x55/0xb0
[  379.617356][T23941]  ? clear_bhb_loop+0x55/0xb0
[  379.622201][T23941]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  379.628122][T23941] RIP: 0033:0x7eff829a5f19
[  379.632526][T23941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  379.652122][T23941] RSP: 002b:00007eff81c27048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  379.660782][T23941] RAX: ffffffffffffffda RBX: 00007eff82b35f60 RCX: 00007eff829a5f19
[  379.668852][T23941] RDX: 0000000000000009 RSI: 0000000000000084 RDI: 0000000000000003
[  379.676819][T23941] RBP: 00007eff81c270a0 R08: 000000000000009c R09: 0000000000000000
[  379.684775][T23941] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000001
[  379.692775][T23941] R13: 000000000000000b R14: 00007eff82b35f60 R15: 00007ffc23553ca8
[  379.700736][T23941]  </TASK>
[  379.761726][T23957] usb usb8: usbfs: process 23957 (syz.1.6398) did not claim interface 0 before use
[  379.774994][T23960] loop4: detected capacity change from 0 to 1024
[  379.795453][T23960] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  379.816244][    C0] eth0: bad gso: type: 1, size: 1408
[  379.822236][T22454] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  379.910079][T23980] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:0
[  380.004193][T23984] loop4: detected capacity change from 0 to 8192
[  380.038791][T23984]  loop4: p1 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p216 p217 p218 p219 p220 p221 p222 p223 p224 p225 p22
[  380.039659][T23984] loop4: p4 start 3388997632 is beyond EOD, truncated
[  380.233095][T23986] netlink: 'syz.4.6409': attribute type 2 has an invalid length.
[  380.240860][T23986] netlink: 'syz.4.6409': attribute type 8 has an invalid length.
[  380.248792][T23986] netlink: 132 bytes leftover after parsing attributes in process `syz.4.6409'.
[  380.372044][T23990] loop4: detected capacity change from 0 to 2048
[  380.433023][T23990]  loop4: p1 < > p3
[  380.437506][T23990] loop4: p3 size 134217728 extends beyond EOD, truncated
[  380.482623][T23990] support for cryptoloop has been removed.  Use dm-crypt instead.
[  380.592142][T23998] loop2: detected capacity change from 0 to 128
[  380.640624][T24001] loop4: detected capacity change from 0 to 1024
[  380.649233][T24001] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (24866!=20869)
[  380.659328][T24001] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  380.672701][T24001] EXT4-fs (loop4): invalid journal inode
[  380.691371][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  380.846488][T24021] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6421'.
[  380.864072][T24024] loop4: detected capacity change from 0 to 1024
[  380.876271][T24024] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  380.883718][T24029] FAULT_INJECTION: forcing a failure.
[  380.883718][T24029] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  380.901382][T24029] CPU: 0 UID: 0 PID: 24029 Comm: syz.0.6423 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  380.911788][T24029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  380.914433][T24021] hub 6-0:1.0: USB hub found
[  380.921835][T24029] Call Trace:
[  380.921848][T24029]  <TASK>
[  380.921855][T24029]  dump_stack_lvl+0xf2/0x150
[  380.921880][T24029]  dump_stack+0x15/0x20
[  380.926702][T24021] hub 6-0:1.0: 8 ports detected
[  380.929702][T24029]  should_fail_ex+0x229/0x230
[  380.950863][T24029]  should_fail+0xb/0x10
[  380.955065][T24029]  should_fail_usercopy+0x1a/0x20
[  380.960145][T24029]  _copy_from_user+0x1e/0xd0
[  380.964746][T24029]  usbdev_ioctl+0xabe/0x3e10
[  380.969337][T24029]  ? do_vfs_ioctl+0x99e/0x1560
[  380.974127][T24029]  ? selinux_file_ioctl+0x2f7/0x380
[  380.979461][T24029]  ? __fget_files+0x1da/0x210
[  380.984122][T24029]  ? __pfx_usbdev_ioctl+0x10/0x10
[  380.989138][T24029]  __se_sys_ioctl+0xd3/0x150
[  380.993725][T24029]  __x64_sys_ioctl+0x43/0x50
[  380.998368][T24029]  x64_sys_call+0x1688/0x2e00
[  381.003066][T24029]  do_syscall_64+0xc9/0x1c0
[  381.007681][T24029]  ? clear_bhb_loop+0x55/0xb0
[  381.012358][T24029]  ? clear_bhb_loop+0x55/0xb0
[  381.017018][T24029]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  381.023019][T24029] RIP: 0033:0x7f19f63a5f19
[  381.027509][T24029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  381.047171][T24029] RSP: 002b:00007f19f5627048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  381.055569][T24029] RAX: ffffffffffffffda RBX: 00007f19f6535f60 RCX: 00007f19f63a5f19
[  381.063605][T24029] RDX: 0000000020000140 RSI: 00000000c0185500 RDI: 0000000000000003
[  381.071622][T24029] RBP: 00007f19f56270a0 R08: 0000000000000000 R09: 0000000000000000
[  381.079578][T24029] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  381.087533][T24029] R13: 000000000000000b R14: 00007f19f6535f60 R15: 00007ffc01d98f68
[  381.095500][T24029]  </TASK>
[  381.101471][T22454] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  381.110705][T24032] usb usb1: check_ctrlrecip: process 24032 (syz.0.6425) requesting ep 01 but needs 81
[  381.120500][T24032] usb usb1: usbfs: process 24032 (syz.0.6425) did not claim interface 0 before use
[  381.152293][T24042] loop4: detected capacity change from 0 to 512
[  381.164228][T24042] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  381.176973][T24042] ext4 filesystem being mounted at /105/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  381.547621][T22454] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  381.625368][T24064] loop1: detected capacity change from 0 to 1024
[  381.642049][T24068] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.6432'.
