last executing test programs:

2.632425665s ago: executing program 3 (id=1448):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000500)={<r1=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r0, 0xc0182101, &(0x7f0000000180)={r1})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000480)={<r2=>0x0})
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={0x58, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x13, 0x3, 'hash:net,iface\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x58}}, 0x0)
setsockopt$packet_int(r3, 0x107, 0x7, &(0x7f00000000c0), 0xffffff6b)
setsockopt$packet_tx_ring(r3, 0x107, 0x5, &(0x7f0000000080)=@req3={0x8000, 0x6, 0x300}, 0x1c)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
sendto$inet(r5, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, &(0x7f0000000080)={r2, 0x3, r0, 0x5})
bind$inet6(0xffffffffffffffff, &(0x7f0000ed3fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
shutdown(0xffffffffffffffff, 0x0)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000040)={0x1, 0xffffffff}, 0x8)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000200)="bc", 0x1, 0x0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
close(0xffffffffffffffff)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sync()
socket$packet(0x11, 0xa, 0x300)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
mbind(&(0x7f0000003000/0x1000)=nil, 0x1000, 0x3, &(0x7f00000001c0)=0x1, 0x400, 0x0)
bind$inet(r6, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$inet_udp_encap(r6, 0x11, 0x64, &(0x7f0000000000)=0x2, 0x4)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x90, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

2.373851716s ago: executing program 2 (id=1451):
r0 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
close_range(r1, 0xffffffffffffffff, 0x2)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[], &(0x7f0000001f40)=""/4094, 0x2e, 0xffe, 0xa}, 0x20)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r3=>0x0})
bind$can_raw(r2, &(0x7f00000005c0), 0x10)
recvmmsg(r2, &(0x7f0000003080)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000017c0)=""/16, 0x10}], 0x1}}], 0x1, 0x0, 0x0)
setsockopt$SO_TIMESTAMP(r2, 0x1, 0x23, &(0x7f00000000c0)=0x1, 0x4)
setsockopt$CAN_RAW_RECV_OWN_MSGS(r2, 0x65, 0x4, &(0x7f0000000580)=0x1, 0x4)
sendmsg$can_raw(r2, &(0x7f0000000240)={&(0x7f0000000780)={0x1d, r3}, 0x10, &(0x7f0000000200)={&(0x7f0000000140)=@can={{}, 0x0, 0x0, 0x0, 0x0, "5b7ba3698f28aaf0"}, 0x10}}, 0x0)
r4 = socket$isdn_base(0x22, 0x3, 0x0)
bind$qrtr(r1, &(0x7f0000000400), 0xc)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f0000000140)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
setsockopt$sock_timeval(r4, 0x1, 0x21, &(0x7f00000002c0), 0x10)
getrandom(0x0, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{0x20, 0x0, 0xff, 0x4}, {0x9, 0x0, 0xf}]})
ioctl$EXT4_IOC_MOVE_EXT(r5, 0xc028660f, &(0x7f0000000280)={0x0, r0, 0x9, 0x3, 0x0, 0x2})
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x3, &(0x7f0000001280)=[{0x64}, {0x35, 0x0, 0x0, 0xffff}, {0x6}]})
close_range(r4, r6, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
socketpair(0x8, 0x0, 0x0, &(0x7f0000000100))
r8 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000000380)={0x0, <r9=>0x0}, &(0x7f0000000480)=0xc)
syz_mount_image$iso9660(&(0x7f0000000080), &(0x7f0000000000)='./file0\x00', 0x1080000, &(0x7f00000007c0)={[{@check_strict}, {@overriderock}, {@cruft}, {@iocharset={'iocharset', 0x3d, 'koi8-r'}}, {@check_relaxed}, {@nojoliet}, {@check_relaxed}, {@nojoliet}, {@map_off}, {@overriderock}, {@utf8}, {@mode={'mode', 0x3d, 0xfe8}}, {@uid={'uid', 0x3d, r9}}, {@iocharset={'iocharset', 0x3d, 'macgaelic'}}]}, 0x0, 0x563, &(0x7f0000001240)="$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")
quotactl_fd$Q_QUOTAON(r7, 0xffffffff80000202, r9, &(0x7f0000000180)='./file0\x00')
r10 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmsg$802154_dgram(r10, &(0x7f00000000c0)={&(0x7f0000000000)={0x24, @short={0x2, 0xffff, 0xffff}}, 0x14, &(0x7f0000000080)={0x0}}, 0x0)
recvmmsg(r10, &(0x7f0000004d00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=""/7, 0x7}}], 0x1, 0x10062, 0x0)

1.809201032s ago: executing program 0 (id=1458):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_emit_ethernet(0x7e, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000088a8000081"], 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000200), 0x208082, 0x0)
ioctl$PPPIOCSCOMPRESS(r0, 0x4010744d)
pipe2$9p(0x0, 0x0)
statx(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x400, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
quotactl_fd$Q_GETFMT(0xffffffffffffffff, 0xffffffff80000400, r1, &(0x7f0000000400))
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = syz_clone(0x49000000, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6}]})
mount$cgroup(0x20000000, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
ptrace(0x420e, r4)
r5 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r5, 0x10e, 0xc, &(0x7f0000000180)={0xffffff}, 0x10)
write(0xffffffffffffffff, &(0x7f0000000000)="240000001a005f0214f9f407000904001f000000fe000000000000000800040001000000", 0x24)
syz_io_uring_setup(0x0, &(0x7f00000035c0), 0x0, 0x0)
mremap(&(0x7f0000097000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f0000bff000/0x400000)=nil)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000000c0)="5c00000014006b05c84e21000ab16d6e230675f810000000440002005817d30461bc24eeb556a705251e6182149a36c23d3b48dfd8cdbf9367b098fa51f60a64c9f408000000e786a6d0bdd70000b6c0504bb9189d9193e9bd1c1b78", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)

1.728136739s ago: executing program 3 (id=1459):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='freezer.state\x00', 0x26e1, 0x0)
timer_create(0xfffffffffffffffc, 0x0, &(0x7f0000001400))
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001700)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000014000000050019000100000008000400400d000018000180140002006e657464657673696d30"], 0x3c}}, 0x0)
timer_create(0xfffffffc, 0x0, &(0x7f0000000040)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f0000000900)={[{@nobh}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000}}]}, 0x1, 0x23f, &(0x7f0000000540)="$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")

1.656967174s ago: executing program 3 (id=1460):
r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_INFO(r0, 0x80e85411, &(0x7f0000000100)=""/48)
r1 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x1c)
socketpair(0x14, 0x4, 0x2, &(0x7f0000000240))
mmap$xdp(&(0x7f000091a000/0x1000)=nil, 0x1000, 0x2, 0x20010, r0, 0x100000000)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r2, &(0x7f0000000040)={0x28, 0x0, 0x0, @my=0x0}, 0x10)
listen(r2, 0x6)
connect$vsock_stream(r2, &(0x7f0000000300)={0x28, 0x0, 0xffffffff, @hyper}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000001c0)=0x10800005)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r4)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r3, 0x0, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, &(0x7f0000000c40)=@raw={'raw\x00', 0x8, 0x3, 0x258, 0x0, 0xa, 0xd0e0000, 0x128, 0x100, 0x1c0, 0x1d8, 0x1d8, 0x1c0, 0x1d8, 0x3, 0x0, {[{{@ip={@loopback, @multicast1, 0x0, 0x0, 'ip6tnl0\x00', 'rose0\x00', {}, {}, 0x11}, 0x0, 0x108, 0x128, 0x0, {}, [@common=@inet=@l2tp={{0x30}, {0x0, 0x0, 0x2, 0x0, 0xc}}, @common=@unspec=@rateest={{0x68}, {'tunl0\x00', 'tunl0\x00', 0xc}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@CONNSECMARK={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2b8)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
sendto$l2tp(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0xc888, 0x0, 0x0)
bind$inet(r6, &(0x7f0000000200)={0x2, 0x4e24, @empty}, 0x10)
bind$vsock_stream(r2, &(0x7f0000000280)={0x28, 0x0, 0x0, @hyper}, 0x10)
bind$inet(0xffffffffffffffff, 0x0, 0xfffffc90)
ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r6, 0x6, 0xd, &(0x7f0000000100)='cdg\x00', 0x4)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
connect$inet(r6, &(0x7f0000000180)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x30}}, 0xffffffffffffff66)

1.656449405s ago: executing program 4 (id=1461):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x0, 0x0, 0x0, 0x8000}, 0x48)
ioctl$PIO_UNIMAP(0xffffffffffffffff, 0x4b67, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r0, 0xc0a85322, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r3)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)={0x2, 0x1, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev}}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev}}]}, 0x40}, 0x1, 0x800000000000000}, 0x0)

1.567961842s ago: executing program 4 (id=1462):
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="85000000080000004e00000000000000850000007d00000095000000000000007ab9e683b171b4b09980af6c1ebeda4ac0d3e3aa71a9ab17e14e1b0be949499ca6a5b2c467b6d3d1c0ae1e9820331afd90cc832c761aa3adf9be48c401c7f893694bf8cd19b7173cd4688904f7310af046fd490d3f2cf49b5f68aecf0bc659dc3d53c2"], &(0x7f0000000140)='GPL\x00'}, 0x90)
r0 = syz_io_uring_setup(0x5ad, &(0x7f0000000080), &(0x7f0000000040), &(0x7f0000000100))
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f00000003c0)=[r1], 0x1)
r2 = dup2(r0, r1)
io_uring_register$IORING_UNREGISTER_FILES(r2, 0x3, 0x0, 0x0)
syz_clone(0x29020000, &(0x7f0000000000)="fb9652c0d86c192d55fc7f9886202e925a65d990b3d0402ee4e329e1f63ef0b67de54def95925eada7d7652945837e92be348209315afa56e2fcef7d06c9143fc6fd53e289f3e83a9920da2f4966b82ecfb0ff25855cacd64bed6fcf0c211d131368b506b9212000d18094f2537d3267dab2ca5bdd9987e5dd0ea8b24bc6d158bfb78dda3876976673850e23c69a6ad13f36e8295fdfc8513c9dc5c4ba211b2d766af91fd770c7e866b8d72cdeda7c", 0xaf, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000240)="f28e1a44f9432c6e2ce17894c25c9a5cc533f7023c94db98e760f4e69f70f1d1fdd62a6bd1b6e13984e806af8c5a32049f00089bf5d20ea38357399da878cc816c0ec3aaba717df66f63b233cdcd936b4dc7f4501f1efe1b595358829520f30b0487aafdc779f8d9")
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./bus\x00', 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c64656275672c6572726f72733d72656d6f756e742d726f2c757466383d302c73686f72746e616d653d6c6f7765722c73686f72746e616d653d77696e6e742c756e695f786c6174653d302c636865636b3d72656c617865642c757466383d302c726f6469722c726f6469722c00bd11a3d82e3cc8e94a1ac3169cb253bc51dceb1a3c8675eef705933dac0549813c420584251b8849a95afa9de1a80dcc7f9d4e26116050410b89f88108d551843f6115dded9b54fcb36a3a7bab7fb11d2c7265fa11a3ff2f3ca1c0df2142ff9ce532341817f2bb2fef3428793728d4daa090c5becbb74d00c95f965afa83e5bb562620ea9e99853533ca4ef0702dad548503917329f0f431d87efa28137d3f0e0fa2906cb9e236094a2d7a9ce877c1d8509500"/315], 0xfe, 0x223, &(0x7f0000000b00)="$eJzs3bFrE1EcB/BfbaulUNJBKIrgiYtTaCvuLVJBDChKBp0stkVpasFAQIfWzX9C/wUdXQUHcfUfEEGq4GK3gMJJvdjYmpiUNj0xn8+SH7n3fffeS7gjQ97dPrWyvLBaXdrc3IiRkYEYmomZqA/EeByJwcg8DgDgf1JP0/iaZvIeCwBwONz/AaD/dHn/v3aIQwIAeszvfwDoPzdu3royWyrNXU+SkYiVJ7VyrZy9Zsdnl+JeVGIxJqMQ3yPSbVl96XJpbjLZ8mk8yivrjfx6rTy4Mz8VhRhvnZ9KMjvzwzHayL8fjcWYjkIcb52fbpk/GufO/nb+YhTi3Z1YjUosxFa2mV+bSpKLV0u78sd+tgMAAAAAAAAAAAAAAAAAAAAAgF4oJtta7t9TLLY7nuW73x9o9/48Q3FyKN+5AwAAAAAAAAAAAAAAAAAAwL+i+vDR8nylsvjgb8X9t89fd2rTZTHQOO9++9l/MXbm49N2bQb3tj4HW7w6neeydFm82bh74nx14sKBdVhP03QvqeGI+POdtl+tL4WIHq3Gi1w/i1+z7th44tnM/Mu1D5+77bnDhePbWE+uRwAAAAAAAAAAAAAAAAAA0M+af/rNeyQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAkJ/m8/97V+Q9RwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+BEAAP//Xy6hCQ==")
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x0, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000480)=0x8922)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x0, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x61}, 0x90)
fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
memfd_create(&(0x7f0000000100)=';e\x00\x00\xa4\xd8\xe0\x9c\x7f9\x8aZ]3N\xbb\xe1^\x9c\xe1\x9b6s$0Y\xf8\x90\x00\x00\x00\x00\xd2~l\xf6\x12\xde\xdd\xd5\x1d\x96\xb0a\xad\xcd\x16\xd8G\xae\xd9DZm\xabO\xad\x11%\x7f`@\x16c\xc0\xb6\x1f\xe3\x00\x1a_\xc7\xbf\xa7T\xbe\x13\x8b\xb3r\x8fL\xe6\xba\xe7\x18\xb4$BIj\xa3\xc9\xc6|\x9b\x88\xddPx\x02I\xde\xe8\xcd\x02\xc1\xedc2\x06\xcbM\xfb\x13jZ\x96\xeej\x9b\xe4XjN\xb9>\xdf3U\r \x8dh8T/h)\x90\xff\x8d\xd9\x89\xab\xf8P\xacYtk\xa3\xed\xfa*8\x13\b\xce\xf8z\xed\xadnz\x96\xa3\x9a9R\xd9]\xe11We\xfe3\xe06\x1a^\x04^\xef\xa3\x0fU\x9b1\xc6J\x83\x9d[\\a\xfd\xdc\xa1\xcd\xbe\x9b\xc5z7\xe8VP\x89\x16MK`\xe5\x137\b\x00\x00\x00\xd5\x01\xea\x98\xe6Z\x95j\xe3\x0ek>\x14\x80\rXS\xce\xf9\x0e\x89\xc4\xc6\x1bOm4Lla\r\xce\x17\xb5r&\xf3\x96\xbc\xc39\xa7\x95\xd9F\x17', 0x0)
socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, &(0x7f0000000200)={0x80000000, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote, 0x5}}}, 0x108)
r5 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r5, 0x29, 0x2e, &(0x7f0000000340)={0x1, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108)

1.47086555s ago: executing program 2 (id=1463):
msgrcv(0x0, 0x0, 0x0, 0x0, 0x400)
r0 = msgget$private(0x0, 0x8d)
msgsnd(r0, 0x0, 0xc, 0x0)
msgget(0x1, 0x2b0)
r1 = msgget$private(0x0, 0x4a)
msgsnd(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000000000009f1a01002de055e31b6fe032b89b86da6a8a8f5d3371947e2c26c067b468cf8aabb7edff56dae46addd51600d73fa34ebf785e3579cf9d783b0ab0836acc2ee09b3c78db1fff00dd22bb17fe6632dea37c9b7a926985276173f010a058b665ff982915e6048f4eced0c743bc15a12f91f1300d4a1fe16450b792a8409180c1efebe5f96905112a2afac3cbc1587a70c0170afbb637c782d61610ce2c8a0ff2aeb5e9a1644819ee3da5f22c2b00b128"], 0x4c, 0x0)
msgctl$IPC_STAT(0x0, 0x2, &(0x7f0000000440)=""/176)
msgsnd(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="162a713fe3e52da861467e0a231411ae9d3ae986e1f42b4d40c8c0b65481fa516f71d01fda0652566d886fbbdd9e71534255b72e19035202484db578ccd716ee44da66161515113e0bd14bce86111604476b5a3e57652616ee700f245f529ad25d8d4345abe2b79be9f25eb1845d3db120d3f436353a6ea0842923", @ANYRES16=0x0], 0x17, 0x0)
r2 = msgget(0x1, 0x2b0)
msgrcv(0x0, &(0x7f0000000a40), 0xde, 0x0, 0x3000)
msgrcv(r2, &(0x7f0000000880), 0x19, 0x0, 0x0)
pipe(&(0x7f0000000040))
msgsnd(0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="030000000000725c568c76eedec4bc59aafe1c990ebb9449142ab8661ed028a7e713"], 0x94, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000c00), 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
recvmmsg(r3, 0x0, 0x0, 0x0, 0x0)
ioperm(0x0, 0x0, 0x400)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="340000001500010000006eb1000000000a380000", @ANYRES32=0x0, @ANYBLOB="140001"], 0x34}}, 0x0)
unshare(0x24020400)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7ffffffe}]})
fchown(r4, 0xee01, 0x0)

1.054392704s ago: executing program 1 (id=1472):
lsetxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x24, 0x0)
bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000400)={'syztnl1\x00', &(0x7f0000000640)={'syztnl1\x00', <r1=>0x0, 0x2f, 0x7, 0x2, 0x8000, 0x30, @private1, @empty, 0x80, 0x40, 0x4, 0xe332a43}})
setsockopt$MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, &(0x7f00000006c0)={0xffffffffffffffff, 0x0, 0x5c, r1, 0x5}, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, 0xffffffffffffffff)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r2, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, r3, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
writev(r2, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)