[  381.645373][T24064] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  381.663618][T24064] ext4 filesystem being mounted at /122/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  381.678001][T24073] loop4: detected capacity change from 0 to 2048
[  381.682451][T24064] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #15: comm syz.1.6431: corrupted xattr block 128: invalid ea_ino
[  381.698357][T24064] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=15
[  381.707539][T24064] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #15: comm syz.1.6431: corrupted xattr block 128: invalid ea_ino
[  381.708951][T24073] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  381.722309][T24064] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=15
[  381.740534][T24073] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.6433: bg 0: block 234: padding at end of block bitmap is not set
[  381.742087][T24064] EXT4-fs error (device loop1): ext4_xattr_block_find:1877: inode #15: comm syz.1.6431: corrupted xattr block 128: invalid ea_ino
[  381.757935][T24073] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 117
[  381.782018][T24073] EXT4-fs (loop4): This should not happen!! Data will be lost
[  381.782018][T24073] 
[  381.794363][   T29] kauditd_printk_skb: 71 callbacks suppressed
[  381.794375][   T29] audit: type=1400 audit(2000000466.709:5505): avc:  denied  { getopt } for  pid=24072 comm="syz.4.6433" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  382.013878][T24079] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  382.032100][   T29] audit: type=1400 audit(2000000466.939:5506): avc:  denied  { execute } for  pid=24084 comm="syz.0.6436" path=2F6D656D66643A59FFFF202864656C6574656429 dev="hugetlbfs" ino=97368 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  382.067621][   T29] audit: type=1400 audit(2000000466.979:5507): avc:  denied  { bind } for  pid=24087 comm="syz.0.6437" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  382.068137][T24088] FAULT_INJECTION: forcing a failure.
[  382.068137][T24088] name failslab, interval 1, probability 0, space 0, times 0
[  382.088175][   T29] audit: type=1400 audit(2000000466.979:5508): avc:  denied  { setopt } for  pid=24087 comm="syz.0.6437" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  382.108986][   T29] audit: type=1400 audit(2000000467.019:5509): avc:  denied  { setattr } for  pid=24081 comm="syz.2.6435" path="socket:[97359]" dev="sockfs" ino=97359 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  382.121540][T24088] CPU: 1 UID: 0 PID: 24088 Comm: syz.0.6437 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  382.155593][T24088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  382.165658][T24088] Call Trace:
[  382.168928][T24088]  <TASK>
[  382.171844][T24088]  dump_stack_lvl+0xf2/0x150
[  382.176471][T24088]  dump_stack+0x15/0x20
[  382.180702][T24088]  should_fail_ex+0x229/0x230
[  382.185382][T24088]  ? __nf_conntrack_alloc+0xcd/0x280
[  382.190658][T24088]  should_failslab+0x8f/0xb0
[  382.195275][T24088]  kmem_cache_alloc_noprof+0x4c/0x290
[  382.200714][T24088]  __nf_conntrack_alloc+0xcd/0x280
[  382.205843][T24088]  nf_conntrack_alloc+0x37/0x50
[  382.210681][T24088]  ctnetlink_new_conntrack+0x38a/0x1220
[  382.216262][T24088]  ? __nla_parse+0x40/0x60
[  382.220692][T24088]  nfnetlink_rcv_msg+0x4a9/0x570
[  382.225674][T24088]  netlink_rcv_skb+0x12c/0x230
[  382.230462][T24088]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  382.236037][T24088]  nfnetlink_rcv+0x16c/0x15b0
[  382.240712][T24088]  ? kmem_cache_free+0xd8/0x280
[  382.245632][T24088]  ? nlmon_xmit+0x51/0x60
[  382.250015][T24088]  ? __kfree_skb+0x102/0x150
[  382.254600][T24088]  ? consume_skb+0x57/0x180
[  382.259179][T24088]  ? nlmon_xmit+0x51/0x60
[  382.263533][T24088]  ? dev_hard_start_xmit+0x3c1/0x3f0
[  382.268879][T24088]  ? __dev_queue_xmit+0xb86/0x1fe0
[  382.274004][T24088]  ? ref_tracker_free+0x3a5/0x410
[  382.279020][T24088]  ? __dev_queue_xmit+0x161/0x1fe0
[  382.284152][T24088]  ? __netlink_deliver_tap+0x495/0x4c0
[  382.289660][T24088]  netlink_unicast+0x593/0x670
[  382.294414][T24088]  netlink_sendmsg+0x5cc/0x6e0
[  382.299199][T24088]  ? __pfx_netlink_sendmsg+0x10/0x10
[  382.304477][T24088]  __sock_sendmsg+0x140/0x180
[  382.309220][T24088]  ____sys_sendmsg+0x312/0x410
[  382.313983][T24088]  __sys_sendmsg+0x1e9/0x280
[  382.318588][T24088]  __x64_sys_sendmsg+0x46/0x50
[  382.323410][T24088]  x64_sys_call+0x26f8/0x2e00
[  382.328249][T24088]  do_syscall_64+0xc9/0x1c0
[  382.332738][T24088]  ? clear_bhb_loop+0x55/0xb0
[  382.337403][T24088]  ? clear_bhb_loop+0x55/0xb0
[  382.342074][T24088]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  382.348014][T24088] RIP: 0033:0x7f19f63a5f19
[  382.352435][T24088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  382.372052][T24088] RSP: 002b:00007f19f5627048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  382.380456][T24088] RAX: ffffffffffffffda RBX: 00007f19f6535f60 RCX: 00007f19f63a5f19
[  382.388445][T24088] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000004
[  382.396474][T24088] RBP: 00007f19f56270a0 R08: 0000000000000000 R09: 0000000000000000
[  382.404593][T24088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  382.412553][T24088] R13: 000000000000000b R14: 00007f19f6535f60 R15: 00007ffc01d98f68
[  382.420523][T24088]  </TASK>
[  382.429735][T24089] loop2: detected capacity change from 0 to 512
[  382.462744][   T29] audit: type=1400 audit(2000000467.369:5510): avc:  denied  { read append } for  pid=24092 comm="syz.0.6439" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  382.486761][   T29] audit: type=1400 audit(2000000467.379:5511): avc:  denied  { open } for  pid=24092 comm="syz.0.6439" path="/dev/nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  382.488966][T24089] loop2: detected capacity change from 0 to 8192