1.054108134s ago: executing program 1 (id=1473):
timerfd_settime(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff})
io_setup(0x3ff, &(0x7f0000000500)=<r1=>0x0)
io_submit(r1, 0x2, &(0x7f0000000300)=[&(0x7f0000000000)={0x0, 0xfffffdfe, 0x0, 0x0, 0x0, r0, 0x0}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}])
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)

962.477762ms ago: executing program 0 (id=1474):
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0xefff, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xf}]}, @NFT_MSG_NEWSETELEM={0x82, 0xc, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x48, 0x3, 0x0, 0x1, [{0x44, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x38, 0xb, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @quota={{0xa}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_QUOTA_BYTES={0xc}]}}}, {0x14, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x4}}}]}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xf8}}, 0x0)

918.542405ms ago: executing program 1 (id=1475):
lsetxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x24, 0x0)
bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000400)={'syztnl1\x00', &(0x7f0000000640)={'syztnl1\x00', <r1=>0x0, 0x2f, 0x7, 0x2, 0x8000, 0x30, @private1, @empty, 0x80, 0x40, 0x4, 0xe332a43}})
setsockopt$MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, &(0x7f00000006c0)={0xffffffffffffffff, 0x0, 0x5c, r1, 0x5}, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, 0xffffffffffffffff)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x3}, 0x1c)
connect$pppl2tp(r2, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, r3, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
writev(r2, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)

918.157045ms ago: executing program 0 (id=1476):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_GET(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000100)={0x0}}, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x22000406, &(0x7f00000004c0)={[{@data_ordered}, {@noblock_validity}, {@discard}, {@init_itable}, {@stripe={'stripe', 0x3d, 0x1f2}}, {@grpjquota, 0x2e}, {@barrier}, {@usrquota}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x1, 0x4aa, &(0x7f0000000740)="$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")
syz_init_net_socket$llc(0x1a, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
getsockopt$llc_int(0xffffffffffffffff, 0x10c, 0x0, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000006c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$UHID_INPUT(r1, &(0x7f0000000940)={0x8, {"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", 0x1000}}, 0xb00)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r2}, 0x10)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r3, 0x29, 0x19, &(0x7f0000000040)=0xb0, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
r5 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
r6 = openat$cgroup_subtree(r5, &(0x7f00000001c0), 0x2, 0x0)
write$cgroup_subtree(r6, &(0x7f0000000100)={[{0x2d, 'pids'}]}, 0x6)
write$cgroup_subtree(r6, &(0x7f00000061c0)=ANY=[@ANYBLOB='+pids'], 0x6)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r1, 0x0)

917.869355ms ago: executing program 1 (id=1477):
bind$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
syz_io_uring_setup(0x193f, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000300)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00')
socket(0x1, 0x803, 0xfffffffe)
socket$inet6(0xa, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r5=>0x0})
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
getpeername$packet(r6, &(0x7f0000000000)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000000c0)=0x14)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r3, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000005c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="310300000000000000000800000008000300", @ANYRES32=r5, @ANYBLOB="08000600", @ANYRES32=r7, @ANYBLOB="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"], 0x24}}, 0x0)

895.313796ms ago: executing program 1 (id=1478):
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x1c)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0xf5, 0x0, @dev}, 0x1b)

842.305561ms ago: executing program 0 (id=1479):
r0 = dup(0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000080850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000b80)='mm_vmscan_kswapd_sleep\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x804810, &(0x7f0000000a40), 0x26, 0x756, &(0x7f00000002c0)="$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")
chdir(&(0x7f0000000240)='./file0\x00')
r1 = open(&(0x7f0000000040)='./bus\x00', 0x1145042, 0x0)
open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r1, 0x84, 0x15, &(0x7f0000000a80)={0xd}, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000071120800000000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_INPUT(r2, &(0x7f000000af80)={0x8, {"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", 0x1000}}, 0x1006)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r2, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
move_pages(r3, 0x1, &(0x7f0000000040)=[&(0x7f0000ffa000/0x4000)=nil], 0x0, &(0x7f0000000080), 0x0)

776.576876ms ago: executing program 3 (id=1480):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
ioctl$sock_TIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000080))
r0 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x0, 0x3, 0x3}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x4, 0x3, 0x3}, 0x10)
sendmsg$tipc(r1, &(0x7f00000002c0)={&(0x7f0000000000)=@id={0x1e, 0x3, 0x2, {0x4e23}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x200c0a1}, 0x0)

776.128956ms ago: executing program 3 (id=1481):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x10)
syz_open_procfs(0x0, &(0x7f0000000100)='syscall\x00')
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newlink={0x50, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}, @IFLA_MASTER={0x8, 0x3, r2}]}, 0x50}}, 0x0)
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x9, 0x2a8, &(0x7f0000000500)="$eJzs3F9IU38Yx/HHPz/1Z+hGRFBQPeVNRRzcrgMdoRENjHJhCcExz2rstI2dsZqEWxB400U3/buuIEIQoosgELvoKpTwrovuvPMiu0oiOjGnudnUMnWS79fF9rDn+zl8z58dtu9g08fvXouGHSNspqS6oUqq2yUns1XilWpZkJMj10fe7zt34eLpQDDYcVa1M9Dt86tq84HR3pvDh8ZSO86/bH5dL+PeS9Mz/qnx3eN7pr93X404GnE0Fk+pqX3xeMrssy3tv+9EDdUztmU6lkZijpUs6YfteCKRUTPW39SYSFqOo2Yso1Ero6m4ppIZNa+YkZgahqFNjYKVDacfBZbvhp7Puq7MpN65bn1OXNfNv9iwidNDhc2df9ctOv93Kj0lbKKim3qDiD2UDqVDhedCPxCWiNhiSat45JvkrxH38Yg7d6nkH2/4R4KTR9++UVWvDNrZ+Xw2HaopzfvEI95CpqBQd54Kdvi0oDT/nzQW5/3ikV3l8/6y+To53FKUN8Qjk5clLrZMjB78MtU19GAhP+hTPdEVXJL/X/oXD9OzzxU6PwAAAAAAAAAArIWhP5VdvzfyA24PqGrTkn4hX+73gaXr861l1+drZW9tZfcdAAAAAIDtwskMRE3btpJ/WeS/yq/Hdv694smt3x+8v3PlMS1tNRPtH3KJrbBff1B87dkS0ygtZH71abXBNev8TlksPq3Ldqrm57f8mJO9H1+sup26X47PcsY2/q4EAAAAYCMsfuhvk2z4VTrbc+xepecEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB2s4a/HJt4WK6l+WLn03KtSu8jAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADASn4EAAD//xAR0Ao=")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000000)=0x1, 0x4)
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r3, 0x40047211, &(0x7f0000000000))
r4 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000280)={{{@in=@local, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@remote, 0x0, 0x6c}, 0x0, @in=@empty}}, 0xe8)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6}]})
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x201}, @NFT_MSG_DELFLOWTABLE={0x30, 0x16, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x4}]}], {0x14, 0x10}}, 0x8c}}, 0x0)
r8 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
getsockname$packet(r8, &(0x7f0000000080)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r9, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000040)={0x0, 0xe0e, &(0x7f0000000780)={&(0x7f0000000280)=@newqdisc={0x48, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x4}, @TCA_RATE={0x6}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x4}]}, 0x48}}, 0x0)
r10 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb010018000000000000006c0000006c00000008000000020000000000000700000000eaffffffffffff0d0300000000000000050000000000000a0500100008000000cbc68262d5000000070000000009000000000000010000000006001e00000000000000000300000000050000000400000064000000020000000000000e0500000000000000003c61"], &(0x7f00000001c0)=""/11, 0x8c, 0xb, 0x1, 0x5}, 0x20)
ioctl$FS_IOC_GETFSMAP(r10, 0xc0c0583b, &(0x7f0000000900)={0x0, 0x0, 0x4, 0x0, '\x00', [{0x2, 0x6188, 0x4f00, 0x1205, 0x9, 0x8000000000000000}, {0x1, 0x5, 0x5, 0x5, 0xfff, 0x9}], ['\x00', '\x00', '\x00', '\x00']})

775.898676ms ago: executing program 0 (id=1482):
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
memfd_create(&(0x7f0000000100)='\b\x9dF\xd8\b\xb3~u\xa5\x81\xb1\x8aSpA\xd4\x98\x85D\x89>N\x8ar\x17\x00\x00\x00\x00\xe2{mn\xcc\xbf2\xc0\t\x83\xdeNX\xec\xe66\x1b\x97\xe7\xe6\x97\xf9\xb3\xf6\xbb\v\xb5$\xee\x84\x1cn,Bd8\x13\xcd\xb90\x95\xc0v\xd5?\xe5E:+Pm\x1d\xfb&3\xb9\xb5\xda\xb4\xb8k\x11\x00B\xe1\x99#\\R\xb9\x96\x11\xf5\x7fVN\xbf\xd4Ndq\x9a\x1b\xaa\x16\xab\r\xdd\xa2\xfdK\x02u\x1f\xadI\x9c\t\x00\x97\x8f\xa8vU\xa0\xcb', 0x0)
pipe2(&(0x7f0000000000), 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x10000000000000}, 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

680.799464ms ago: executing program 4 (id=1483):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0xffef, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xf}]}, @NFT_MSG_NEWSETELEM={0x82, 0xc, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x48, 0x3, 0x0, 0x1, [{0x44, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x38, 0xb, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @quota={{0xa}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_QUOTA_BYTES={0xc}]}}}, {0x14, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x4}}}]}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xf8}}, 0x0)

595.896351ms ago: executing program 3 (id=1484):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_emit_ethernet(0x7e, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000088a8000081"], 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000200), 0x208082, 0x0)
ioctl$PPPIOCSCOMPRESS(r0, 0x4010744d)
pipe2$9p(0x0, 0x0)
statx(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x400, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
quotactl_fd$Q_GETFMT(0xffffffffffffffff, 0xffffffff80000400, r1, &(0x7f0000000400))
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = syz_clone(0x49000000, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6}]})
mount$cgroup(0x20000000, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
ptrace(0x420e, r4)
r5 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r5, 0x10e, 0xc, &(0x7f0000000180)={0xffffff}, 0x10)
write(0xffffffffffffffff, &(0x7f0000000000)="240000001a005f0214f9f407000904001f000000fe000000000000000800040001000000", 0x24)
syz_io_uring_setup(0x0, &(0x7f00000035c0), 0x0, 0x0)
mremap(&(0x7f0000097000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f0000bff000/0x400000)=nil)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000000c0)="5c00000014006b05c84e21000ab16d6e230675f810000000440002005817d30461bc24eeb556a705251e6182149a36c23d3b48dfd8cdbf9367b098fa51f60a64c9f408000000e786a6d0bdd70000b6c0504bb9189d9193e9bd1c1b78", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)

575.276963ms ago: executing program 2 (id=1485):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0xf3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x42019, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
getpid()
sched_setscheduler(0x0, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000040)=0x8000, 0x4)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=@newlink={0x2c, 0x10, 0x0, 0x0, 0x0, {}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}]}]}, 0x2c}}, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x400000000000004)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000080))
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r1, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r2, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r3, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x3, r4, {0x2, 0x4e21, @multicast1}, 0x4}}, 0x2e)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_GET(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB="0103000002000000000004"], 0x14}}, 0x0)

536.835866ms ago: executing program 2 (id=1486):
r0 = socket$inet6(0xa, 0x80002, 0x88)
socket$kcm(0x2, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace0000008d000000002100000002ff02000000000000000000000000000104004e200023b0"], 0x0)

467.786472ms ago: executing program 4 (id=1487):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
unshare(0x20000400)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000600)={&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, &(0x7f00000006c0)=""/207, 0xcf, 0x0, &(0x7f00000007c0)=""/173, 0xad}, &(0x7f0000001140)=0x40)
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x808003, &(0x7f0000000640)={[{@lazytime}, {@commit={'commit', 0x3d, 0x7f}}, {@norecovery}, {@nojournal_checksum}, {@max_batch_time={'max_batch_time', 0x3d, 0x7}}, {@norecovery}]}, 0x1, 0x4e9, &(0x7f00000000c0)="$eJzs3d9rW9cdAPDvla3MTpzZ2faQBZaYsZGELZIdL4nZQ5LB2J4C27J3z7NlYyxbxpKT2IThsOcxGGMb28v61JdC/4BCyZ9QCoH2PZTSEtokfehDWxVJV4nrSnZCJCuxPx84vuf+0P1+j4SOdO691g3gwBqNiKsR0RcRZyNiOF2eSUtsNkptu0cPb8/UShLV6vVPkkjSZc19Jen0SPqwgYj4w28j/pwkjQVblNc3FqeLxcJqOp+vLK3ky+sb5xaWpucL84XliYnxi5OXJi9MjnWsrZd//eG//v76by6//fOb96c+PvOXWr5D6bqt7eikxnOSrT8XTf0RsdqNYD3Ql7Yn+ywbJ93PBwCAndW+438vIn4cEY//2+tsAAAAgG6oXhmKL5KIKgAAALBvZerXwCaZXHotwFBkMrlc4xreH8SVKJbKlZ/NldaWZxvXyo5ENjO3UCyMpdcKj0Q2qc2P1+tP589vm5+IiGMR8c/hwfp8bqZUnO31wQ8AAAA4IGrj/KFMo16bfDbcGP8DAAAA+8xIrxMAAAAAus74HwAAAPa/b4//RxuTpH/vkwEAAAA67XfXrtVKtXn/69kb62uLpRvnZgvlxdzS2kxuprS6kpsvlebrv9m3tNv+iqXSyi9iee1WvlIoV/Ll9Y2ppdLacmWqfl/vqcIz3ScaAAAA6Khjp+6+n0TE5i8H66XmULrOWB32t8zzbZ50Kw9g7/X1OgGgZ1zgCweXMT6w28B+YI/yAAAAuuf0D5+c/x+MLef/j953bAD2u+c8/w/sI87/w8G17fz//3uVB7D3jPGB3Y4DtD3//07ncwEAALpjqF6STC4dAwxFJpPLRRyt3xYgm8wtFAtjEfHdiHhvOPud2vx4r5MGAAAAAAAAAAAAAAAAAAAAAAAAgFdMtZpEFQAAANjXIjIfJRGRxEDE8E+Gth8fOJR8PlyfRsTN/13/963pSmV1vLb80yfLK/9Jl5/vxREMAAAAYLvmOL05jgcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACATnr08PZMs+xl3Ae/ioiRVvH7Y6A+HYhsRBx+nET/lsclEdHXgfibdyLieKv4SS2tGEmz2B4/ExGDPY5/pAPx4SC7W+t/rrZ6/2VitD5t/f7rT8uLejDarv/LPOn/+tr0f0d32fehdHri3pv5tvHvRJzob93/NOMnL9j//umPGxvt1lVfizjd8vMn+UasfGVpJV9e3zi3sDQ9X5gvLE9MjF+cvDR5YXIsP7dQLKR/W8b4x4/e+mqn9h9uE3+kXfuTRk7Vaut9nto2/+W9Ww+/32rDJOLB39J6i9f/eLv46XP/0/RzoLb+dLO+2ahvdfKNd0/u1P7ZNu3f7fU/026n25z9/V8/aNSyz/gIAKCbyusbi9PFYmH1Va/UGvMSpNHByujLkYbKwaz0umcCAAA67emX/l5nAgAAAAAAAAAAAAAAAAAAAAdX8///m7/l3I2fE9sab6BZSZI9bysAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwE6+DgAA///TSdFe")
syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], 0x1, 0x1200, &(0x7f0000001240)="$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") (async, rerun: 32)
r2 = open(&(0x7f00000002c0)='./file0\x00', 0x14927e, 0x0) (async, rerun: 32)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
pwritev(r3, &(0x7f00000001c0)=[{&(0x7f00000000c0)="95", 0x1}], 0x1, 0x4010005, 0x0)
r4 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000900), r3)
sendmsg$L2TP_CMD_NOOP(r3, &(0x7f00000009c0)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000980)={&(0x7f0000000a00)={0x1c, r4, 0x4, 0x70bd25, 0x25dfdbff, {}, [@L2TP_ATTR_L2SPEC_TYPE={0x5}]}, 0x3}, 0x1, 0x0, 0x0, 0x1}, 0x0) (async, rerun: 64)
fallocate(r2, 0x0, 0x0, 0x1000f4) (async, rerun: 64)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000bc0)={r1, 0xe0, &(0x7f0000001040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f00000008c0)=[0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6, &(0x7f0000000a40)=[0x0], &(0x7f0000000a80)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x48, &(0x7f0000000ac0)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f0000000b00), &(0x7f0000000b40), 0x8, 0x20, 0x8, 0x8, &(0x7f0000000b80)}}, 0x10)
syz_emit_ethernet(0x8a, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaac4bc9cac968686dd6000000000541100fe8000000000000000000000000000aafe8000000000000000000000000000aa00004e22"], 0x0)
r5 = socket$inet6(0xa, 0x80002, 0x0)
fcntl$notify(r5, 0x402, 0x0)
sendmmsg$inet(r0, &(0x7f0000000fc0)=[{{&(0x7f0000000300)={0x2, 0x4e22, @remote}, 0x10, 0x0}}, {{&(0x7f0000000bc0)={0x2, 0x4e22, @empty}, 0x10, 0x0, 0x0, &(0x7f0000000e80)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x190874b3}}], 0x18}}], 0x2, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x7, 0x20200) (async)
perf_event_open(&(0x7f0000000880)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