[  382.520872][T24089] vfat: Unknown parameter 'GPL'
[  382.526324][T22222] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  382.546143][T22454] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  382.555779][   T29] audit: type=1326 audit(2000000467.469:5512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24095 comm="syz.0.6440" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f19f63a5f19 code=0x0
[  382.592371][T24102] loop4: detected capacity change from 0 to 764
[  382.602317][   T29] audit: type=1400 audit(2000000467.519:5513): avc:  denied  { mount } for  pid=24100 comm="syz.4.6442" name="/" dev="loop4" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[  382.625009][   T29] audit: type=1400 audit(2000000467.519:5514): avc:  denied  { read } for  pid=24100 comm="syz.4.6442" name="msr" dev="devtmpfs" ino=85 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  382.705010][T24104] hub 6-0:1.0: USB hub found
[  382.709827][T24104] hub 6-0:1.0: 8 ports detected
[  382.721118][T24102] tipc: Started in network mode
[  382.726014][T24102] tipc: Node identity d6d22c18e1ad, cluster identity 4711
[  382.733394][T24102] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  382.759653][T24102] syzkaller0: entered promiscuous mode
[  382.765147][T24102] syzkaller0: entered allmulticast mode
[  382.771170][T24102] tipc: Resetting bearer <eth:syzkaller0>
[  382.780841][T24109] loop1: detected capacity change from 0 to 512
[  382.787362][T24109] ext4: Unknown parameter 'nouser_xattr'
[  382.801921][T24111] loop1: detected capacity change from 0 to 256
[  382.809583][T24111] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  383.064731][T24121] __nla_validate_parse: 5 callbacks suppressed
[  383.064747][T24121] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6450'.
[  383.080026][T24121] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6450'.
[  383.140008][    C0] eth0: bad gso: type: 1, size: 1408
[  383.276908][T24132] loop1: detected capacity change from 0 to 1024
[  383.293868][T24132] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  383.306730][T24132] ext4 filesystem being mounted at /130/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  383.319063][T24132] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #15: comm syz.1.6452: corrupted xattr block 128: invalid ea_ino
[  383.332609][T24132] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=15
[  383.341747][T24132] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #15: comm syz.1.6452: corrupted xattr block 128: invalid ea_ino
[  383.355245][T24132] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=15
[  383.364377][T24132] EXT4-fs error (device loop1): ext4_xattr_block_find:1877: inode #15: comm syz.1.6452: corrupted xattr block 128: invalid ea_ino
[  383.409562][T24139] FAULT_INJECTION: forcing a failure.
[  383.409562][T24139] name failslab, interval 1, probability 0, space 0, times 0
[  383.422231][T24139] CPU: 1 UID: 0 PID: 24139 Comm: syz.0.6454 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  383.432648][T24139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  383.442745][T24139] Call Trace:
[  383.446014][T24139]  <TASK>
[  383.448925][T24139]  dump_stack_lvl+0xf2/0x150
[  383.453581][T24139]  dump_stack+0x15/0x20
[  383.457737][T24139]  should_fail_ex+0x229/0x230
[  383.462399][T24139]  ? nf_ct_tmpl_alloc+0x63/0x120
[  383.467319][T24139]  should_failslab+0x8f/0xb0
[  383.471931][T24139]  __kmalloc_cache_noprof+0x4b/0x2a0
[  383.477199][T24139]  nf_ct_tmpl_alloc+0x63/0x120
[  383.482011][T24139]  xt_ct_tg_check+0x170/0x790
[  383.486725][T24139]  ? __kmalloc_cache_noprof+0x10b/0x2a0
[  383.492282][T24139]  xt_ct_tg_check_v2+0x49/0x60
[  383.497049][T24139]  xt_check_target+0x266/0x480
[  383.501801][T24139]  ? xt_find_target+0x1bd/0x1e0
[  383.506783][T24139]  ? xt_find_target+0x19e/0x1e0
[  383.511753][T24139]  translate_table+0xcde/0x1040
[  383.516662][T24139]  do_ip6t_set_ctl+0x7cc/0x8c0
[  383.521423][T24139]  ? __rcu_read_unlock+0x4e/0x70
[  383.526365][T24139]  nf_setsockopt+0x195/0x1b0
[  383.530938][T24139]  ipv6_setsockopt+0x126/0x140
[  383.535707][T24139]  udpv6_setsockopt+0x95/0xb0
[  383.540378][T24139]  sock_common_setsockopt+0x64/0x80
[  383.545608][T24139]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  383.551553][T24139]  __sys_setsockopt+0x1d8/0x250
[  383.556402][T24139]  __x64_sys_setsockopt+0x66/0x80
[  383.561585][T24139]  x64_sys_call+0x2a0e/0x2e00
[  383.566325][T24139]  do_syscall_64+0xc9/0x1c0
[  383.570923][T24139]  ? clear_bhb_loop+0x55/0xb0
[  383.575579][T24139]  ? clear_bhb_loop+0x55/0xb0
[  383.580234][T24139]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  383.586117][T24139] RIP: 0033:0x7f19f63a5f19
[  383.590508][T24139] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  383.610093][T24139] RSP: 002b:00007f19f5627048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  383.618488][T24139] RAX: ffffffffffffffda RBX: 00007f19f6535f60 RCX: 00007f19f63a5f19
[  383.626438][T24139] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000003
[  383.634463][T24139] RBP: 00007f19f56270a0 R08: 00000000000003e0 R09: 0000000000000000
[  383.642415][T24139] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  383.650377][T24139] R13: 000000000000000b R14: 00007f19f6535f60 R15: 00007ffc01d98f68
[  383.658330][T24139]  </TASK>
[  383.661495][T24100] tipc: Resetting bearer <eth:syzkaller0>
[  383.677949][T24100] tipc: Disabling bearer <eth:syzkaller0>
[  383.688818][T24141] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6455'.