467.461692ms ago: executing program 2 (id=1488):
bind$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
syz_io_uring_setup(0x193f, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000300)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00')
socket(0x1, 0x803, 0xfffffffe)
socket$inet6(0xa, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r5=>0x0})
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
getpeername$packet(r6, &(0x7f0000000000)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000000c0)=0x14)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r3, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000005c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="310300000000000000000800000008000300", @ANYRES32=r5, @ANYBLOB="08000600", @ANYRES32=r7, @ANYBLOB="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"], 0x24}}, 0x0)

465.781822ms ago: executing program 4 (id=1489):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_GET(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000100)={0x0}}, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x22000406, &(0x7f00000004c0)={[{@data_ordered}, {@noblock_validity}, {@discard}, {@init_itable}, {@stripe={'stripe', 0x3d, 0x1f2}}, {@grpjquota, 0x2e}, {@barrier}, {@usrquota}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x1, 0x4aa, &(0x7f0000000740)="$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")
syz_init_net_socket$llc(0x1a, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
getsockopt$llc_int(0xffffffffffffffff, 0x10c, 0x0, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000006c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$UHID_INPUT(r1, &(0x7f0000000940)={0x8, {"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", 0x1000}}, 0xb00)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r2}, 0x10)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r3, 0x29, 0x19, &(0x7f0000000040)=0xb0, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
r5 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
r6 = openat$cgroup_subtree(r5, &(0x7f00000001c0), 0x2, 0x0)
write$cgroup_subtree(r6, &(0x7f0000000100)={[{0x2d, 'pids'}]}, 0x6)
write$cgroup_subtree(r6, &(0x7f00000061c0)=ANY=[@ANYBLOB='+pids'], 0x6)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r1, 0x0)

439.250044ms ago: executing program 2 (id=1490):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000380)=[{0x6}]})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = syz_io_uring_setup(0x838a9, &(0x7f0000000300)={0x0, 0x0, 0x10100, 0xfffffffe}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x3})
io_uring_enter(r1, 0x353, 0x0, 0x0, 0x0, 0x0)
signalfd(0xffffffffffffffff, &(0x7f0000002340), 0x8)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, 0x0)

434.321365ms ago: executing program 0 (id=1491):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
ioctl$sock_TIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000080))
r0 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x0, 0x3, 0x3}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x4, 0x3, 0x3}, 0x10)
sendmsg$tipc(r1, &(0x7f00000002c0)={&(0x7f0000000000)=@id={0x1e, 0x3, 0x2, {0x4e23}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x200c0a1}, 0x0)

371.330089ms ago: executing program 4 (id=1493):
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="85000000080000004e00000000000000850000007d00000095000000000000007ab9e683b171b4b09980af6c1ebeda4ac0d3e3aa71a9ab17e14e1b0be949499ca6a5b2c467b6d3d1c0ae1e9820331afd90cc832c761aa3adf9be48c401c7f893694bf8cd19b7173cd4688904f7310af046fd490d3f2cf49b5f68aecf0bc659dc3d53c2"], &(0x7f0000000140)='GPL\x00', 0x0, 0xbd, &(0x7f00000004c0)=""/153}, 0x15)
r0 = syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f0000000040), &(0x7f0000000100))
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f00000003c0)=[r1], 0x1)
r2 = dup2(r0, r1)
io_uring_register$IORING_UNREGISTER_FILES(r2, 0x3, 0x0, 0x0)
syz_clone(0x29020000, &(0x7f0000000000)="fb9652c0d86c192d55fc7f9886202e925a65d990b3d0402ee4e329e1f63ef0b67de54def95925eada7d7652945837e92be348209315afa56e2fcef7d06c9143fc6fd53e289f3e83a9920da2f4966b82ecfb0ff25855cacd64bed6fcf0c211d131368b506b9212000d18094f2537d3267dab2ca5bdd9987e5dd0ea8b24bc6d158bfb78dda3876976673850e23c69a6ad13f36e8295fdfc8513c9dc5c4ba211b2d766af91fd770c7e866b8d72cdeda7c", 0xaf, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000240)="f28e1a44f9432c6e2ce17894c25c9a5cc533f7023c94db98e760f4e69f70f1d1fdd62a6bd1b6e13984e806af8c5a32049f00089bf5d20ea38357399da878cc816c0ec3aaba717df66f63b233cdcd936b4dc7f4501f1efe1b595358829520f30b0487aafdc779f8d9")
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./bus\x00', 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="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"/315], 0xfe, 0x223, &(0x7f0000000b00)="$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")
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x0, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000480)=0x8922)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x0, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x61}, 0x90)
fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
memfd_create(&(0x7f0000000100)=';e\x00\x00\xa4\xd8\xe0\x9c\x7f9\x8aZ]3N\xbb\xe1^\x9c\xe1\x9b6s$0Y\xf8\x90\x00\x00\x00\x00\xd2~l\xf6\x12\xde\xdd\xd5\x1d\x96\xb0a\xad\xcd\x16\xd8G\xae\xd9DZm\xabO\xad\x11%\x7f`@\x16c\xc0\xb6\x1f\xe3\x00\x1a_\xc7\xbf\xa7T\xbe\x13\x8b\xb3r\x8fL\xe6\xba\xe7\x18\xb4$BIj\xa3\xc9\xc6|\x9b\x88\xddPx\x02I\xde\xe8\xcd\x02\xc1\xedc2\x06\xcbM\xfb\x13jZ\x96\xeej\x9b\xe4XjN\xb9>\xdf3U\r \x8dh8T/h)\x90\xff\x8d\xd9\x89\xab\xf8P\xacYtk\xa3\xed\xfa*8\x13\b\xce\xf8z\xed\xadnz\x96\xa3\x9a9R\xd9]\xe11We\xfe3\xe06\x1a^\x04^\xef\xa3\x0fU\x9b1\xc6J\x83\x9d[\\a\xfd\xdc\xa1\xcd\xbe\x9b\xc5z7\xe8VP\x89\x16MK`\xe5\x137\b\x00\x00\x00\xd5\x01\xea\x98\xe6Z\x95j\xe3\x0ek>\x14\x80\rXS\xce\xf9\x0e\x89\xc4\xc6\x1bOm4Lla\r\xce\x17\xb5r&\xf3\x96\xbc\xc39\xa7\x95\xd9F\x17', 0x0)
socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, &(0x7f0000000200)={0x80000000, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote, 0x5}}}, 0x108)
r5 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r5, 0x29, 0x2e, &(0x7f0000000340)={0x1, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108)

0s ago: executing program 1 (id=1494):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x20002)
write$sndseq(r2, 0x0, 0x0)
r3 = dup(r2)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}})
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1, 0x0, 0x0, 0x1008}, 0x1f00)
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
ioctl$RTC_IRQP_SET(0xffffffffffffffff, 0x4008700c, 0x0)
r5 = syz_io_uring_setup(0xf3b, &(0x7f0000000480), &(0x7f0000000080)=<r6=>0x0, &(0x7f0000000540)=<r7=>0x0)
listen(0xffffffffffffffff, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
creat(&(0x7f0000000040)='./file0\x00', 0x0)
io_uring_enter(r5, 0x47ba, 0x0, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