[  383.746555][T24141] hub 6-0:1.0: USB hub found
[  383.751635][T24141] hub 6-0:1.0: 8 ports detected
[  383.765586][T24144] loop4: detected capacity change from 0 to 256
[  383.772004][T24144] msdos: Unknown parameter 'ÿÿÿÿ'
[  383.803710][T24149] loop2: detected capacity change from 0 to 256
[  383.820935][T24150] rtc_cmos 00:00: Alarms can be up to one day in the future
[  383.830592][ T4531] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  383.838061][ T4531] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  383.845479][ T4531] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  383.853007][ T4531] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  383.860393][ T4531] hid-generic 0000:0000:0000.0007: collection stack underflow
[  383.867892][ T4531] hid-generic 0000:0000:0000.0007: item 0 0 0 12 parsing failed
[  383.876322][ T4531] hid-generic 0000:0000:0000.0007: probe with driver hid-generic failed with error -22
[  383.931453][    C0] IPv4: Oversized IP packet from 172.20.20.10
[  383.938490][    C0] IPv4: Oversized IP packet from 172.20.20.10
[  383.945727][    C1] IPv4: Oversized IP packet from 172.20.20.10
[  383.952121][    C1] IPv4: Oversized IP packet from 172.20.20.10
[  383.958783][    C0] IPv4: Oversized IP packet from 172.20.20.10
[  383.965465][    C0] IPv4: Oversized IP packet from 172.20.20.10
[  383.972039][    C0] IPv4: Oversized IP packet from 172.20.20.10
[  384.000761][T24179] Cannot find add_set index 0 as target
[  384.041857][T24185] loop2: detected capacity change from 0 to 256
[  384.049489][T24185] msdos: Unknown parameter 'ÿÿÿÿ'
[  384.059085][T22222] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  384.075210][T24189] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6470'.
[  384.148572][T24189] hub 6-0:1.0: USB hub found
[  384.153407][T24189] hub 6-0:1.0: 8 ports detected
[  384.158563][T15507] rtc_cmos 00:00: Alarms can be up to one day in the future
[  384.166096][T15507] rtc_cmos 00:00: Alarms can be up to one day in the future
[  384.173600][T15507] rtc_cmos 00:00: Alarms can be up to one day in the future
[  384.181051][T15507] rtc_cmos 00:00: Alarms can be up to one day in the future
[  384.188387][T15507] rtc rtc0: __rtc_set_alarm: err=-22
[  384.234259][T24203] loop2: detected capacity change from 0 to 2048
[  384.245811][T24203] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  384.275206][T23051] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  384.293437][T24208] loop2: detected capacity change from 0 to 256
[  384.458946][T24226] netlink: 'syz.2.6479': attribute type 1 has an invalid length.
[  384.466815][T24226] netlink: 'syz.2.6479': attribute type 2 has an invalid length.
[  384.475233][T24226] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6479'.
[  384.533002][T24239] loop2: detected capacity change from 0 to 256
[  384.534465][T24240] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6485'.
[  384.539570][T24239] msdos: Unknown parameter 'ÿÿÿÿ'
[  384.573307][T24242] loop2: detected capacity change from 0 to 2048
[  384.584098][T24242] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  384.607798][ T8780] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  384.624637][ T8780] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  384.636934][ T8780] EXT4-fs (loop2): This should not happen!! Data will be lost
[  384.636934][ T8780] 
[  384.646656][ T8780] EXT4-fs (loop2): Total free blocks count 0
[  384.652754][ T8780] EXT4-fs (loop2): Free/Dirty block details
[  384.658712][ T8780] EXT4-fs (loop2): free_blocks=2415919104
[  384.664646][ T8780] EXT4-fs (loop2): dirty_blocks=16
[  384.669898][ T8780] EXT4-fs (loop2): Block reservation details
[  384.675911][ T8780] EXT4-fs (loop2): i_reserved_data_blocks=1
[  384.686169][T23051] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  384.724765][T24249] loop2: detected capacity change from 0 to 128
[  384.792767][T24253] loop2: detected capacity change from 0 to 512
[  384.799827][T24253] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  384.825986][T24253] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  384.842889][T24253] EXT4-fs (loop2): 1 truncate cleaned up
[  384.849265][T24253] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  384.875016][T23051] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  385.006723][T24281] loop1: detected capacity change from 0 to 2048
[  385.027218][T24281] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  385.060279][ T8743] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  385.079993][T24289] loop4: detected capacity change from 0 to 256
[  385.081988][ T8743] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  385.094096][T24289] msdos: Unknown parameter 'ÿÿÿÿ'
[  385.098421][ T8743] EXT4-fs (loop1): This should not happen!! Data will be lost
[  385.098421][ T8743] 
[  385.113092][ T8743] EXT4-fs (loop1): Total free blocks count 0
[  385.119126][ T8743] EXT4-fs (loop1): Free/Dirty block details
[  385.125046][ T8743] EXT4-fs (loop1): free_blocks=2415919104
[  385.130766][ T8743] EXT4-fs (loop1): dirty_blocks=16
[  385.135908][ T8743] EXT4-fs (loop1): Block reservation details
[  385.141997][ T8743] EXT4-fs (loop1): i_reserved_data_blocks=1
[  385.182392][T24306] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24306 comm=syz.1.6506
[  385.347368][T24318] loop1: detected capacity change from 0 to 2048
[  385.380899][   T28] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  385.398054][   T28] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  385.410440][   T28] EXT4-fs (loop1): This should not happen!! Data will be lost
[  385.410440][   T28] 
[  385.420311][   T28] EXT4-fs (loop1): Total free blocks count 0
[  385.426598][   T28] EXT4-fs (loop1): Free/Dirty block details
[  385.432647][   T28] EXT4-fs (loop1): free_blocks=2415919104
[  385.438655][   T28] EXT4-fs (loop1): dirty_blocks=16
[  385.443921][   T28] EXT4-fs (loop1): Block reservation details
[  385.450028][   T28] EXT4-fs (loop1): i_reserved_data_blocks=1
[  385.481472][T24324] loop1: detected capacity change from 0 to 256
[  385.488290][T24324] msdos: Unknown parameter 'ÿÿÿÿ'
[  385.508694][T24326] usb usb8: usbfs: process 24326 (syz.1.6513) did not claim interface 0 before use
[  385.879473][T24342] 9pnet_fd: Insufficient options for proto=fd
[  385.900197][T24342] loop2: detected capacity change from 0 to 256
[  385.913134][T24342] FAT-fs (loop2): Directory bread(block 64) failed
[  385.919830][T24342] FAT-fs (loop2): Directory bread(block 65) failed
[  385.926432][T24342] FAT-fs (loop2): Directory bread(block 66) failed
[  385.934974][T24342] FAT-fs (loop2): Directory bread(block 67) failed
[  385.941639][T24342] FAT-fs (loop2): Directory bread(block 68) failed
[  385.948353][T24342] FAT-fs (loop2): Directory bread(block 69) failed
[  385.954971][T24342] FAT-fs (loop2): Directory bread(block 70) failed
[  385.961721][T24342] FAT-fs (loop2): Directory bread(block 71) failed
[  385.968368][T24342] FAT-fs (loop2): Directory bread(block 72) failed
[  385.974976][T24342] FAT-fs (loop2): Directory bread(block 73) failed
[  385.975276][T24344] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6520'.
[  385.990508][T24344] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6520'.
[  386.018822][T24346] loop2: detected capacity change from 0 to 2048
[  386.050728][   T28] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  386.065922][   T28] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  386.078179][   T28] EXT4-fs (loop2): This should not happen!! Data will be lost
[  386.078179][   T28] 
[  386.088274][   T28] EXT4-fs (loop2): Total free blocks count 0
[  386.089446][T24356] usb usb8: usbfs: process 24356 (syz.3.6525) did not claim interface 0 before use
[  386.094359][   T28] EXT4-fs (loop2): Free/Dirty block details
[  386.094373][   T28] EXT4-fs (loop2): free_blocks=2415919104
[  386.094384][   T28] EXT4-fs (loop2): dirty_blocks=16
[  386.094395][   T28] EXT4-fs (loop2): Block reservation details
[  386.094405][   T28] EXT4-fs (loop2): i_reserved_data_blocks=1
[  386.110567][T24357] net_ratelimit: 25 callbacks suppressed
[  386.110580][T24357] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  386.136183][T24359] loop2: detected capacity change from 0 to 256
[  386.156041][T24359] msdos: Unknown parameter 'ÿÿÿÿ'
[  386.172994][T24364] loop3: detected capacity change from 0 to 512
[  386.194454][T24364] ext4 filesystem being mounted at /272/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  386.206853][T24364] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  386.812331][   T29] kauditd_printk_skb: 132 callbacks suppressed
[  386.812344][   T29] audit: type=1400 audit(2000000471.719:5647): avc:  denied  { ioctl } for  pid=24379 comm="syz.0.6530" path="net:[4026532481]" dev="nsfs" ino=4026532481 ioctlcmd=0x5839 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  386.898760][T24384] loop4: detected capacity change from 0 to 512
[  386.906217][T24384] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  386.916906][T24384] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c018, mo2=0002]
[  386.924885][T24384] System zones: 1-12
[  386.929213][T24384] EXT4-fs (loop4): 1 truncate cleaned up
[  386.967156][   T29] audit: type=1400 audit(2000000471.879:5648): avc:  denied  { write } for  pid=24388 comm="syz.4.6534" name="event2" dev="devtmpfs" ino=223 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  386.997261][   T29] audit: type=1400 audit(2000000471.909:5649): avc:  denied  { create } for  pid=24386 comm="syz.0.6533" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  387.016952][   T29] audit: type=1400 audit(2000000471.909:5650): avc:  denied  { setopt } for  pid=24386 comm="syz.0.6533" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  387.055387][T24392] loop4: detected capacity change from 0 to 2048
[  387.094189][T24396] usb usb8: usbfs: process 24396 (syz.2.6536) did not claim interface 0 before use
[  387.112009][   T28] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  387.144557][T24398] loop3: detected capacity change from 0 to 256
[  387.153260][   T28] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  387.165521][   T28] EXT4-fs (loop4): This should not happen!! Data will be lost
[  387.165521][   T28] 
[  387.175229][   T28] EXT4-fs (loop4): Total free blocks count 0
[  387.181278][   T28] EXT4-fs (loop4): Free/Dirty block details
[  387.187269][   T28] EXT4-fs (loop4): free_blocks=2415919104
[  387.193082][   T28] EXT4-fs (loop4): dirty_blocks=16
[  387.198196][   T28] EXT4-fs (loop4): Block reservation details
[  387.204227][   T28] EXT4-fs (loop4): i_reserved_data_blocks=1
[  387.213554][T24398] msdos: Unknown parameter 'ÿÿÿÿ'
[  387.299237][T24409] loop4: detected capacity change from 0 to 256
[  387.321728][T24416] loop2: detected capacity change from 0 to 256
[  387.343125][T24416] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6545'.