P: 0033:0x7f39f68064df
[  109.486623][ T6935] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8d 02 00 48
[  109.506359][ T6935] RSP: 002b:00007f39f5486df0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  109.514891][ T6935] RAX: ffffffffffffffda RBX: 0000000000080000 RCX: 00007f39f68064df
[  109.522896][ T6935] RDX: 0000000000080000 RSI: 00007f39ed067000 RDI: 0000000000000004
[  109.530883][ T6935] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000563
[  109.538873][ T6935] R10: 0000000020000f02 R11: 0000000000000293 R12: 0000000000000004
[  109.546881][ T6935] R13: 00007f39f5486ef0 R14: 00007f39f5486eb0 R15: 00007f39ed067000
[  109.554960][ T6935]  </TASK>
[  109.627069][ T6937] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.641088][ T3267] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.711170][   T29] audit: type=1400 audit(109.688:799): avc:  denied  { watch_reads } for  pid=6943 comm="syz.0.957" path="/8" dev="tmpfs" ino=56 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  109.760854][ T6949] FAULT_INJECTION: forcing a failure.
[  109.760854][ T6949] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  109.774300][ T6949] CPU: 1 UID: 0 PID: 6949 Comm: syz.4.956 Not tainted 6.11.0-rc2-syzkaller-00013-gd4560686726f #0
[  109.784947][ T6949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  109.795178][ T6949] Call Trace:
[  109.797607][ T6947] loop1: detected capacity change from 0 to 256
[  109.798470][ T6949]  <TASK>
[  109.808807][ T6949]  dump_stack_lvl+0xf2/0x150
[  109.813457][ T6949]  dump_stack+0x15/0x20
[  109.817662][ T6949]  should_fail_ex+0x229/0x230
[  109.822424][ T6949]  should_fail+0xb/0x10
[  109.826629][ T6949]  should_fail_usercopy+0x1a/0x20
[  109.831726][ T6949]  _copy_from_user+0x1e/0xd0
[  109.836424][ T6949]  copy_msghdr_from_user+0x54/0x2a0
[  109.841731][ T6949]  __sys_sendmmsg+0x22a/0x500
[  109.846471][ T6949]  __x64_sys_sendmmsg+0x57/0x70
[  109.851395][ T6949]  x64_sys_call+0xa49/0x2d60
[  109.856026][ T6949]  do_syscall_64+0xc9/0x1c0
[  109.860589][ T6949]  ? clear_bhb_loop+0x55/0xb0
[  109.865459][ T6949]  ? clear_bhb_loop+0x55/0xb0
[  109.870175][ T6949]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.876126][ T6949] RIP: 0033:0x7f1a436f79f9
[  109.880659][ T6949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.900764][ T6949] RSP: 002b:00007f1a42335038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  109.909222][ T6949] RAX: ffffffffffffffda RBX: 00007f1a43886130 RCX: 00007f1a436f79f9
[  109.917395][ T6949] RDX: 0000000000000318 RSI: 00000000200bd000 RDI: 0000000000000004
[  109.925615][ T6949] RBP: 00007f1a42335090 R08: 0000000000000000 R09: 0000000000000000
[  109.933923][ T6949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.942002][ T6949] R13: 0000000000000000 R14: 00007f1a43886130 R15: 00007ffd438887f8
[  109.950285][ T6949]  </TASK>
[  110.181225][ T3265] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.311686][ T6964] bridge_slave_1: left allmulticast mode
[  110.317551][ T6964] bridge_slave_1: left promiscuous mode
[  110.323363][ T6964] bridge0: port 2(bridge_slave_1) entered disabled state
[  110.894673][ T6976] netlink: 'syz.4.964': attribute type 10 has an invalid length.
[  110.902712][ T6976] netlink: 40 bytes leftover after parsing attributes in process `syz.4.964'.
[  110.922014][ T6976] A link change request failed with some changes committed already. Interface ipvlan0 may have been left with an inconsistent configuration, please check.
[  111.321267][ T6989] loop3: detected capacity change from 0 to 512
[  111.335906][ T6986] netlink: 48 bytes leftover after parsing attributes in process `syz.4.967'.
[  111.364247][ T6986] xt_socket: unknown flags 0x3c
[  111.380143][ T6989] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.522173][ T6997] loop4: detected capacity change from 0 to 128
[  111.598180][ T3357] bio_check_eod: 5 callbacks suppressed
[  111.598254][ T3357] kworker/u8:6: attempt to access beyond end of device
[  111.598254][ T3357] loop4: rw=1, sector=145, nr_sectors = 96 limit=128
[  111.620419][ T3265] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.630069][ T3357] kworker/u8:6: attempt to access beyond end of device
[  111.630069][ T3357] loop4: rw=1, sector=241, nr_sectors = 65 limit=128
[  111.676882][ T6999] loop4: detected capacity change from 0 to 512
[  111.716302][ T6999] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  111.769541][ T7007] loop3: detected capacity change from 0 to 256
[  111.788844][ T7010] loop1: detected capacity change from 0 to 512
[  111.838771][ T7010] EXT4-fs: old and new quota format mixing
[  111.916274][ T6709] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  112.079574][ T7017] FAULT_INJECTION: forcing a failure.
[  112.079574][ T7017] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  112.094258][ T7017] CPU: 0 UID: 0 PID: 7017 Comm: syz.4.977 Not tainted 6.11.0-rc2-syzkaller-00013-gd4560686726f #0
[  112.104972][ T7017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  112.115055][ T7017] Call Trace:
[  112.118363][ T7017]  <TASK>
[  112.121398][ T7017]  dump_stack_lvl+0xf2/0x150
[  112.126215][ T7017]  dump_stack+0x15/0x20
[  112.130475][ T7017]  should_fail_ex+0x229/0x230
[  112.135339][ T7017]  should_fail+0xb/0x10
[  112.139576][ T7017]  should_fail_usercopy+0x1a/0x20
[  112.144740][ T7017]  _copy_to_user+0x1e/0xa0
[  112.149263][ T7017]  simple_read_from_buffer+0xa0/0x110
[  112.154706][ T7017]  proc_fail_nth_read+0xfc/0x140
[  112.159738][ T7017]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  112.165340][ T7017]  vfs_read+0x1a2/0x6e0
[  112.169558][ T7017]  ? __rcu_read_unlock+0x4e/0x70
[  112.174521][ T7017]  ? __fget_files+0x1da/0x210
[  112.179319][ T7017]  ksys_read+0xeb/0x1b0
[  112.183576][ T7017]  __x64_sys_read+0x42/0x50
[  112.188206][ T7017]  x64_sys_call+0x27d3/0x2d60
[  112.192980][ T7017]  do_syscall_64+0xc9/0x1c0
[  112.197531][ T7017]  ? clear_bhb_loop+0x55/0xb0
[  112.202253][ T7017]  ? clear_bhb_loop+0x55/0xb0
[  112.207091][ T7017]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.213078][ T7017] RIP: 0033:0x7f1a436f643c
[  112.217536][ T7017] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8d 02 00 48
[  112.237191][ T7017] RSP: 002b:00007f1a42377030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  112.245636][ T7017] RAX: ffffffffffffffda RBX: 00007f1a43885f80 RCX: 00007f1a436f643c
[  112.253705][ T7017] RDX: 000000000000000f RSI: 00007f1a423770a0 RDI: 0000000000000004
[  112.261739][ T7017] RBP: 00007f1a42377090 R08: 0000000000000000 R09: 0000000000000000
[  112.269767][ T7017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  112.277888][ T7017] R13: 0000000000000000 R14: 00007f1a43885f80 R15: 00007ffd438887f8
[  112.285938][ T7017]  </TASK>
[  112.298339][ T7015] loop1: detected capacity change from 0 to 2048
[  112.332753][ T7015] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.350501][ T7015] FAULT_INJECTION: forcing a failure.
[  112.350501][ T7015] name failslab, interval 1, probability 0, space 0, times 0
[  112.363189][ T7015] CPU: 0 UID: 0 PID: 7015 Comm: syz.1.976 Not tainted 6.11.0-rc2-syzkaller-00013-gd4560686726f #0
[  112.373890][ T7015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  112.384068][ T7015] Call Trace:
[  112.387384][ T7015]  <TASK>
[  112.390350][ T7015]  dump_stack_lvl+0xf2/0x150
[  112.395092][ T7015]  dump_stack+0x15/0x20
[  112.399290][ T7015]  should_fail_ex+0x229/0x230
[  112.404083][ T7015]  ? ext4_mb_new_blocks+0x2fc/0x2020
[  112.409491][ T7015]  should_failslab+0x8f/0xb0
[  112.414161][ T7015]  kmem_cache_alloc_noprof+0x4c/0x290
[  112.419574][ T7015]  ext4_mb_new_blocks+0x2fc/0x2020
[  112.424798][ T7015]  ? ext4_find_extent+0x834/0x860
[  112.429943][ T7015]  ? ext4_ext_search_right+0x22d/0x4c0
[  112.435630][ T7015]  ? ext4_ext_check_overlap+0x27b/0x300
[  112.441316][ T7015]  ext4_ext_map_blocks+0x10a1/0x33b0
[  112.446707][ T7015]  ? __folio_batch_release+0xa4/0xc0
[  112.452133][ T7015]  ? mpage_prepare_extent_to_map+0xb21/0xb80
[  112.458202][ T7015]  ? ext4_es_lookup_extent+0x35b/0x520
[  112.463753][ T7015]  ext4_map_blocks+0x72a/0xf50
[  112.468553][ T7015]  ? kmem_cache_alloc_noprof+0x10c/0x290
[  112.474232][ T7015]  ext4_do_writepages+0xd85/0x2110
[  112.479548][ T7015]  ext4_writepages+0x159/0x2e0
[  112.484379][ T7015]  ? __pfx_ext4_writepages+0x10/0x10
[  112.489800][ T7015]  do_writepages+0x1d8/0x480
[  112.494469][ T7015]  ? _raw_spin_unlock+0x26/0x50
[  112.499369][ T7015]  filemap_fdatawrite_wbc+0xdb/0x100
[  112.504700][ T7015]  file_write_and_wait_range+0xc8/0x170
[  112.510371][ T7015]  generic_buffers_fsync_noflush+0x4c/0x130
[  112.516354][ T7015]  ext4_sync_file+0x20b/0x6c0
[  112.521075][ T7015]  ? __pfx_ext4_sync_file+0x10/0x10
[  112.526375][ T7015]  vfs_fsync_range+0x122/0x140
[  112.531264][ T7015]  ext4_buffered_write_iter+0x338/0x380
[  112.536965][ T7015]  ext4_file_write_iter+0x29f/0xe30
[  112.542215][ T7015]  ? path_openat+0x19bc/0x1f10
[  112.547032][ T7015]  ? _parse_integer_limit+0x167/0x180
[  112.552476][ T7015]  ? _parse_integer+0x27/0x30
[  112.557189][ T7015]  ? kstrtoull+0x110/0x140
[  112.561766][ T7015]  do_iter_readv_writev+0x3b0/0x470
[  112.567099][ T7015]  vfs_writev+0x2e0/0x880
[  112.571565][ T7015]  __se_sys_pwritev2+0x10c/0x1d0
[  112.576630][ T7015]  __x64_sys_pwritev2+0x78/0x90
[  112.581877][ T7015]  x64_sys_call+0x271f/0x2d60
[  112.586603][ T7015]  do_syscall_64+0xc9/0x1c0
[  112.591323][ T7015]  ? clear_bhb_loop+0x55/0xb0
[  112.596296][ T7015]  ? clear_bhb_loop+0x55/0xb0
[  112.601239][ T7015]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.607210][ T7015] RIP: 0033:0x7fb482ab79f9
[  112.611661][ T7015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.631396][ T7015] RSP: 002b:00007fb481737038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  112.640003][ T7015] RAX: ffffffffffffffda RBX: 00007fb482c45f80 RCX: 00007fb482ab79f9
[  112.647998][ T7015] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000006
[  112.656006][ T7015] RBP: 00007fb481737090 R08: 0000000000000000 R09: 0000000000000000
[  112.664137][ T7015] R10: 0000000000000e7b R11: 0000000000000246 R12: 0000000000000002
[  112.672145][ T7015] R13: 0000000000000000 R14: 00007fb482c45f80 R15: 00007ffcd6259248
[  112.680209][ T7015]  </TASK>
[  112.709196][ T7021] netlink: 'syz.4.978': attribute type 12 has an invalid length.
[  112.733947][   T29] audit: type=1326 audit(112.708:800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6943 comm="syz.0.957" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f39f68079f9 code=0x0
[  112.806359][ T7015] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  112.831472][ T7015] EXT4-fs (loop1): Delayed block allocation failed for inode 13 at logical offset 16 with max blocks 18 with error 28
[  112.844007][ T7015] EXT4-fs (loop1): This should not happen!! Data will be lost
[  112.844007][ T7015] 
[  112.854180][ T7015] EXT4-fs (loop1): Total free blocks count 0
[  112.860407][ T7015] EXT4-fs (loop1): Free/Dirty block details
[  112.866339][ T7015] EXT4-fs (loop1): free_blocks=2415919104
[  112.872256][ T7015] EXT4-fs (loop1): dirty_blocks=32
[  112.877505][ T7015] EXT4-fs (loop1): Block reservation details
[  112.883509][ T7015] EXT4-fs (loop1): i_reserved_data_blocks=2
[  112.900624][ T7015] syz.1.976 (7015) used greatest stack depth: 9608 bytes left
[  112.948610][ T3267] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.107424][ T7030] loop1: detected capacity change from 0 to 512
[  113.119697][   T29] audit: type=1326 audit(113.098:801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7027 comm="syz.4.981" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a436f79f9 code=0x7ffc0000
[  113.142779][   T29] audit: type=1326 audit(113.098:802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7027 comm="syz.4.981" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a436f79f9 code=0x7ffc0000
[  113.215851][ T7030] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.304871][   T29] audit: type=1326 audit(113.148:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7027 comm="syz.4.981" exe="/root/syz-executor" sig=0 arch=c000003e syscall=276 compat=0 ip=0x7f1a436f79f9 code=0x7ffc0000
[  113.327703][   T29] audit: type=1326 audit(113.148:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7027 comm="syz.4.981" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a436f79f9 code=0x7ffc0000
[  113.350531][   T29] audit: type=1326 audit(113.148:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7027 comm="syz.4.981" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a436f79f9 code=0x7ffc0000
[  113.373316][   T29] audit: type=1326 audit(113.188:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7031 comm="syz.3.982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffaf4af79f9 code=0x7ffc0000
[  113.396683][   T29] audit: type=1326 audit(113.188:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7031 comm="syz.3.982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7ffaf4af79f9 code=0x7ffc0000
[  113.404514][ T7042] process 'syz.3.982' launched './file2' with NULL argv: empty string added
[  113.419275][   T29] audit: type=1326 audit(113.188:808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7031 comm="syz.3.982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffaf4af79f9 code=0x7ffc0000
[  113.451512][   T29] audit: type=1326 audit(113.188:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7031 comm="syz.3.982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7ffaf4af79f9 code=0x7ffc0000
[  113.534499][ T7045] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  113.637428][ T3267] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.666108][ T7059] netlink: 14 bytes leftover after parsing attributes in process `syz.1.988'.
[  113.666540][ T7057] loop4: detected capacity change from 0 to 512
[  113.700627][ T7057] EXT4-fs: old and new quota format mixing
[  113.762267][ T7061] loop0: detected capacity change from 0 to 256
[  113.881635][ T7068] netlink: 'syz.4.991': attribute type 12 has an invalid length.
[  114.139960][ T7074] loop3: detected capacity change from 0 to 512
[  114.166678][ T7074] EXT4-fs (loop3): Invalid log block size: 4294934529
[  114.237008][ T7078] netlink: 12 bytes leftover after parsing attributes in process `syz.3.995'.
[  114.257392][ T7080] netlink: 12 bytes leftover after parsing attributes in process `syz.4.996'.
[  114.362957][ T7086] loop3: detected capacity change from 0 to 512
[  114.387014][ T7086] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.443743][ T7094] loop4: detected capacity change from 0 to 512
[  114.465993][ T7094] journal_path: Lookup failure for './file1'
[  114.472169][ T7094] EXT4-fs: error: could not find journal device path
[  114.498717][ T7097] 9pnet_fd: Insufficient options for proto=fd
[  114.635107][ T3265] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.684997][ T7110] netlink: 88 bytes leftover after parsing attributes in process `syz.3.1003'.
[  114.721485][ T7112] loop4: detected capacity change from 0 to 256
[  114.775319][ T7110] netlink: 'syz.3.1003': attribute type 2 has an invalid length.
[  114.902780][ T7118] syz.1.1006 (7118): attempted to duplicate a private mapping with mremap.  This is not supported.
[  114.947152][ T7120] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1007'.
[  115.046884][ T7124] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1008'.
[  115.151617][ T7128] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1010'.
[  115.161117][ T7128] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1010'.
[  115.199710][ T7128] vlan2: entered allmulticast mode
[  115.204975][ T7128] netdevsim netdevsim3 netdevsim0: entered allmulticast mode
[  115.531613][ T7139] loop1: detected capacity change from 0 to 512
[  115.662930][ T7139] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.866764][ T7152] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1016'.
[  115.908304][ T7152] 8021q: adding VLAN 0 to HW filter on device batadv1
[  115.989902][ T3267] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.185454][ T7161] bridge_slave_1: left allmulticast mode
[  116.190893][ T7165] random: crng reseeded on system resumption
[  116.191131][ T7161] bridge_slave_1: left promiscuous mode
[  116.191253][ T7161] bridge1: port 1(bridge_slave_1) entered disabled state
[  116.334247][ T6796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.355563][ T7169] FAULT_INJECTION: forcing a failure.
[  116.355563][ T7169] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  116.369314][ T7169] CPU: 1 UID: 0 PID: 7169 Comm: syz.1.1024 Not tainted 6.11.0-rc2-syzkaller-00013-gd4560686726f #0
[  116.380211][ T7169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  116.390296][ T7169] Call Trace:
[  116.393692][ T7169]  <TASK>
[  116.396650][ T7169]  dump_stack_lvl+0xf2/0x150
[  116.401384][ T7169]  dump_stack+0x15/0x20
[  116.404299][ T7171] 9pnet_fd: Insufficient options for proto=fd
[  116.405566][ T7169]  should_fail_ex+0x229/0x230
[  116.416471][ T7169]  should_fail+0xb/0x10
[  116.420719][ T7169]  should_fail_usercopy+0x1a/0x20
[  116.425903][ T7169]  _copy_from_user+0x1e/0xd0
[  116.430918][ T7169]  copy_msghdr_from_user+0x54/0x2a0
[  116.436221][ T7169]  __sys_sendmsg+0x17d/0x280
[  116.440868][ T7169]  __x64_sys_sendmsg+0x46/0x50
[  116.445898][ T7169]  x64_sys_call+0x2689/0x2d60
[  116.450798][ T7169]  do_syscall_64+0xc9/0x1c0
[  116.455695][ T7169]  ? clear_bhb_loop+0x55/0xb0
[  116.460450][ T7169]  ? clear_bhb_loop+0x55/0xb0
[  116.465393][ T7169]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.471456][ T7169] RIP: 0033:0x7fb482ab79f9
[  116.476124][ T7169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.488374][ T7173] loop0: detected capacity change from 0 to 256
[  116.496442][ T7169] RSP: 002b:00007fb481737038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  116.496472][ T7169] RAX: ffffffffffffffda RBX: 00007fb482c45f80 RCX: 00007fb482ab79f9
[  116.496487][ T7169] RDX: 0000000000000000 RSI: 00000000200019c0 RDI: 0000000000000003
[  116.528349][ T7169] RBP: 00007fb481737090 R08: 0000000000000000 R09: 0000000000000000
[  116.536414][ T7169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  116.544586][ T7169] R13: 0000000000000000 R14: 00007fb482c45f80 R15: 00007ffcd6259248
[  116.552661][ T7169]  </TASK>
[  116.628202][ T7182] loop1: detected capacity change from 0 to 512
[  116.717973][ T7182] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.774233][ T7192] __nla_validate_parse: 3 callbacks suppressed
[  116.774249][ T7192] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1028'.
[  116.902631][   T11] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.930976][   T11] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.983835][   T11] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.061973][ T3267] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.084185][   T11] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.112191][ T7203] loop4: detected capacity change from 0 to 512
[  117.136567][ T7203] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #12: comm syz.4.1029: corrupted in-inode xattr: invalid ea_ino
[  117.166063][ T7177] chnl_net:caif_netlink_parms(): no params data found
[  117.178646][ T7203] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.1029: couldn't read orphan inode 12 (err -117)
[  117.192241][ T7209] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1031'.
[  117.232106][ T7203] EXT4-fs (loop4): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.273460][ T7203] EXT4-fs (loop4): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  117.293804][   T11] bridge_slave_1: left allmulticast mode
[  117.299571][   T11] bridge_slave_1: left promiscuous mode
[  117.305296][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  117.335178][   T11] bridge_slave_0: left allmulticast mode
[  117.340974][   T11] bridge_slave_0: left promiscuous mode
[  117.346872][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.399360][ T7215] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1033'.
[  117.429349][ T7218] FAULT_INJECTION: forcing a failure.
[  117.429349][ T7218] name failslab, interval 1, probability 0, space 0, times 0
[  117.442058][ T7218] CPU: 1 UID: 0 PID: 7218 Comm: syz.3.1034 Not tainted 6.11.0-rc2-syzkaller-00013-gd4560686726f #0
[  117.453177][ T7218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  117.463281][ T7218] Call Trace:
[  117.466580][ T7218]  <TASK>
[  117.469527][ T7218]  dump_stack_lvl+0xf2/0x150
[  117.474238][ T7218]  dump_stack+0x15/0x20