[  387.359863][T24409] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6543'.
[  387.429050][    C0] eth0: bad gso: type: 1, size: 1408
[  387.442519][T24422] loop3: detected capacity change from 0 to 2048
[  387.473301][   T11] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  387.490325][   T11] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  387.502681][   T11] EXT4-fs (loop3): This should not happen!! Data will be lost
[  387.502681][   T11] 
[  387.512328][   T11] EXT4-fs (loop3): Total free blocks count 0
[  387.518410][   T11] EXT4-fs (loop3): Free/Dirty block details
[  387.524398][   T11] EXT4-fs (loop3): free_blocks=2415919104
[  387.530114][   T11] EXT4-fs (loop3): dirty_blocks=16
[  387.535366][   T11] EXT4-fs (loop3): Block reservation details
[  387.541338][   T11] EXT4-fs (loop3): i_reserved_data_blocks=1
[  387.589335][   T29] audit: type=1400 audit(2000000472.499:5651): avc:  denied  { read } for  pid=24428 comm="syz.3.6548" path="socket:[98972]" dev="sockfs" ino=98972 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  387.617268][   T29] audit: type=1326 audit(2000000472.529:5652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24428 comm="syz.3.6548" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7eff829a5f19 code=0x0
[  387.669681][T24438] loop4: detected capacity change from 0 to 256
[  387.677228][T24438] msdos: Unknown parameter 'ÿÿÿÿ'
[  387.699464][   T29] audit: type=1400 audit(2000000472.609:5653): avc:  denied  { sqpoll } for  pid=24439 comm="syz.4.6552" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  387.797070][    C0] eth0: bad gso: type: 1, size: 1408
[  387.802801][    C0] eth0: bad gso: type: 1, size: 1408
[  387.810872][   T29] audit: type=1400 audit(2000000472.719:5654): avc:  denied  { append } for  pid=24455 comm="syz.0.6560" name="hwrng" dev="devtmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  387.836917][T24462] loop4: detected capacity change from 0 to 512
[  387.838633][T24454] loop3: detected capacity change from 0 to 1024
[  387.850673][T24462] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.6559: invalid indirect mapped block 256 (level 2)
[  387.866242][T24462] EXT4-fs (loop4): 2 truncates cleaned up
[  387.875808][T24454] ext4 filesystem being mounted at /280/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  387.889172][T24454] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #15: comm syz.3.6553: corrupted xattr block 128: invalid ea_ino
[  387.898557][T24462] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.6559: bg 0: block 5: invalid block bitmap
[  387.904581][T24454] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  387.915842][T24462] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  387.927004][    C0] eth0: bad gso: type: 1, size: 1408
[  387.934398][T24454] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #15: comm syz.3.6553: corrupted xattr block 128: invalid ea_ino
[  387.956273][T24454] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  387.967165][T24454] EXT4-fs error (device loop3): ext4_xattr_block_find:1877: inode #15: comm syz.3.6553: corrupted xattr block 128: invalid ea_ino
[  387.976734][T24478] FAULT_INJECTION: forcing a failure.
[  387.976734][T24478] name failslab, interval 1, probability 0, space 0, times 0
[  387.993305][T24478] CPU: 1 UID: 0 PID: 24478 Comm: syz.0.6565 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  387.993327][T24478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  387.993348][T24478] Call Trace:
[  387.993409][T24478]  <TASK>
[  387.993415][T24478]  dump_stack_lvl+0xf2/0x150
[  387.993436][T24478]  dump_stack+0x15/0x20
[  387.993454][T24478]  should_fail_ex+0x229/0x230
[  387.993484][T24478]  ? rtnl_newlink+0x5d/0x1690
[  387.993508][T24478]  should_failslab+0x8f/0xb0
[  387.993559][T24478]  __kmalloc_cache_noprof+0x4b/0x2a0
[  387.993585][T24478]  rtnl_newlink+0x5d/0x1690
[  387.993610][T24478]  ? xa_load+0xb9/0xe0
[  387.993634][T24478]  ? memcg_list_lru_alloc+0xd2/0x740
[  387.993658][T24478]  ? mod_objcg_state+0x2ea/0x4f0
[  387.993685][T24478]  ? __rcu_read_unlock+0x4e/0x70
[  387.993741][T24478]  ? avc_has_perm_noaudit+0x1cc/0x210