[  117.478444][ T7218]  should_fail_ex+0x229/0x230
[  117.483281][ T7218]  ? alloc_empty_file+0xd0/0x310
[  117.488355][ T7218]  should_failslab+0x8f/0xb0
[  117.492998][ T7218]  kmem_cache_alloc_noprof+0x4c/0x290
[  117.498413][ T7218]  alloc_empty_file+0xd0/0x310
[  117.503218][ T7218]  alloc_file_pseudo+0xc3/0x140
[  117.508175][ T7218]  __shmem_file_setup+0x1bb/0x1f0
[  117.513377][ T7218]  shmem_file_setup+0x3b/0x50
[  117.518125][ T7218]  __se_sys_memfd_create+0x31d/0x600
[  117.523553][ T7218]  __x64_sys_memfd_create+0x31/0x40
[  117.528814][ T7218]  x64_sys_call+0x2891/0x2d60
[  117.533574][ T7218]  do_syscall_64+0xc9/0x1c0
[  117.538107][ T7218]  ? clear_bhb_loop+0x55/0xb0
[  117.542807][ T7218]  ? clear_bhb_loop+0x55/0xb0
[  117.547505][ T7218]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.553481][ T7218] RIP: 0033:0x7ffaf4af79f9
[  117.557985][ T7218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.577723][ T7218] RSP: 002b:00007ffaf3776e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  117.586168][ T7218] RAX: ffffffffffffffda RBX: 00000000000005fc RCX: 00007ffaf4af79f9
[  117.594202][ T7218] RDX: 00007ffaf3776ef0 RSI: 0000000000000000 RDI: 00007ffaf4b660b3
[  117.602206][ T7218] RBP: 00000000200004c0 R08: 00007ffaf3776bb7 R09: 00007ffaf3776e40
[  117.610192][ T7218] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000040
[  117.618205][ T7218] R13: 00007ffaf3776ef0 R14: 00007ffaf3776eb0 R15: 0000000020000240
[  117.626192][ T7218]  </TASK>
[  117.682722][ T7229] loop4: detected capacity change from 0 to 512
[  117.700168][ T7231] loop3: detected capacity change from 0 to 512
[  117.707472][ T7231] EXT4-fs: old and new quota format mixing
[  117.711608][ T7229] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.739661][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  117.750267][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  117.760580][   T11] bond0 (unregistering): Released all slaves
[  117.831958][ T7177] bridge0: port 1(bridge_slave_0) entered blocking state
[  117.839145][ T7177] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.875767][ T7177] bridge_slave_0: entered allmulticast mode
[  117.882602][ T7177] bridge_slave_0: entered promiscuous mode
[  117.909000][   T29] kauditd_printk_skb: 115 callbacks suppressed
[  117.909018][   T29] audit: type=1400 audit(117.888:925): avc:  denied  { connect } for  pid=7240 comm="syz.3.1042" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  117.916216][ T7245] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1043'.
[  117.949875][ T7177] bridge0: port 2(bridge_slave_1) entered blocking state
[  117.953429][   T29] audit: type=1400 audit(117.918:926): avc:  denied  { write } for  pid=7240 comm="syz.3.1042" path="socket:[18624]" dev="sockfs" ino=18624 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  117.957327][ T7177] bridge0: port 2(bridge_slave_1) entered disabled state
[  117.965550][ T7177] bridge_slave_1: entered allmulticast mode
[  118.004689][ T7247] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1041'.
[  118.009706][ T7177] bridge_slave_1: entered promiscuous mode
[  118.036425][ T7249] loop1: detected capacity change from 0 to 1024
[  118.046061][ T6709] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.046329][ T7249] EXT4-fs: Invalid want_extra_isize 2014743805
[  118.064516][   T11] hsr_slave_0: left promiscuous mode
[  118.082150][   T11] hsr_slave_1: left promiscuous mode
[  118.090953][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  118.098617][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  118.107617][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  118.115233][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  118.134713][   T11] veth1_macvtap: left promiscuous mode
[  118.140360][   T11] veth0_macvtap: left promiscuous mode
[  118.146091][   T11] veth1_vlan: left promiscuous mode
[  118.151348][   T11] veth0_vlan: left promiscuous mode
[  118.151485][ T7265] loop4: detected capacity change from 0 to 2048
[  118.160709][ T7266] loop0: detected capacity change from 0 to 512
[  118.182644][ T7265] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  118.185619][ T7263] loop1: detected capacity change from 0 to 256
[  118.203015][ T7266] EXT4-fs error (device loop0): ext4_quota_enable:7018: comm syz.0.1047: Bad quota inum: 13, type: 1
[  118.226667][ T7265] EXT4-fs error (device loop4): ext4_free_inode:355: comm syz.4.1051: bit already cleared for inode 15
[  118.235094][ T7266] EXT4-fs warning (device loop0): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-117, ino=13). Please run e2fsck to fix.
[  118.256871][ T7266] EXT4-fs (loop0): mount failed
[  118.338087][ T7265] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.377532][ T7274] loop4: detected capacity change from 0 to 1764
[  118.384110][ T7274] iso9660: Bad value for 'uid'
[  118.389081][ T7274] iso9660: Bad value for 'uid'
[  118.448279][   T11] team0 (unregistering): Port device team_slave_1 removed
[  118.464329][   T11] team0 (unregistering): Port device team_slave_0 removed
[  118.531458][ T7253] bridge0: port 2(bridge_slave_1) entered disabled state
[  118.538820][ T7253] bridge0: port 1(bridge_slave_0) entered disabled state
[  118.569766][ T7274] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1052'.
[  118.623371][ T7177] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  118.646417][ T7177] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  118.648075][ T7279] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1053'.
[  118.668019][ T7280] loop3: detected capacity change from 0 to 1024
[  118.677813][ T7280] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  118.709371][ T7177] team0: Port device team_slave_0 added
[  118.721531][ T7177] team0: Port device team_slave_1 added
[  118.756958][ T7283] loop0: detected capacity change from 0 to 512
[  118.764471][ T7177] batman_adv: batadv0: Adding interface: batadv_slave_0
[  118.771681][ T7177] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  118.797774][ T7177] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  118.816586][   T29] audit: type=1400 audit(118.793:927): avc:  denied  { create } for  pid=7278 comm="syz.3.1054" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=blk_file permissive=1
[  118.836398][   T29] audit: type=1400 audit(118.793:928): avc:  denied  { read } for  pid=7278 comm="syz.3.1054" name="file0" dev="ramfs" ino=18709 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=blk_file permissive=1
[  118.837291][ T7177] batman_adv: batadv0: Adding interface: batadv_slave_1
[  118.864904][ T7177] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  118.890971][ T7177] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  118.902806][ T3265] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz-executor: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  118.902840][   T29] audit: type=1400 audit(118.793:929): avc:  denied  { open } for  pid=7278 comm="syz.3.1054" path="/271/file0/file0/file0" dev="ramfs" ino=18709 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=blk_file permissive=1
[  118.923288][ T3265] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz-executor: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  118.942864][   T29] audit: type=1400 audit(118.793:930): avc:  denied  { ioctl } for  pid=7278 comm="syz.3.1054" path="/271/file0/file0/file0" dev="ramfs" ino=18709 ioctlcmd=0x1268 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=blk_file permissive=1
[  118.978715][ T7283] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  119.044482][ T7177] hsr_slave_0: entered promiscuous mode
[  119.052771][ T7177] hsr_slave_1: entered promiscuous mode
[  119.095679][ T4869] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.194556][ T6770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.201418][ T7292] loop1: detected capacity change from 0 to 512
[  119.216269][ T7292] EXT4-fs: old and new quota format mixing
[  119.249330][ T7294] loop0: detected capacity change from 0 to 1024
[  119.265719][ T7294] EXT4-fs: Invalid want_extra_isize 2014743805
[  119.278731][ T7296] loop4: detected capacity change from 0 to 128
[  119.312900][ T7299] loop0: detected capacity change from 0 to 2048
[  119.357528][ T7299] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  119.410582][ T7308] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1064'.
[  119.447809][ T6770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.499359][ T7315] loop4: detected capacity change from 0 to 512
[  119.515905][ T7314] loop0: detected capacity change from 0 to 256
[  119.601297][ T7315] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  119.764286][ T7177] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  119.777004][ T6709] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.819622][ T7177] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  119.839094][ T7336] loop4: detected capacity change from 0 to 512
[  119.857595][ T7177] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  119.879611][ T7177] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  119.886401][ T7336] EXT4-fs: old and new quota format mixing
[  120.025933][   T29] audit: type=1400 audit(120.003:931): avc:  denied  { map } for  pid=7338 comm="syz.4.1069" path="socket:[18083]" dev="sockfs" ino=18083 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  120.111456][ T7339] loop4: detected capacity change from 0 to 2048
[  120.123110][ T7317] chnl_net:caif_netlink_parms(): no params data found
[  120.147482][ T7339] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  120.168157][ T7177] 8021q: adding VLAN 0 to HW filter on device bond0
[  120.238655][ T7177] 8021q: adding VLAN 0 to HW filter on device team0
[  120.275715][ T6709] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.296384][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[  120.303519][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[  120.323571][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  120.330707][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  120.344673][ T7347] loop4: detected capacity change from 0 to 1024
[  120.372394][ T7347] EXT4-fs: Invalid want_extra_isize 2014743805
[  120.386501][ T7317] bridge0: port 1(bridge_slave_0) entered blocking state
[  120.393727][ T7317] bridge0: port 1(bridge_slave_0) entered disabled state
[  120.421233][ T7317] bridge_slave_0: entered allmulticast mode
[  120.437527][ T7317] bridge_slave_0: entered promiscuous mode
[  120.461224][ T7317] bridge0: port 2(bridge_slave_1) entered blocking state
[  120.468490][ T7317] bridge0: port 2(bridge_slave_1) entered disabled state
[  120.497581][ T7317] bridge_slave_1: entered allmulticast mode
[  120.517663][ T7317] bridge_slave_1: entered promiscuous mode
[  120.568644][ T7317] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  120.588331][ T7317] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  120.638881][ T7317] team0: Port device team_slave_0 added
[  120.651827][ T7317] team0: Port device team_slave_1 added
[  120.686183][ T7317] batman_adv: batadv0: Adding interface: batadv_slave_0
[  120.693276][ T7317] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  120.719308][ T7317] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  120.740298][ T7317] batman_adv: batadv0: Adding interface: batadv_slave_1
[  120.747351][ T7317] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  120.773741][ T7317] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  120.785573][ T7362] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1075'.
[  120.827014][ T7364] loop4: detected capacity change from 0 to 512
[  120.855799][ T7177] 8021q: adding VLAN 0 to HW filter on device batadv0
[  120.865717][ T7317] hsr_slave_0: entered promiscuous mode
[  120.873748][ T7317] hsr_slave_1: entered promiscuous mode
[  120.880518][ T7317] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  120.889656][ T7364] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  120.907387][ T7368] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1077'.
[  120.908242][ T7317] Cannot create hsr debugfs directory
[  120.949796][ T7373] loop1: detected capacity change from 0 to 1024
[  120.957904][ T7373] EXT4-fs: Invalid want_extra_isize 2014743805
[  120.974480][ T7368] loop0: detected capacity change from 0 to 512
[  121.016872][ T7368] EXT4-fs (loop0): failed to open journal device unknown-block(0,0) -6
[  121.124181][ T6709] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.151863][ T7177] veth0_vlan: entered promiscuous mode
[  121.163087][ T7388] loop0: detected capacity change from 0 to 256
[  121.182337][ T7177] veth1_vlan: entered promiscuous mode
[  121.200263][ T7317] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.243361][ T7177] veth0_macvtap: entered promiscuous mode
[  121.251494][ T7177] veth1_macvtap: entered promiscuous mode
[  121.264416][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  121.274980][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.285553][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  121.296260][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.306171][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  121.316631][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.326552][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  121.337059][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.346895][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  121.357375][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.367368][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  121.377884][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.387787][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  121.398273][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.408207][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  121.418685][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.498998][ T7177] batman_adv: batadv0: Interface activated: batadv_slave_0
[  121.535364][ T7317] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.557614][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  121.568232][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.578334][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  121.588852][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.599094][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  121.609610][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.619477][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  121.629996][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.640047][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  121.650701][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.660704][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  121.671270][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.681116][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  121.691669][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.701580][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  121.712133][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.727648][ T7177] batman_adv: batadv0: Interface activated: batadv_slave_1
[  121.746237][ T7317] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.778118][ T7177] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  121.786952][ T7177] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  121.795754][ T7177] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  121.804461][ T7177] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  121.877198][ T7317] netdevsim netdevsim3 netdevsim0 (unregistering): left allmulticast mode
[  121.924853][ T7317] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.048373][ T7317] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  122.074373][ T7317] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  122.092467][ T7317] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  122.112851][ T7317] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  122.233499][ T7317] 8021q: adding VLAN 0 to HW filter on device bond0
[  122.285684][ T7317] 8021q: adding VLAN 0 to HW filter on device team0
[  122.303889][ T7414] loop2: detected capacity change from 0 to 1024
[  122.316975][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[  122.324162][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[  122.332869][ T7414] EXT4-fs: Invalid want_extra_isize 2014743805
[  122.356431][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  122.363554][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  122.388732][ T7419] loop4: detected capacity change from 0 to 512
[  122.392537][ T7416] loop1: detected capacity change from 0 to 4096
[  122.403408][ T7417] tipc: Started in network mode
[  122.405264][ T7422] __nla_validate_parse: 1 callbacks suppressed
[  122.405306][ T7422] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1086'.
[  122.408452][ T7417] tipc: Node identity 7f000001, cluster identity 4711
[  122.440342][ T7421] loop2: detected capacity change from 0 to 2048
[  122.451210][ T7416] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.469613][ T7419] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.484208][ T7421] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  122.535049][ T7417] tipc: Enabled bearer <udp:syz1>, priority 10
[  122.559228][ T7317] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  122.570312][ T7317] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  122.593434][ T7429] Page cache invalidation failure on direct I/O.  Possible data corruption due to collision with buffered I/O!
[  122.605385][ T7429] File: /230/file0/bus PID: 7429 Comm: syz.1.1089
[  122.643202][ T7177] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.690431][ T7436] FAULT_INJECTION: forcing a failure.
[  122.690431][ T7436] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  122.703804][ T7436] CPU: 0 UID: 0 PID: 7436 Comm: syz.2.1092 Not tainted 6.11.0-rc2-syzkaller-00013-gd4560686726f #0
[  122.714608][ T7436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  122.724696][ T7436] Call Trace:
[  122.727989][ T7436]  <TASK>
[  122.730950][ T7436]  dump_stack_lvl+0xf2/0x150
[  122.735653][ T7436]  dump_stack+0x15/0x20
[  122.739853][ T7436]  should_fail_ex+0x229/0x230
[  122.744582][ T7436]  should_fail_alloc_page+0xfd/0x110
[  122.749967][ T7436]  __alloc_pages_noprof+0x109/0x360
[  122.755297][ T7436]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  122.760714][ T7436]  vma_alloc_folio_noprof+0x1a0/0x2f0
[  122.766122][ T7436]  handle_mm_fault+0xd6d/0x2940
[  122.771036][ T7436]  ? mas_walk+0x204/0x320
[  122.775501][ T7436]  exc_page_fault+0x3b9/0x650
[  122.780218][ T7436]  asm_exc_page_fault+0x26/0x30
[  122.785111][ T7436] RIP: 0033:0x7f042e2cbb63
[  122.789582][ T7436] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  122.809211][ T7436] RSP: 002b:00007f042d0864a0 EFLAGS: 00010206
[  122.815404][ T7436] RAX: 0000000000002000 RBX: 00007f042d086540 RCX: 00007f0424c67000
[  122.823400][ T7436] RDX: 00007f042d0866e0 RSI: 0000000000000007 RDI: 00007f042d0865e0
[  122.831404][ T7436] RBP: 000000000000000c R08: 0000000000000009 R09: 00000000000001bb
[  122.839415][ T7436] R10: 00000000000001c0 R11: 00007f042d086540 R12: 0000000000000001
[  122.847403][ T7436] R13: 00007f042e488480 R14: 00000000000000ed R15: 00007f042d0865e0
[  122.855491][ T7436]  </TASK>
[  122.858644][ T7436] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  122.879074][ T7436] loop2: detected capacity change from 0 to 1024
[  122.885867][ T7317] 8021q: adding VLAN 0 to HW filter on device batadv0
[  122.903525][ T7436] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[  122.914622][ T7436] EXT4-fs (loop2): group descriptors corrupted!
[  122.945496][ T6709] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.037522][ T3267] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.097807][ T7445] netlink: 'syz.4.1093': attribute type 12 has an invalid length.
[  123.132294][ T7317] veth0_vlan: entered promiscuous mode
[  123.258093][ T7446] loop2: detected capacity change from 0 to 256
[  123.273327][ T7317] veth1_vlan: entered promiscuous mode
[  123.368738][ T7317] veth0_macvtap: entered promiscuous mode
[  123.404387][ T7317] veth1_macvtap: entered promiscuous mode