[  387.993804][T24478]  ? selinux_capable+0x1f2/0x260
[  387.993829][T24478]  ? security_capable+0x64/0x80
[  387.993845][T24478]  ? ns_capable+0x7d/0xb0
[  387.993873][T24478]  ? __pfx_rtnl_newlink+0x10/0x10
[  387.993898][T24478]  rtnetlink_rcv_msg+0x6aa/0x710
[  387.993929][T24478]  ? ref_tracker_free+0x3a5/0x410
[  387.993950][T24478]  ? __dev_queue_xmit+0x161/0x1fe0
[  387.994001][T24478]  netlink_rcv_skb+0x12c/0x230
[  387.994023][T24478]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  387.994085][T24478]  rtnetlink_rcv+0x1c/0x30
[  387.994110][T24478]  netlink_unicast+0x593/0x670
[  387.994201][T24478]  netlink_sendmsg+0x5cc/0x6e0
[  387.994230][T24478]  ? __pfx_netlink_sendmsg+0x10/0x10
[  387.994253][T24478]  __sock_sendmsg+0x140/0x180
[  387.994271][T24478]  ____sys_sendmsg+0x312/0x410
[  387.994300][T24478]  __sys_sendmsg+0x1e9/0x280
[  387.994482][T24478]  __x64_sys_sendmsg+0x46/0x50
[  387.994513][T24478]  x64_sys_call+0x26f8/0x2e00
[  387.994539][T24478]  do_syscall_64+0xc9/0x1c0
[  387.994610][T24478]  ? clear_bhb_loop+0x55/0xb0
[  387.994631][T24478]  ? clear_bhb_loop+0x55/0xb0
[  387.994648][T24478]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  387.994675][T24478] RIP: 0033:0x7f19f63a5f19
[  387.994687][T24478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  387.994778][T24478] RSP: 002b:00007f19f5627048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  387.994790][T24478] RAX: ffffffffffffffda RBX: 00007f19f6535f60 RCX: 00007f19f63a5f19
[  387.994797][T24478] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  387.994868][T24478] RBP: 00007f19f56270a0 R08: 0000000000000000 R09: 0000000000000000
[  387.994928][T24478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  387.994963][T24478] R13: 000000000000000b R14: 00007f19f6535f60 R15: 00007ffc01d98f68
[  387.994972][T24478]  </TASK>
[  388.281996][    C0] eth0: bad gso: type: 1, size: 1408
[  388.284146][T24489] FAULT_INJECTION: forcing a failure.
[  388.284146][T24489] name failslab, interval 1, probability 0, space 0, times 0
[  388.300001][T24489] CPU: 1 UID: 0 PID: 24489 Comm: syz.2.6569 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  388.310415][T24489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  388.320457][T24489] Call Trace:
[  388.323723][T24489]  <TASK>
[  388.326651][T24489]  dump_stack_lvl+0xf2/0x150
[  388.331231][T24489]  dump_stack+0x15/0x20
[  388.335396][T24489]  should_fail_ex+0x229/0x230
[  388.340114][T24489]  ? __alloc_skb+0x10b/0x310
[  388.344697][T24489]  should_failslab+0x8f/0xb0
[  388.349295][T24489]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  388.355169][T24489]  __alloc_skb+0x10b/0x310
[  388.359578][T24489]  netlink_alloc_large_skb+0xad/0xe0
[  388.364892][T24489]  netlink_sendmsg+0x3b4/0x6e0
[  388.369722][T24489]  ? __pfx_netlink_sendmsg+0x10/0x10
[  388.374998][T24489]  __sock_sendmsg+0x140/0x180
[  388.379676][T24489]  ____sys_sendmsg+0x312/0x410
[  388.384433][T24489]  __sys_sendmsg+0x1e9/0x280
[  388.389062][T24489]  __x64_sys_sendmsg+0x46/0x50
[  388.393817][T24489]  x64_sys_call+0x26f8/0x2e00
[  388.398485][T24489]  do_syscall_64+0xc9/0x1c0
[  388.402973][T24489]  ? clear_bhb_loop+0x55/0xb0
[  388.407638][T24489]  ? clear_bhb_loop+0x55/0xb0
[  388.412298][T24489]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.418200][T24489] RIP: 0033:0x7f21e63f5f19
[  388.422620][T24489] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  388.442299][T24489] RSP: 002b:00007f21e5677048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  388.450809][T24489] RAX: ffffffffffffffda RBX: 00007f21e6585f60 RCX: 00007f21e63f5f19
[  388.458810][T24489] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003
[  388.466789][T24489] RBP: 00007f21e56770a0 R08: 0000000000000000 R09: 0000000000000000
[  388.474759][T24489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  388.482724][T24489] R13: 000000000000000b R14: 00007f21e6585f60 R15: 00007ffc1a484378
[  388.490695][T24489]  </TASK>
[  388.499239][   T29] audit: type=1400 audit(2000000473.409:5655): avc:  denied  { getopt } for  pid=24488 comm="syz.4.6570" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  388.520582][T24492] FAULT_INJECTION: forcing a failure.