[  123.456393][ T7317] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  123.466964][ T7317] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.476824][ T7317] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  123.487289][ T7317] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.497130][ T7317] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  123.507772][ T7317] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.517722][ T7317] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  123.528225][ T7317] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.538167][ T7317] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  123.548778][ T7317] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.558811][ T7317] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  123.569282][ T7317] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.579135][ T7317] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  123.589675][ T7317] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.599528][ T7317] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  123.610099][ T7317] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.620059][ T7317] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  123.630559][ T7317] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.641658][    T9] tipc: Node number set to 2130706433
[  123.696135][ T7317] batman_adv: batadv0: Interface activated: batadv_slave_0
[  123.726736][ T7468] netlink: 'syz.1.1099': attribute type 12 has an invalid length.
[  123.741108][ T7317] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  123.751705][ T7317] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.761629][ T7317] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  123.772103][ T7317] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.781958][ T7317] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  123.792391][ T7317] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.802274][ T7317] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  123.812768][ T7317] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.822616][ T7317] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  123.833115][ T7317] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.842966][ T7317] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  123.853641][ T7317] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.863764][ T7317] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  123.874231][ T7317] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.884423][ T7317] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  123.894943][ T7317] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.904793][ T7317] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  123.915483][ T7317] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.931091][ T7471] loop4: detected capacity change from 0 to 128
[  123.976424][ T7317] batman_adv: batadv0: Interface activated: batadv_slave_1
[  123.987125][ T7471] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  123.987697][ T7317] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  124.008102][ T7317] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  124.016840][ T7317] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  124.025602][ T7317] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  124.129527][ T7476] loop1: detected capacity change from 0 to 512
[  124.162752][ T6709] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  124.227843][ T7476] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  124.313896][ T7486] loop3: detected capacity change from 0 to 1024
[  124.331113][ T7486] EXT4-fs: Ignoring removed orlov option
[  124.337035][ T7486] EXT4-fs: Ignoring removed nomblk_io_submit option
[  124.380243][ T7486] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  124.457063][ T7499] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1106'.
[  124.467601][ T7497] loop1: detected capacity change from 0 to 512
[  124.511118][   T29] audit: type=1400 audit(124.483:932): avc:  denied  { getopt } for  pid=7501 comm="syz.2.1110" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  124.563318][ T7497] loop1: detected capacity change from 0 to 512
[  124.568075][ T7509] netlink: 'syz.2.1111': attribute type 12 has an invalid length.
[  124.598208][ T7497] EXT4-fs (loop1): can't mount with commit=2, fs mounted w/o journal
[  124.612540][ T7497] loop1: detected capacity change from 0 to 256
[  124.625337][ T7497] FAT-fs (loop1): Directory bread(block 64) failed
[  124.631896][ T7497] FAT-fs (loop1): Directory bread(block 65) failed
[  124.638618][ T7497] FAT-fs (loop1): Directory bread(block 66) failed
[  124.645549][ T7497] FAT-fs (loop1): Directory bread(block 67) failed
[  124.652117][ T7497] FAT-fs (loop1): Directory bread(block 68) failed
[  124.658643][ T7497] FAT-fs (loop1): Directory bread(block 69) failed
[  124.665245][ T7497] FAT-fs (loop1): Directory bread(block 70) failed
[  124.671759][ T7497] FAT-fs (loop1): Directory bread(block 71) failed
[  124.678312][ T7497] FAT-fs (loop1): Directory bread(block 72) failed
[  124.684914][ T7497] FAT-fs (loop1): Directory bread(block 73) failed
[  124.767073][ T7517] loop3: detected capacity change from 0 to 512
[  124.779556][ T7517] EXT4-fs: old and new quota format mixing
[  124.798389][ T7519] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1115'.
[  124.808455][   T29] audit: type=1326 audit(124.783:933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7495 comm="syz.1.1108" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb482ab79f9 code=0x0
[  124.923140][ T7530] loop2: detected capacity change from 0 to 512
[  124.997596][ T7533] loop0: detected capacity change from 0 to 512
[  125.004594][ T7533] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  125.013880][ T7533] EXT4-fs (loop0): ea_inode feature is not supported for Hurd
[  125.064520][   T29] audit: type=1400 audit(125.033:934): avc:  denied  { remount } for  pid=7536 comm="syz.0.1121" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  125.084991][ T7540] cgroup: Unknown subsys name 'euid>00000000000000000000'
[  125.096926][ T7540] SELinux:  Context system_u:object_r:systemd_passwd_agent_exec_t:s0 is not valid (left unmapped).
[  125.139445][ T7542] loop3: detected capacity change from 0 to 512
[  125.146400][   T29] audit: type=1400 audit(125.093:935): avc:  denied  { relabelto } for  pid=7536 comm="syz.0.1121" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:systemd_passwd_agent_exec_t:s0"
[  125.173141][   T29] audit: type=1400 audit(125.093:936): avc:  denied  { associate } for  pid=7536 comm="syz.0.1121" name="/" dev="cgroup2" ino=1 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 srawcon="system_u:object_r:systemd_passwd_agent_exec_t:s0"
[  125.351647][ T7553] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1126'.
[  125.360713][ T7553] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1126'.
[  125.398247][ T7558] netlink: 'syz.4.1128': attribute type 12 has an invalid length.
[  125.544049][ T7570] loop0: detected capacity change from 0 to 512
[  125.565133][ T7570] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1129: corrupted in-inode xattr: invalid ea_ino
[  125.587141][ T7570] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.1129: couldn't read orphan inode 15 (err -117)
[  125.853559][ T7597] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1134'.
[  125.875671][   T29] audit: type=1400 audit(125.853:937): avc:  denied  { read } for  pid=7587 comm="syz.4.1132" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  126.120217][   T29] audit: type=1326 audit(126.093:938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7609 comm="syz.0.1138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39f68079f9 code=0x7ffc0000
[  126.145872][   T29] audit: type=1326 audit(126.093:939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7609 comm="syz.0.1138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39f68079f9 code=0x7ffc0000
[  126.168798][   T29] audit: type=1326 audit(126.093:940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7609 comm="syz.0.1138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=276 compat=0 ip=0x7f39f68079f9 code=0x7ffc0000
[  126.191647][   T29] audit: type=1326 audit(126.093:941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7609 comm="syz.0.1138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39f68079f9 code=0x7ffc0000
[  126.236969][ T7616] netlink: 'syz.3.1141': attribute type 12 has an invalid length.
[  126.370522][ T7624] loop3: detected capacity change from 0 to 512
[  126.388099][ T7624] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #15: comm syz.3.1143: corrupted xattr block 19: ea_inode specified without ea_inode feature enabled
[  126.404135][ T7628] loop0: detected capacity change from 0 to 512
[  126.406201][ T7624] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  126.421304][ T7624] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #15: comm syz.3.1143: corrupted xattr block 19: ea_inode specified without ea_inode feature enabled
[  126.437967][ T7624] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  126.477070][ T7633] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1145'.
[  126.509273][ T7637] loop3: detected capacity change from 0 to 1024
[  126.743493][ T7647] bridge_slave_0: left allmulticast mode
[  126.749295][ T7647] bridge_slave_0: left promiscuous mode
[  126.755023][ T7647] bridge0: port 1(bridge_slave_0) entered disabled state
[  126.779640][ T7647] bridge_slave_1: left allmulticast mode
[  126.785517][ T7647] bridge_slave_1: left promiscuous mode
[  126.791460][ T7647] bridge0: port 2(bridge_slave_1) entered disabled state
[  126.832655][ T7647] bond0: (slave bond_slave_0): Releasing backup interface
[  126.870931][ T7647] bond0: (slave bond_slave_1): Releasing backup interface
[  126.931425][ T7647] team0: Port device team_slave_0 removed
[  127.076856][ T7647] team0: Port device team_slave_1 removed
[  127.110011][ T7647] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  127.117612][ T7647] batman_adv: batadv0: Removing interface: batadv_slave_0
[  127.132035][ T7647] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  127.139596][ T7647] batman_adv: batadv0: Removing interface: batadv_slave_1
[  127.189305][ T7649] 8021q: adding VLAN 0 to HW filter on device bond0
[  127.209612][ T7649] team0: Port device bond0 added
[  127.248834][ T7659] netlink: 'syz.4.1153': attribute type 12 has an invalid length.
[  127.277990][ T7672] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1156'.
[  127.310945][ T7674] loop2: detected capacity change from 0 to 512
[  127.411389][ T7682] loop3: detected capacity change from 0 to 512
[  127.440206][ T7686] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1160'.
[  127.457364][ T7686] bridge_slave_1: left allmulticast mode
[  127.463346][ T7686] bridge_slave_1: left promiscuous mode
[  127.469183][ T7686] bridge0: port 2(bridge_slave_1) entered disabled state
[  127.573194][ T7698] loop3: detected capacity change from 0 to 128
[  127.578546][ T7692] syzkaller0: entered promiscuous mode
[  127.582822][ T7698] vfat: Unknown parameter '@'
[  127.584996][ T7692] syzkaller0: entered allmulticast mode
[  127.619987][ T7700] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1164'.
[  127.681859][ T7706] loop0: detected capacity change from 0 to 1024
[  127.700821][ T7706] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  127.714575][ T7710] netlink: 'syz.2.1166': attribute type 12 has an invalid length.
[  127.719430][ T7706] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[  127.736128][ T7706] EXT4-fs (loop0): This should not happen!! Data will be lost
[  127.736128][ T7706] 
[  127.745982][ T7706] EXT4-fs (loop0): Total free blocks count 0
[  127.752125][ T7706] EXT4-fs (loop0): Free/Dirty block details
[  127.758076][ T7706] EXT4-fs (loop0): free_blocks=68451041280
[  127.763949][ T7706] EXT4-fs (loop0): dirty_blocks=16
[  127.769177][ T7706] EXT4-fs (loop0): Block reservation details
[  127.775213][ T7706] EXT4-fs (loop0): i_reserved_data_blocks=1
[  127.861926][ T7713] loop2: detected capacity change from 0 to 512
[  127.872125][ T7715] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1168'.
[  127.900397][ T7713] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  127.910959][ T7713] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 2147483647)!
[  127.921911][ T7713] EXT4-fs (loop2): group descriptors corrupted!
[  127.948059][ T7721] netlink: 'syz.3.1171': attribute type 1 has an invalid length.
[  127.955897][ T7721] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1171'.
[  127.978355][ T7723] loop2: detected capacity change from 0 to 512
[  127.985205][ T7727] FAULT_INJECTION: forcing a failure.
[  127.985205][ T7727] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  127.999188][ T7727] CPU: 0 UID: 0 PID: 7727 Comm: syz.3.1174 Not tainted 6.11.0-rc2-syzkaller-00013-gd4560686726f #0
[  128.009898][ T7727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  128.019985][ T7727] Call Trace:
[  128.023385][ T7727]  <TASK>
[  128.026323][ T7727]  dump_stack_lvl+0xf2/0x150
[  128.030949][ T7727]  dump_stack+0x15/0x20
[  128.035250][ T7727]  should_fail_ex+0x229/0x230
[  128.040006][ T7727]  should_fail_alloc_page+0xfd/0x110
[  128.045329][ T7727]  __alloc_pages_noprof+0x109/0x360
[  128.050669][ T7727]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  128.056064][ T7727]  vma_alloc_folio_noprof+0x1a0/0x2f0
[  128.061454][ T7727]  handle_mm_fault+0xd6d/0x2940
[  128.066323][ T7727]  ? mas_walk+0x204/0x320
[  128.070683][ T7727]  exc_page_fault+0x3b9/0x650
[  128.075436][ T7727]  asm_exc_page_fault+0x26/0x30
[  128.080314][ T7727] RIP: 0033:0x7f3225e4bb63
[  128.084826][ T7727] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  128.104572][ T7727] RSP: 002b:00007f3224c064a0 EFLAGS: 00010206
[  128.110646][ T7727] RAX: 0000000000011008 RBX: 00007f3224c06540 RCX: 00007f321c7e7000
[  128.118731][ T7727] RDX: 00007f3224c066e0 RSI: 000000000000000b RDI: 00007f3224c065e0
[  128.126742][ T7727] RBP: 000000000000000b R08: 0000000000000009 R09: 00000000000001ca
[  128.134832][ T7727] R10: 00000000000001d0 R11: 00007f3224c06540 R12: 0000000000000c01
[  128.142815][ T7727] R13: 00007f3226008480 R14: 00000000000000f6 R15: 00007f3224c065e0
[  128.150909][ T7727]  </TASK>
[  128.154064][ T7727] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  128.176792][ T7727] loop3: detected capacity change from 0 to 512
[  128.191353][ T7729] loop1: detected capacity change from 0 to 256
[  128.203536][ T7729] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  128.211919][ T7727] EXT4-fs (loop3): too many log groups per flexible block group
[  128.221874][ T7727] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  128.228987][ T7727] EXT4-fs (loop3): mount failed
[  128.295507][ T7741] netlink: 'syz.3.1179': attribute type 10 has an invalid length.
[  128.321209][ T7741] netlink: 'syz.3.1179': attribute type 10 has an invalid length.
[  128.337024][ T7741] bridge0: port 1(team0) entered blocking state
[  128.343409][ T7741] bridge0: port 1(team0) entered disabled state
[  128.353766][ T7741] team0: entered allmulticast mode
[  128.358989][ T7741] bond0: entered allmulticast mode
[  128.370191][ T7741] team0: entered promiscuous mode
[  128.375314][ T7741] bond0: entered promiscuous mode
[  128.381968][ T7177] EXT4-fs unmount: 17 callbacks suppressed
[  128.381984][ T7177] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.382340][ T7751] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1180'.
[  128.442680][ T7755] loop2: detected capacity change from 0 to 128
[  128.459728][ T7759] loop0: detected capacity change from 0 to 1024
[  128.463464][ T7762] sg_write: data in/out 54/154 bytes for SCSI command 0x0-- guessing data in;
[  128.463464][ T7762]    program syz.1.1183 not setting count and/or reply_len properly
[  128.471987][ T7764] random: crng reseeded on system resumption
[  128.495974][ T7759] EXT4-fs (loop0): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[  128.506844][ T7759] EXT4-fs (loop0): group descriptors corrupted!
[  128.577059][ T7771] mmap: syz.3.1186 (7771) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  128.610814][ T7771] loop3: detected capacity change from 0 to 512
[  128.619588][ T7771] EXT4-fs: Ignoring removed orlov option
[  128.627292][ T7771] EXT4-fs warning (device loop3): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  128.639011][ T7771] EXT4-fs warning (device loop3): dx_probe:881: Enable large directory feature to access it
[  128.649666][ T7771] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.1186: Corrupt directory, running e2fsck is recommended
[  128.659256][ T7782] loop0: detected capacity change from 0 to 1024
[  128.672940][ T7782] EXT4-fs: Invalid want_extra_isize 2014743805
[  128.691865][ T7771] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2
[  128.693622][ T7784] loop1: detected capacity change from 0 to 512
[  128.703397][ T7771] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.1186: corrupted in-inode xattr: overlapping e_value 
[  128.723348][ T7771] EXT4-fs (loop3): Remounting filesystem read-only
[  128.730937][ T7771] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.744366][ T7771] SELinux: (dev loop3, type ext4) getxattr errno 5
[  128.751907][ T7771] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.775191][ T7771] loop3: detected capacity change from 0 to 128
[  128.776603][ T7784] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.866006][ T7793] loop3: detected capacity change from 0 to 512
[  128.873139][ T7793] EXT4-fs (loop3): Couldn't mount because of unsupported optional features (29)
[  128.900041][ T3267] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.941568][ T7800] loop1: detected capacity change from 0 to 512
[  128.948707][ T7800] EXT4-fs: old and new quota format mixing
[  129.098382][ T7808] netlink: 'syz.1.1196': attribute type 2 has an invalid length.
[  129.347881][ T7812] loop2: detected capacity change from 0 to 256
[  129.354538][ T7812] msdos: Bad value for 'gid'
[  129.359183][ T7812] msdos: Bad value for 'gid'
[  129.366480][ T7812] xt_nat: multiple ranges no longer supported
[  129.428347][ T7813] loop2: detected capacity change from 0 to 1024
[  129.447244][ T7813] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  129.957189][   T29] kauditd_printk_skb: 9 callbacks suppressed
[  129.957208][   T29] audit: type=1400 audit(129.933:951): avc:  denied  { bind } for  pid=7830 comm="syz.1.1204" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  129.963862][ T7833] netlink: 'syz.4.1205': attribute type 12 has an invalid length.
[  130.117120][ T7836] loop1: detected capacity change from 0 to 512
[  130.124027][ T7836] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  130.145877][ T7177] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.147142][ T7836] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c018, mo2=0002]
[  130.164665][ T7836] System zones: 1-12
[  130.169176][ T7836] EXT4-fs (loop1): 1 truncate cleaned up
[  130.175980][ T7836] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.201422][ T7840] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1207'.
[  130.227017][ T3267] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.252358][ T7844] FAULT_INJECTION: forcing a failure.
[  130.252358][ T7844] name failslab, interval 1, probability 0, space 0, times 0
[  130.265260][ T7844] CPU: 1 UID: 0 PID: 7844 Comm: syz.1.1209 Not tainted 6.11.0-rc2-syzkaller-00013-gd4560686726f #0
[  130.275960][ T7844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  130.286089][ T7844] Call Trace:
[  130.289384][ T7844]  <TASK>
[  130.292315][ T7844]  dump_stack_lvl+0xf2/0x150
[  130.297031][ T7844]  dump_stack+0x15/0x20
[  130.301296][ T7844]  should_fail_ex+0x229/0x230
[  130.306081][ T7844]  ? fib_insert_alias+0x16d/0x770
[  130.311152][ T7844]  should_failslab+0x8f/0xb0
[  130.315977][ T7844]  kmem_cache_alloc_noprof+0x4c/0x290
[  130.321459][ T7844]  fib_insert_alias+0x16d/0x770
[  130.326333][ T7844]  ? fib_trie_unmerge+0x349/0xa70
[  130.331492][ T7844]  ? kmem_cache_alloc_noprof+0x1a6/0x290
[  130.337224][ T7844]  fib_trie_unmerge+0x454/0xa70
[  130.342109][ T7844]  ? fib_nl2rule+0x217/0xcb0
[  130.346716][ T7844]  fib_unmerge+0x7f/0x200
[  130.351049][ T7844]  fib4_rule_configure+0x10c/0x4f0
[  130.356226][ T7844]  fib_nl_newrule+0xa65/0xf70
[  130.360963][ T7844]  ? xa_load+0xb9/0xe0
[  130.365142][ T7844]  ? __memcg_slab_free_hook+0xc9/0x1e0
[  130.370618][ T7844]  ? __rcu_read_unlock+0x4e/0x70
[  130.375574][ T7844]  ? avc_has_perm_noaudit+0x1cc/0x210
[  130.381047][ T7844]  ? ns_capable+0x7d/0xb0
[  130.385532][ T7844]  ? __pfx_fib_nl_newrule+0x10/0x10
[  130.390749][ T7844]  rtnetlink_rcv_msg+0x6aa/0x710
[  130.395744][ T7844]  ? ref_tracker_free+0x3a5/0x410
[  130.400843][ T7844]  ? __dev_queue_xmit+0x161/0x1fe0
[  130.405978][ T7844]  netlink_rcv_skb+0x12c/0x230
[  130.410771][ T7844]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  130.416369][ T7844]  rtnetlink_rcv+0x1c/0x30
[  130.420900][ T7844]  netlink_unicast+0x593/0x670
[  130.425793][ T7844]  netlink_sendmsg+0x5cc/0x6e0
[  130.430696][ T7844]  ? __pfx_netlink_sendmsg+0x10/0x10
[  130.436016][ T7844]  __sock_sendmsg+0x140/0x180
[  130.440812][ T7844]  ____sys_sendmsg+0x312/0x410
[  130.445619][ T7844]  __sys_sendmsg+0x1e9/0x280
[  130.450248][ T7844]  __x64_sys_sendmsg+0x46/0x50
[  130.455138][ T7844]  x64_sys_call+0x2689/0x2d60
[  130.459946][ T7844]  do_syscall_64+0xc9/0x1c0
[  130.464474][ T7844]  ? clear_bhb_loop+0x55/0xb0
[  130.469190][ T7844]  ? clear_bhb_loop+0x55/0xb0
[  130.473898][ T7844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.479907][ T7844] RIP: 0033:0x7fb482ab79f9
[  130.484333][ T7844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.503972][ T7844] RSP: 002b:00007fb481737038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  130.512400][ T7844] RAX: ffffffffffffffda RBX: 00007fb482c45f80 RCX: 00007fb482ab79f9
[  130.520558][ T7844] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000003
[  130.528600][ T7844] RBP: 00007fb481737090 R08: 0000000000000000 R09: 0000000000000000
[  130.536600][ T7844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  130.544591][ T7844] R13: 0000000000000000 R14: 00007fb482c45f80 R15: 00007ffcd6259248
[  130.552683][ T7844]  </TASK>
[  130.568435][   T29] audit: type=1326 audit(130.543:952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7841 comm="syz.4.1208" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1a436f79f9 code=0x0
[  130.705705][   T29] audit: type=1326 audit(130.683:953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7851 comm="syz.1.1213" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb482ab79f9 code=0x0
[  130.749499][ T7855] loop2: detected capacity change from 0 to 1024
[  130.759201][ T7858] netlink: 'syz.1.1213': attribute type 2 has an invalid length.
[  130.760174][ T7855] EXT4-fs: Invalid want_extra_isize 2014743805
[  130.817936][ T7864] loop2: detected capacity change from 0 to 512
[  130.836490][ T7867] netlink: 'syz.3.1218': attribute type 12 has an invalid length.
[  130.839063][ T7864] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.013837][ T7880] loop3: detected capacity change from 0 to 512
[  131.026641][ T7880] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.040607][ T7880] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.051803][ T7177] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.082249][ T7886] loop4: detected capacity change from 0 to 512
[  131.090159][ T7886] EXT4-fs: old and new quota format mixing
[  131.112902][ T7890] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1224'.
[  131.172888][ T7893] loop3: detected capacity change from 0 to 1024
[  131.179690][ T7893] EXT4-fs: Invalid want_extra_isize 2014743805
[  131.221140][ T7900] netlink: 'syz.3.1229': attribute type 12 has an invalid length.
[  131.239550][ T7901] loop4: detected capacity change from 0 to 512
[  131.246793][ T7901] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  131.261295][ T7901] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  131.278546][ T7901] EXT4-fs (loop4): 1 truncate cleaned up
[  131.287164][ T7901] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.302734][ T7901] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.368690][ T7907] loop3: detected capacity change from 0 to 512
[  131.386610][ T7907] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.467304][ T7912] tipc: Started in network mode
[  131.472525][ T7912] tipc: Node identity 7f000001, cluster identity 4711
[  131.482918][ T7912] tipc: Enabled bearer <udp:syz1>, priority 10
[  131.489781][ T7912] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1230'.
[  131.565617][ T7317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.594095][   T29] audit: type=1326 audit(131.563:954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7916 comm="syz.1.1232" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb482ab79f9 code=0x0
[  131.650438][ T7926] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  131.659357][ T7926] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  131.669864][ T7926] loop0: detected capacity change from 0 to 164
[  131.678395][ T7926] Unable to read rock-ridge attributes
[  131.702850][ T7926] Unable to read rock-ridge attributes
[  131.710761][ T7928] loop3: detected capacity change from 0 to 512
[  131.719986][ T7928] EXT4-fs: old and new quota format mixing
[  131.827252][ T7930] loop3: detected capacity change from 0 to 8192
[  131.865747][ T7930]  loop3: p1 p2 p3 p4
[  131.869805][ T7930] loop3: p1 start 51379968 is beyond EOD, truncated
[  131.876474][ T7930] loop3: p2 start 4293394690 is beyond EOD, truncated
[  131.883315][ T7930] loop3: p3 size 100663552 extends beyond EOD, truncated
[  131.893586][ T7930] loop3: p4 size 50331648 extends beyond EOD, truncated
[  131.903501][ T7930] netlink: 'syz.3.1236': attribute type 24 has an invalid length.
[  132.027167][ T7944] loop4: detected capacity change from 0 to 512
[  132.046830][ T7944] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.072944][ T6709] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.088496][ T7950] loop3: detected capacity change from 0 to 512
[  132.095190][ T7952] netlink: 'syz.4.1241': attribute type 12 has an invalid length.
[  132.095406][ T7950] EXT4-fs: old and new quota format mixing
[  132.273062][ T7959] loop4: detected capacity change from 0 to 512
[  132.289042][ T7960] loop2: detected capacity change from 0 to 2048
[  132.303644][   T29] audit: type=1400 audit(132.273:955): avc:  denied  { ioctl } for  pid=7963 comm="syz.0.1247" path="socket:[21260]" dev="sockfs" ino=21260 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  132.324491][ T7960] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.334315][ T7959] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.349441][   T29] audit: type=1400 audit(132.323:956): avc:  denied  { bind } for  pid=7963 comm="syz.0.1247" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  132.403181][ T7980] 9pnet_fd: Insufficient options for proto=fd
[  132.403367][ T7978] loop1: detected capacity change from 0 to 1024
[  132.411266][ T7177] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.426210][ T7978] EXT4-fs: Ignoring removed orlov option
[  132.431921][ T7978] EXT4-fs: Ignoring removed nomblk_io_submit option
[  132.460785][ T7978] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.465806][   T29] audit: type=1400 audit(132.443:957): avc:  denied  { getopt } for  pid=7983 comm="syz.3.1252" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  132.515478][ T3335] tipc: Node number set to 2130706433
[  132.517138][ T7995] netlink: 'syz.2.1253': attribute type 12 has an invalid length.
[  132.531554][ T3267] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.551634][ T6709] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.640724][ T7998] loop3: detected capacity change from 0 to 4096
[  132.685949][ T7998] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.696656][ T8004] FAULT_INJECTION: forcing a failure.
[  132.696656][ T8004] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  132.711763][ T8004] CPU: 1 UID: 0 PID: 8004 Comm: syz.4.1256 Not tainted 6.11.0-rc2-syzkaller-00013-gd4560686726f #0
[  132.722503][ T8004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  132.732644][ T8004] Call Trace:
[  132.735989][ T8004]  <TASK>
[  132.738929][ T8004]  dump_stack_lvl+0xf2/0x150
[  132.743648][ T8004]  dump_stack+0x15/0x20
[  132.748002][ T8004]  should_fail_ex+0x229/0x230
[  132.752705][ T8004]  should_fail_alloc_page+0xfd/0x110
[  132.758141][ T8004]  __alloc_pages_noprof+0x109/0x360
[  132.763377][ T8004]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  132.768914][ T8004]  vma_alloc_folio_noprof+0x1a0/0x2f0
[  132.774456][ T8004]  handle_mm_fault+0xd6d/0x2940
[  132.779346][ T8004]  ? mas_walk+0x204/0x320
[  132.783728][ T8004]  exc_page_fault+0x3b9/0x650
[  132.788468][ T8004]  asm_exc_page_fault+0x26/0x30
[  132.793417][ T8004] RIP: 0033:0x7f1a435bbb63
[  132.797941][ T8004] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  132.817674][ T8004] RSP: 002b:00007f1a423764a0 EFLAGS: 00010206
[  132.823776][ T8004] RAX: 0000000000002000 RBX: 00007f1a42376540 RCX: 00007f1a39f57000
[  132.831853][ T8004] RDX: 00007f1a423766e0 RSI: 0000000000000007 RDI: 00007f1a423765e0
[  132.839963][ T8004] RBP: 000000000000000c R08: 0000000000000009 R09: 00000000000001bb
[  132.847958][ T8004] R10: 00000000000001c0 R11: 00007f1a42376540 R12: 0000000000000001
[  132.855952][ T8004] R13: 00007f1a43778480 R14: 00000000000000ed R15: 00007f1a423765e0
[  132.864131][ T8004]  </TASK>
[  132.867225][ T8004] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  132.883248][ T8004] loop4: detected capacity change from 0 to 1024
[  132.891908][ T7317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.907626][ T8004] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[  132.907989][ T8009] Cannot find add_set index 0 as target
[  132.918657][ T8004] EXT4-fs (loop4): group descriptors corrupted!
[  132.979922][ T8019] FAULT_INJECTION: forcing a failure.
[  132.979922][ T8019] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  132.993301][ T8019] CPU: 1 UID: 0 PID: 8019 Comm: syz.2.1261 Not tainted 6.11.0-rc2-syzkaller-00013-gd4560686726f #0
[  133.004052][ T8019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  133.014172][ T8019] Call Trace:
[  133.017446][ T8019]  <TASK>
[  133.020373][ T8019]  dump_stack_lvl+0xf2/0x150
[  133.025099][ T8019]  dump_stack+0x15/0x20
[  133.029295][ T8019]  should_fail_ex+0x229/0x230
[  133.034043][ T8019]  should_fail_alloc_page+0xfd/0x110
[  133.039338][ T8019]  __alloc_pages_noprof+0x109/0x360
[  133.044682][ T8019]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  133.050123][ T8019]  folio_alloc_mpol_noprof+0x36/0x70
[  133.055441][ T8019]  shmem_get_folio_gfp+0x3eb/0xd80
[  133.060602][ T8019]  shmem_write_begin+0xa0/0x1c0
[  133.065476][ T8019]  generic_perform_write+0x1b4/0x580
[  133.070938][ T8019]  shmem_file_write_iter+0xc8/0xf0
[  133.076105][ T8019]  vfs_write+0x78f/0x900
[  133.080397][ T8019]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  133.086312][ T8019]  ksys_write+0xeb/0x1b0
[  133.090642][ T8019]  __x64_sys_write+0x42/0x50
[  133.095338][ T8019]  x64_sys_call+0x27dd/0x2d60
[  133.100056][ T8019]  do_syscall_64+0xc9/0x1c0
[  133.104572][ T8019]  ? clear_bhb_loop+0x55/0xb0
[  133.109341][ T8019]  ? clear_bhb_loop+0x55/0xb0
[  133.114063][ T8019]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.119999][ T8019] RIP: 0033:0x7f042e4064df
[  133.124424][ T8019] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8d 02 00 48
[  133.144133][ T8019] RSP: 002b:00007f042d086d40 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  133.152558][ T8019] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f042e4064df
[  133.160541][ T8019] RDX: 0000000000100000 RSI: 00007f0424c67000 RDI: 0000000000000007
[  133.168526][ T8019] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000603
[  133.176588][ T8019] R10: 00000000000003d0 R11: 0000000000000293 R12: 0000000000000007
[  133.184582][ T8019] R13: 00007f042d086dec R14: 00007f042d086df0 R15: 00007f0424c67000
[  133.192571][ T8019]  </TASK>
[  133.233667][ T8031] loop1: detected capacity change from 0 to 2048
[  133.245002][ T8031] ext4: Bad value for 'stripe'
[  133.265832][ T8037] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1265'.
[  133.274915][ T8037] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1265'.
[  133.287370][ T8037] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  133.304614][ T8037] loop2: detected capacity change from 0 to 256
[  133.318355][ T8037] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1265'.
[  133.431120][   T29] audit: type=1400 audit(133.403:958): avc:  denied  { ioctl } for  pid=8047 comm="syz.3.1269" path="pid:[4026532510]" dev="nsfs" ino=4026532510 ioctlcmd=0xb704 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  133.441409][ T8048] loop3: detected capacity change from 0 to 2048
[  133.470045][ T8049] loop0: detected capacity change from 0 to 512
[  133.487455][ T8048] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  133.487997][ T8049] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.542829][ T6770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.561694][ T8058] loop0: detected capacity change from 0 to 128
[  133.570838][ T8058] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  133.592788][ T6770] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  133.609962][ T3334] IPVS: starting estimator thread 0...
[  133.612584][ T8063] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1273'.
[  133.627923][   T29] audit: type=1400 audit(133.603:959): avc:  denied  { accept } for  pid=8062 comm="syz.4.1273" lport=40395 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  133.690415][ T8075] loop0: detected capacity change from 0 to 1024
[  133.699709][ T8075] EXT4-fs: Ignoring removed orlov option
[  133.705530][ T8075] EXT4-fs: Ignoring removed nomblk_io_submit option
[  133.712371][ T8064] IPVS: using max 2448 ests per chain, 122400 per kthread
[  133.727116][ T8075] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  133.729497][ T8077] netlink: 42 bytes leftover after parsing attributes in process `syz.4.1277'.
[  133.755738][ T8077] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1277'.
[  133.768393][ T6770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.788482][ T8083] 9pnet_fd: Insufficient options for proto=fd
[  133.878955][ T8094] validate_nla: 2 callbacks suppressed
[  133.879013][ T8094] netlink: 'syz.4.1281': attribute type 12 has an invalid length.
[  134.012673][ T8097] 9pnet_fd: Insufficient options for proto=fd
[  134.272440][ T7317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.388996][ T8106] FAULT_INJECTION: forcing a failure.
[  134.388996][ T8106] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  134.402170][ T8106] CPU: 0 UID: 0 PID: 8106 Comm: syz.3.1285 Not tainted 6.11.0-rc2-syzkaller-00013-gd4560686726f #0
[  134.412966][ T8106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  134.423126][ T8106] Call Trace:
[  134.426422][ T8106]  <TASK>
[  134.429391][ T8106]  dump_stack_lvl+0xf2/0x150
[  134.433996][ T8106]  dump_stack+0x15/0x20
[  134.438201][ T8106]  should_fail_ex+0x229/0x230
[  134.442928][ T8106]  should_fail+0xb/0x10
[  134.447112][ T8106]  should_fail_usercopy+0x1a/0x20
[  134.452181][ T8106]  copy_page_from_iter_atomic+0x22a/0xda0
[  134.457947][ T8106]  ? shmem_write_begin+0xa0/0x1c0
[  134.463004][ T8106]  ? shmem_write_begin+0x10c/0x1c0
[  134.468157][ T8106]  generic_perform_write+0x323/0x580
[  134.473495][ T8106]  shmem_file_write_iter+0xc8/0xf0
[  134.478623][ T8106]  vfs_write+0x78f/0x900
[  134.482875][ T8106]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  134.488801][ T8106]  ksys_write+0xeb/0x1b0
[  134.493137][ T8106]  __x64_sys_write+0x42/0x50
[  134.497756][ T8106]  x64_sys_call+0x27dd/0x2d60
[  134.502446][ T8106]  do_syscall_64+0xc9/0x1c0
[  134.506970][ T8106]  ? clear_bhb_loop+0x55/0xb0
[  134.511789][ T8106]  ? clear_bhb_loop+0x55/0xb0
[  134.516498][ T8106]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.522533][ T8106] RIP: 0033:0x7f3225f864df
[  134.526947][ T8106] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8d 02 00 48
[  134.546611][ T8106] RSP: 002b:00007f3224c06df0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  134.555099][ T8106] RAX: ffffffffffffffda RBX: 0000000000080000 RCX: 00007f3225f864df
[  134.563166][ T8106] RDX: 0000000000080000 RSI: 00007f321c7e7000 RDI: 0000000000000004
[  134.571197][ T8106] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000563
[  134.579174][ T8106] R10: 0000000020000f02 R11: 0000000000000293 R12: 0000000000000004
[  134.587217][ T8106] R13: 00007f3224c06ef0 R14: 00007f3224c06eb0 R15: 00007f321c7e7000
[  134.595217][ T8106]  </TASK>
[  134.603549][ T8106] loop3: detected capacity change from 0 to 1024
[  134.610749][ T8106] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  134.620661][ T8106] EXT4-fs (loop3): group descriptors corrupted!
[  134.709823][ T8121] netlink: 'syz.3.1292': attribute type 12 has an invalid length.
[  134.781378][ T8125] loop1: detected capacity change from 0 to 128
[  134.790508][ T8125] vfat: Unknown parameter '@'
[  134.811824][ T8117] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1290'.
[  134.846954][ T8128] loop1: detected capacity change from 0 to 512
[  134.854540][ T8128] EXT4-fs: old and new quota format mixing
[  134.930622][ T8134] 9pnet_fd: Insufficient options for proto=fd
[  134.933065][ T8136] loop0: detected capacity change from 0 to 512
[  134.948856][ T8136] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.983032][ T8143] hsr_slave_0: left promiscuous mode
[  134.996708][   T29] audit: type=1326 audit(134.973:960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8145 comm="syz.3.1300" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3225f879f9 code=0x0
[  135.031039][ T8143] hsr_slave_1: left promiscuous mode
[  135.077355][ T8149] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1299'.
[  135.090019][ T8151] syzkaller1: entered promiscuous mode
[  135.095885][ T8151] syzkaller1: entered allmulticast mode
[  135.108581][ T6770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.130699][   T29] audit: type=1326 audit(135.103:961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8152 comm="syz.0.1301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39f68079f9 code=0x7ffc0000
[  135.153702][   T29] audit: type=1326 audit(135.103:962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8152 comm="syz.0.1301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39f68079f9 code=0x7ffc0000
[  135.177166][   T29] audit: type=1326 audit(135.103:963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8152 comm="syz.0.1301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=276 compat=0 ip=0x7f39f68079f9 code=0x7ffc0000
[  135.200175][   T29] audit: type=1326 audit(135.103:964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8152 comm="syz.0.1301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39f68079f9 code=0x7ffc0000
[  135.230456][ T8157] netlink: 14 bytes leftover after parsing attributes in process `syz.0.1303'.
[  135.282200][ T8160] loop4: detected capacity change from 0 to 512
[  135.302062][ T8161] loop0: detected capacity change from 0 to 128
[  135.310068][ T8161] vfat: Unknown parameter '@'
[  135.317224][ T8160] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.1302: bg 0: block 5: invalid block bitmap
[  135.329905][ T8160] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  135.339140][ T8160] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1302: invalid indirect mapped block 3 (level 2)
[  135.353089][ T8160] EXT4-fs (loop4): 1 orphan inode deleted
[  135.358988][ T8160] EXT4-fs (loop4): 1 truncate cleaned up
[  135.365364][ T8160] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.428578][ T8164] loop0: detected capacity change from 0 to 512
[  135.458185][ T8164] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.754820][ T8183] loop2: detected capacity change from 0 to 512
[  135.762067][ T8183] EXT4-fs: old and new quota format mixing
[  135.848725][ T8189] loop2: detected capacity change from 0 to 512
[  135.866422][ T8189] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.903159][ T8193] netlink: 'syz.3.1312': attribute type 10 has an invalid length.
[  135.911176][ T8193] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1312'.
[  135.921099][ T8193] ipvlan0: entered promiscuous mode
[  135.926455][ T8193] ipvlan0: entered allmulticast mode
[  135.931874][ T8193] veth0_vlan: entered allmulticast mode
[  135.945444][ T8193] bridge0: port 2(ipvlan0) entered blocking state
[  135.952046][ T8193] bridge0: port 2(ipvlan0) entered disabled state
[  135.963353][ T8193] A link change request failed with some changes committed already. Interface ipvlan0 may have been left with an inconsistent configuration, please check.
[  135.991210][ T8197] ip6tnl1: entered promiscuous mode
[  135.996761][ T8197] ip6tnl1: entered allmulticast mode
[  136.025234][ T6709] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.048894][   T29] audit: type=1400 audit(136.023:965): avc:  denied  { wake_alarm } for  pid=8200 comm="syz.1.1316" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  136.073368][ T7177] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.097693][ T8203] loop4: detected capacity change from 0 to 256