[  388.520582][T24492] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  388.533732][T24492] CPU: 1 UID: 0 PID: 24492 Comm: syz.0.6571 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  388.544139][T24492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  388.554183][T24492] Call Trace:
[  388.557458][T24492]  <TASK>
[  388.560446][T24492]  dump_stack_lvl+0xf2/0x150
[  388.565062][T24492]  dump_stack+0x15/0x20
[  388.569208][T24492]  should_fail_ex+0x229/0x230
[  388.573962][T24492]  should_fail+0xb/0x10
[  388.578110][T24492]  should_fail_usercopy+0x1a/0x20
[  388.583162][T24492]  copy_fpstate_to_sigframe+0x575/0x720
[  388.588706][T24492]  ? copy_fpstate_to_sigframe+0xde/0x720
[  388.594349][T24492]  ? dequeue_signal+0x2ad/0x430
[  388.599200][T24492]  ? fpu__alloc_mathframe+0x95/0xd0
[  388.604384][T24492]  get_sigframe+0x295/0x350
[  388.608947][T24492]  x64_setup_rt_frame+0xa7/0x570
[  388.613891][T24492]  arch_do_signal_or_restart+0x287/0x4b0
[  388.619528][T24492]  syscall_exit_to_user_mode+0x59/0x130
[  388.625074][T24492]  do_syscall_64+0xd6/0x1c0
[  388.629564][T24492]  ? clear_bhb_loop+0x55/0xb0
[  388.634229][T24492]  ? clear_bhb_loop+0x55/0xb0
[  388.638896][T24492]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.644866][T24492] RIP: 0033:0x7f19f63a5f19
[  388.649266][T24492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  388.668874][T24492] RSP: 002b:00007f19f5627048 EFLAGS: 00000246 ORIG_RAX: 0000000000000098
[  388.677338][T24492] RAX: 0000000000000000 RBX: 00007f19f6535f60 RCX: 00007f19f63a5f19
[  388.685318][T24492] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  388.693277][T24492] RBP: 00007f19f56270a0 R08: 0000000000000000 R09: 0000000000000000
[  388.701288][T24492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  388.709246][T24492] R13: 000000000000000b R14: 00007f19f6535f60 R15: 00007ffc01d98f68
[  388.717207][T24492]  </TASK>
[  388.762283][T24510] loop3: detected capacity change from 0 to 256
[  388.771370][T24512] loop2: detected capacity change from 0 to 2048
[  388.788180][   T29] audit: type=1400 audit(2000000473.699:5656): avc:  denied  { create } for  pid=24516 comm="syz.0.6576" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1
[  388.820184][ T8780] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  388.835407][ T8780] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  388.835432][ T8780] EXT4-fs (loop2): This should not happen!! Data will be lost
[  388.835432][ T8780] 
[  388.835443][ T8780] EXT4-fs (loop2): Total free blocks count 0
[  388.835453][ T8780] EXT4-fs (loop2): Free/Dirty block details
[  388.835464][ T8780] EXT4-fs (loop2): free_blocks=2415919104
[  388.835476][ T8780] EXT4-fs (loop2): dirty_blocks=16
[  388.835493][ T8780] EXT4-fs (loop2): Block reservation details
[  388.835505][ T8780] EXT4-fs (loop2): i_reserved_data_blocks=1
[  388.898294][T24526] loop2: detected capacity change from 0 to 512
[  388.898770][T24526] EXT4-fs warning (device loop2): ext4_init_metadata_csum:4579: metadata_csum and uninit_bg are redundant flags; please run fsck.
[  388.898791][T24526] EXT4-fs (loop2): VFS: Found ext4 filesystem with unknown checksum algorithm.
[  388.935961][    C0] eth0: bad gso: type: 1, size: 1408
[  388.951634][    C0] eth0: bad gso: type: 1, size: 1408
[  388.958193][T24531] loop4: detected capacity change from 0 to 128
[  389.107506][T24546] __nla_validate_parse: 2 callbacks suppressed
[  389.107520][T24546] netlink: 52 bytes leftover after parsing attributes in process `syz.2.6587'.
[  389.140794][T24551] geneve2: entered allmulticast mode
[  389.191816][T24537] ==================================================================
[  389.199922][T24537] BUG: KCSAN: data-race in __mark_inode_dirty / writeback_single_inode
[  389.208206][T24537] 
[  389.210537][T24537] write to 0xffff888109f3df28 of 8 bytes by task 24531 on cpu 1:
[  389.218265][T24537]  writeback_single_inode+0x10e/0x4a0
[  389.223649][T24537]  sync_inode_metadata+0x5c/0x90
[  389.228567][T24537]  __generic_file_fsync+0xf9/0x140
[  389.233662][T24537]  fat_file_fsync+0x4c/0x100
[  389.238234][T24537]  vfs_fsync_range+0x122/0x140
[  389.242983][T24537]  generic_file_write_iter+0x191/0x1d0
[  389.248439][T24537]  iter_file_splice_write+0x5e6/0x970
[  389.253794][T24537]  direct_splice_actor+0x16c/0x2c0
[  389.258884][T24537]  splice_direct_to_actor+0x305/0x670
[  389.264238][T24537]  do_splice_direct+0xd7/0x150
[  389.268983][T24537]  do_sendfile+0x3ab/0x950
[  389.273385][T24537]  __x64_sys_sendfile64+0x110/0x150
[  389.278569][T24537]  x64_sys_call+0xfc3/0x2e00
[  389.283140][T24537]  do_syscall_64+0xc9/0x1c0
[  389.287627][T24537]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  389.293517][T24537] 
[  389.295830][T24537] read to 0xffff888109f3df28 of 8 bytes by task 24537 on cpu 0:
[  389.303449][T24537]  __mark_inode_dirty+0x58/0x7e0
[  389.308384][T24537]  fat_update_time+0x1f5/0x210
[  389.313142][T24537]  touch_atime+0x14f/0x350
[  389.317568][T24537]  filemap_splice_read+0x8b0/0x920
[  389.322672][T24537]  splice_direct_to_actor+0x26c/0x670
[  389.328037][T24537]  do_splice_direct+0xd7/0x150
[  389.332790][T24537]  do_sendfile+0x3ab/0x950
[  389.337195][T24537]  __x64_sys_sendfile64+0x110/0x150
[  389.342381][T24537]  x64_sys_call+0xfc3/0x2e00
[  389.346962][T24537]  do_syscall_64+0xc9/0x1c0
[  389.351450][T24537]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  389.357342][T24537] 
[  389.359651][T24537] value changed: 0x0000000000000007 -> 0x0000000000000080
[  389.366740][T24537] 
[  389.369047][T24537] Reported by Kernel Concurrency Sanitizer on:
[  389.375176][T24537] CPU: 0 UID: 0 PID: 24537 Comm: syz.4.6582 Not tainted 6.10.0-syzkaller-12030-g66ebbdfdeb09 #0
[  389.385588][T24537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  389.395628][T24537] ==================================================================