[  136.238377][ T8210] loop3: detected capacity change from 0 to 2048
[  136.247080][ T8212] 9pnet_fd: Insufficient options for proto=fd
[  136.262552][ T6770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.286920][ T8210]  loop3: p2 < >
[  136.968388][   T29] audit: type=1400 audit(136.943:966): avc:  denied  { connect } for  pid=8221 comm="syz.2.1323" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  137.043267][ T8224] tmpfs: Bad value for 'nr_inodes'
[  137.043912][   T29] audit: type=1400 audit(137.013:967): avc:  denied  { nlmsg_read } for  pid=8223 comm="syz.4.1322" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  137.068491][   T29] audit: type=1400 audit(137.013:968): avc:  denied  { mounton } for  pid=8223 comm="syz.4.1322" path="/93/file0" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:systemd_passwd_agent_exec_t:s0"
[  137.150861][ T8230] loop0: detected capacity change from 0 to 512
[  137.169652][ T8236] Process accounting resumed
[  137.177328][ T8230] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.240255][ T8246] loop4: detected capacity change from 0 to 128
[  137.247306][ T8246] vfat: Unknown parameter '@'
[  137.290473][ T8247] loop2: detected capacity change from 0 to 256
[  137.321287][ T8257] program syz.4.1336 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  137.436244][ T6770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.462788][   T29] audit: type=1400 audit(137.433:969): avc:  denied  { write } for  pid=8261 comm="syz.0.1337" name="fdinfo" dev="proc" ino=22803 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  137.547472][ T8264] netlink: 'syz.0.1338': attribute type 1 has an invalid length.
[  137.625162][ T8272] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  137.662424][ T8274] bridge0: entered allmulticast mode
[  137.668145][ T8274] bridge0: left allmulticast mode
[  137.733660][ T8278] loop0: detected capacity change from 0 to 128
[  137.740376][ T8278] vfat: Unknown parameter '@'
[  137.784011][ T8280] nftables ruleset with unbound set
[  137.809876][ T8282] loop0: detected capacity change from 0 to 512
[  137.829501][ T8282] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.944336][ T6770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.965903][ T8289] team1 (uninitialized): Failed to send options change via netlink (err -105)
[  137.981046][ T8291] FAULT_INJECTION: forcing a failure.
[  137.981046][ T8291] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  137.994438][ T8291] CPU: 0 UID: 0 PID: 8291 Comm: syz.1.1349 Not tainted 6.11.0-rc2-syzkaller-00013-gd4560686726f #0
[  138.000613][ T8293] FAULT_INJECTION: forcing a failure.
[  138.000613][ T8293] name failslab, interval 1, probability 0, space 0, times 0
[  138.005123][ T8291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  138.005140][ T8291] Call Trace:
[  138.005148][ T8291]  <TASK>
[  138.005156][ T8291]  dump_stack_lvl+0xf2/0x150
[  138.038812][ T8291]  dump_stack+0x15/0x20
[  138.043001][ T8291]  should_fail_ex+0x229/0x230
[  138.047705][ T8291]  should_fail_alloc_page+0xfd/0x110
[  138.053024][ T8291]  __alloc_pages_noprof+0x109/0x360
[  138.058254][ T8291]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  138.063661][ T8291]  vma_alloc_folio_noprof+0x1a0/0x2f0
[  138.069174][ T8291]  handle_mm_fault+0xd6d/0x2940
[  138.074073][ T8291]  ? mas_walk+0x204/0x320
[  138.078514][ T8291]  exc_page_fault+0x3b9/0x650
[  138.083315][ T8291]  asm_exc_page_fault+0x26/0x30
[  138.088403][ T8291] RIP: 0033:0x7fb48297bb63
[  138.092871][ T8291] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  138.112500][ T8291] RSP: 002b:00007fb4817364a0 EFLAGS: 00010206
[  138.118577][ T8291] RAX: 0000000000011008 RBX: 00007fb481736540 RCX: 00007fb479317000
[  138.126557][ T8291] RDX: 00007fb4817366e0 RSI: 000000000000000b RDI: 00007fb4817365e0
[  138.134657][ T8291] RBP: 000000000000000b R08: 0000000000000009 R09: 00000000000001ca
[  138.142675][ T8291] R10: 00000000000001d0 R11: 00007fb481736540 R12: 0000000000000c01
[  138.150723][ T8291] R13: 00007fb482b38480 R14: 00000000000000f6 R15: 00007fb4817365e0
[  138.158734][ T8291]  </TASK>
[  138.161764][ T8293] CPU: 1 UID: 0 PID: 8293 Comm: syz.0.1350 Not tainted 6.11.0-rc2-syzkaller-00013-gd4560686726f #0
[  138.162187][ T8291] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  138.172590][ T8293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  138.172669][ T8293] Call Trace:
[  138.172677][ T8293]  <TASK>
[  138.172686][ T8293]  dump_stack_lvl+0xf2/0x150
[  138.201062][ T8293]  dump_stack+0x15/0x20
[  138.205320][ T8293]  should_fail_ex+0x229/0x230
[  138.210024][ T8293]  ? sock_kmalloc+0x83/0xc0
[  138.214552][ T8293]  should_failslab+0x8f/0xb0
[  138.219247][ T8293]  __kmalloc_noprof+0xa5/0x370
[  138.224074][ T8293]  sock_kmalloc+0x83/0xc0
[  138.228508][ T8293]  ____sys_sendmsg+0x127/0x410
[  138.233322][ T8293]  __sys_sendmsg+0x1e9/0x280
[  138.237940][ T8293]  __x64_sys_sendmsg+0x46/0x50
[  138.242723][ T8293]  x64_sys_call+0x2689/0x2d60
[  138.247482][ T8293]  do_syscall_64+0xc9/0x1c0
[  138.252071][ T8293]  ? clear_bhb_loop+0x55/0xb0
[  138.256870][ T8293]  ? clear_bhb_loop+0x55/0xb0
[  138.261662][ T8293]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.267643][ T8293] RIP: 0033:0x7f39f68079f9
[  138.272161][ T8293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.291873][ T8293] RSP: 002b:00007f39f5487038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  138.300296][ T8293] RAX: ffffffffffffffda RBX: 00007f39f6995f80 RCX: 00007f39f68079f9
[  138.308342][ T8293] RDX: 0000000000000000 RSI: 00000000200019c0 RDI: 0000000000000003
[  138.316433][ T8293] RBP: 00007f39f5487090 R08: 0000000000000000 R09: 0000000000000000
[  138.324692][ T8293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  138.332683][ T8293] R13: 0000000000000000 R14: 00007f39f6995f80 R15: 00007ffc0781ff18
[  138.340673][ T8293]  </TASK>
[  138.351938][ T8291] loop1: detected capacity change from 0 to 512
[  138.391131][ T8291] EXT4-fs (loop1): too many log groups per flexible block group
[  138.398972][ T8291] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  138.428961][ T8291] EXT4-fs (loop1): mount failed
[  138.474657][ T8307] loop4: detected capacity change from 0 to 1764
[  138.481424][ T8307] iso9660: Bad value for 'uid'
[  138.486459][ T8307] iso9660: Bad value for 'uid'
[  138.538558][ T8300] __nla_validate_parse: 3 callbacks suppressed
[  138.538578][ T8300] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1352'.
[  138.557390][ T8319] loop4: detected capacity change from 0 to 512
[  138.581986][ T8319] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.600452][ T8326] loop1: detected capacity change from 0 to 512
[  138.610358][ T8326] EXT4-fs: old and new quota format mixing
[  138.638779][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x7
[  138.646465][   T24] hid-generic 0000:0000:0000.0001: ignoring exceeding usage max
[  138.658104][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  138.668904][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  138.676858][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  138.684493][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  138.691951][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  138.699396][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  138.706866][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  138.714322][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  138.721929][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  138.729508][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  138.737068][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  138.744483][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  138.752106][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  138.754466][ T8335] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1360'.
[  138.759574][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  138.776111][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  138.781188][ T8335] loop3: detected capacity change from 0 to 1024
[  138.783598][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  138.783628][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  138.794904][ T8335] EXT4-fs: Ignoring removed nomblk_io_submit option
[  138.797675][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  138.816667][ T8335] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.819212][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  138.838690][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  138.846216][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  138.854771][   T24] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  138.865270][ T6709] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.883836][ T7317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.951806][ T8348] loop1: detected capacity change from 0 to 512
[  138.960956][ T8350] loop3: detected capacity change from 0 to 256
[  139.037098][ T8348] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.110398][ T3267] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.149691][ T8358] capability: warning: `syz.1.1368' uses 32-bit capabilities (legacy support in use)
[  139.164409][ T8358] loop1: detected capacity change from 0 to 512
[  139.221249][ T8362] loop1: detected capacity change from 0 to 2048
[  139.239010][ T8362] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.267464][ T3267] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.294082][ T8366] loop1: detected capacity change from 0 to 512
[  139.306475][ T8366] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.354196][ T8370] bridge_slave_1: left allmulticast mode
[  139.359986][ T8370] bridge_slave_1: left promiscuous mode
[  139.365841][ T8370] bridge0: port 2(bridge_slave_1) entered disabled state
[  139.614812][ T8376] netlink: 'syz.2.1374': attribute type 2 has an invalid length.
[  139.622409][ T8380] loop0: detected capacity change from 0 to 1024
[  139.630036][ T8380] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (47082!=20869)
[  139.643058][ T8380] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  139.659319][ T8380] JBD2: no valid journal superblock found
[  139.665348][ T8380] EXT4-fs (loop0): Could not load journal inode
[  139.775171][ T8386] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1378'.
[  139.799807][ T8394] loop2: detected capacity change from 0 to 256
[  139.824616][ T8394] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  139.873499][ T8400] loop0: detected capacity change from 0 to 128
[  140.042987][ T8411] FAULT_INJECTION: forcing a failure.
[  140.042987][ T8411] name failslab, interval 1, probability 0, space 0, times 0
[  140.055789][ T8411] CPU: 1 UID: 0 PID: 8411 Comm: syz.3.1387 Not tainted 6.11.0-rc2-syzkaller-00013-gd4560686726f #0
[  140.066599][ T8411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  140.076722][ T8411] Call Trace:
[  140.080034][ T8411]  <TASK>
[  140.083070][ T8411]  dump_stack_lvl+0xf2/0x150
[  140.087723][ T8411]  dump_stack+0x15/0x20
[  140.091904][ T8411]  should_fail_ex+0x229/0x230
[  140.096616][ T8411]  ? __anon_vma_prepare+0xcf/0x310
[  140.101785][ T8411]  should_failslab+0x8f/0xb0
[  140.106559][ T8411]  kmem_cache_alloc_noprof+0x4c/0x290
[  140.111971][ T8411]  __anon_vma_prepare+0xcf/0x310
[  140.116953][ T8411]  ? do_wp_page+0xfb8/0x22c0
[  140.121576][ T8411]  do_wp_page+0xfc0/0x22c0
[  140.126034][ T8411]  ? __rcu_read_lock+0x36/0x50
[  140.130836][ T8411]  ? __rcu_read_lock+0x36/0x50
[  140.135807][ T8411]  handle_mm_fault+0xbf0/0x2940
[  140.140821][ T8411]  ? mas_walk+0x204/0x320
[  140.145234][ T8411]  exc_page_fault+0x3b9/0x650
[  140.150060][ T8411]  asm_exc_page_fault+0x26/0x30
[  140.155058][ T8411] RIP: 0033:0x7f3225e4bb63
[  140.159497][ T8411] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  140.179281][ T8411] RSP: 002b:00007f3224c064a0 EFLAGS: 00010202
[  140.185412][ T8411] RAX: 0000000000000400 RBX: 00007f3224c06540 RCX: 00007f321c7e7000
[  140.193450][ T8411] RDX: 00007f3224c066e0 RSI: 0000000000000000 RDI: 00007f3224c065e0
[  140.201552][ T8411] RBP: 00000000000000f9 R08: 0000000000000008 R09: 00000000000000a4
[  140.209575][ T8411] R10: 00000000000000be R11: 00007f3224c06540 R12: 0000000000000001
[  140.217635][ T8411] R13: 00007f3226008480 R14: 0000000000000020 R15: 00007f3224c065e0
[  140.225638][ T8411]  </TASK>
[  140.228957][ T8411] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  140.237668][ T8413] netlink: 'syz.0.1386': attribute type 2 has an invalid length.
[  140.246003][   T29] kauditd_printk_skb: 157 callbacks suppressed
[  140.246073][   T29] audit: type=1326 audit(140.213:1127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8406 comm="syz.0.1386" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f39f68079f9 code=0x0
[  140.253309][ T8411] loop3: detected capacity change from 0 to 512
[  140.282658][ T8411] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  140.296943][ T8411] EXT4-fs (loop3): 1 truncate cleaned up
[  140.310236][ T8411] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  140.317966][ T3267] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.354532][ T7317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.393576][ T8425] loop3: detected capacity change from 0 to 2048
[  140.406647][ T8427] loop0: detected capacity change from 0 to 256
[  140.414129][ T8425] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  140.462457][ T7317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.580062][ T8437] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1396'.
[  140.623405][ T8440] FAULT_INJECTION: forcing a failure.
[  140.623405][ T8440] name failslab, interval 1, probability 0, space 0, times 0
[  140.636142][ T8440] CPU: 1 UID: 0 PID: 8440 Comm: syz.3.1397 Not tainted 6.11.0-rc2-syzkaller-00013-gd4560686726f #0
[  140.647000][ T8440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  140.657130][ T8440] Call Trace:
[  140.660424][ T8440]  <TASK>
[  140.663396][ T8440]  dump_stack_lvl+0xf2/0x150
[  140.668021][ T8440]  dump_stack+0x15/0x20
[  140.672246][ T8440]  should_fail_ex+0x229/0x230
[  140.677049][ T8440]  ? fib_insert_alias+0x16d/0x770
[  140.682113][ T8440]  should_failslab+0x8f/0xb0
[  140.686906][ T8440]  kmem_cache_alloc_noprof+0x4c/0x290
[  140.692304][ T8440]  fib_insert_alias+0x16d/0x770
[  140.697368][ T8440]  ? fib_trie_unmerge+0x349/0xa70
[  140.702444][ T8440]  ? kmem_cache_alloc_noprof+0x1a6/0x290
[  140.708119][ T8440]  fib_trie_unmerge+0x454/0xa70
[  140.713061][ T8440]  ? fib_nl2rule+0x217/0xcb0
[  140.717741][ T8440]  fib_unmerge+0x7f/0x200
[  140.722162][ T8440]  fib4_rule_configure+0x10c/0x4f0
[  140.727299][ T8440]  fib_nl_newrule+0xa65/0xf70
[  140.732160][ T8440]  ? xa_load+0xb9/0xe0
[  140.736255][ T8440]  ? __memcg_slab_free_hook+0xc9/0x1e0
[  140.741780][ T8440]  ? __rcu_read_unlock+0x4e/0x70
[  140.746732][ T8440]  ? avc_has_perm_noaudit+0x1cc/0x210
[  140.752199][ T8440]  ? ns_capable+0x7d/0xb0
[  140.756673][ T8440]  ? __pfx_fib_nl_newrule+0x10/0x10
[  140.762416][ T8440]  rtnetlink_rcv_msg+0x6aa/0x710
[  140.767375][ T8440]  ? ref_tracker_free+0x3a5/0x410
[  140.772588][ T8440]  ? __dev_queue_xmit+0x161/0x1fe0
[  140.777719][ T8440]  netlink_rcv_skb+0x12c/0x230
[  140.782589][ T8440]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  140.788125][ T8440]  rtnetlink_rcv+0x1c/0x30
[  140.792698][ T8440]  netlink_unicast+0x593/0x670
[  140.797581][ T8440]  netlink_sendmsg+0x5cc/0x6e0
[  140.802378][ T8440]  ? __pfx_netlink_sendmsg+0x10/0x10
[  140.807694][ T8440]  __sock_sendmsg+0x140/0x180
[  140.812407][ T8440]  ____sys_sendmsg+0x312/0x410
[  140.817213][ T8440]  __sys_sendmsg+0x1e9/0x280
[  140.821888][ T8440]  __x64_sys_sendmsg+0x46/0x50
[  140.826702][ T8440]  x64_sys_call+0x2689/0x2d60
[  140.831415][ T8440]  do_syscall_64+0xc9/0x1c0
[  140.835944][ T8440]  ? clear_bhb_loop+0x55/0xb0
[  140.840697][ T8440]  ? clear_bhb_loop+0x55/0xb0
[  140.845413][ T8440]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.851441][ T8440] RIP: 0033:0x7f3225f879f9
[  140.855913][ T8440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  140.875556][ T8440] RSP: 002b:00007f3224c07038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  140.884438][ T8440] RAX: ffffffffffffffda RBX: 00007f3226115f80 RCX: 00007f3225f879f9
[  140.892461][ T8440] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000003
[  140.900561][ T8440] RBP: 00007f3224c07090 R08: 0000000000000000 R09: 0000000000000000
[  140.908576][ T8440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  140.916558][ T8440] R13: 0000000000000000 R14: 00007f3226115f80 R15: 00007ffc9c0fb248
[  140.924560][ T8440]  </TASK>
[  140.961612][ T8444] loop2: detected capacity change from 0 to 512
[  140.996698][ T8444] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.011700][   T29] audit: type=1326 audit(140.983:1128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8442 comm="syz.3.1399" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3225f879f9 code=0x0
[  141.051911][ T8452] loop4: detected capacity change from 0 to 512
[  141.065855][ T8452] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.1401: casefold flag without casefold feature
[  141.068206][ T8443] netlink: 'syz.3.1399': attribute type 2 has an invalid length.
[  141.089109][ T8452] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.1401: couldn't read orphan inode 15 (err -117)
[  141.103453][ T8452] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.224574][ T8457] loop3: detected capacity change from 0 to 512
[  141.390724][ T6709] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.517288][ T8482] loop0: detected capacity change from 0 to 1764
[  141.575565][ T8482] iso9660: Bad value for 'uid'
[  141.580461][ T8482] iso9660: Bad value for 'uid'
[  141.691743][   T29] audit: type=1326 audit(141.663:1129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8485 comm="syz.1.1412" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb482ab79f9 code=0x0
[  141.737525][ T8490] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  141.746418][ T8490] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  141.755612][ T8490] SELinux:  policydb version -1714778791 does not match my version range 15-33
[  141.757759][   T29] audit: type=1400 audit(141.733:1130): avc:  denied  { load_policy } for  pid=8489 comm="syz.4.1413" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  141.764975][ T8490] SELinux: failed to load policy
[  141.796555][ T8491] netlink: 'syz.1.1412': attribute type 2 has an invalid length.
[  141.842693][ T8495] loop2: detected capacity change from 0 to 256
[  142.229047][ T8506] loop3: detected capacity change from 0 to 2048
[  142.259988][ T8506] random: crng reseeded on system resumption
[  142.350969][ T8512] loop0: detected capacity change from 0 to 512
[  142.357785][ T8512] EXT4-fs: Ignoring removed bh option
[  142.365320][ T8512] EXT4-fs (loop0): 1 truncate cleaned up
[  142.371038][ T8516] xt_CONNSECMARK: invalid mode: 0
[  142.506168][ T8520] loop1: detected capacity change from 0 to 2048
[  142.526467][ T8524] loop4: detected capacity change from 0 to 512
[  142.549485][ T8527] 9pnet_fd: Insufficient options for proto=fd
[  142.707613][ T8538] loop1: detected capacity change from 0 to 512
[  142.732632][ T8538] EXT4-fs: old and new quota format mixing
[  142.810628][ T8540] netlink: 'syz.1.1430': attribute type 4 has an invalid length.
[  142.819113][ T8540] netlink: 'syz.1.1430': attribute type 4 has an invalid length.
[  142.952323][ T8545] loop1: detected capacity change from 0 to 8192
[  142.959969][ T8545] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  143.062029][ T8549] Cannot find add_set index 0 as target
[  143.106291][ T8545] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1050)
[  143.115355][ T8545] FAT-fs (loop1): Filesystem has been set read-only
[  143.129248][ T8545] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1050)
[  143.139941][ T8545] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1050)
[  143.150865][   T29] audit: type=1326 audit(143.133:1131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8554 comm="syz.3.1434" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3225f879f9 code=0x0
[  143.161910][ T8547] FAT-fs (loop1): error, fat_free_clusters: deleting FAT entry beyond EOF
[  143.203934][ T8557] netlink: 'syz.3.1434': attribute type 2 has an invalid length.
[  143.378640][ T8559] loop4: detected capacity change from 0 to 512
[  143.442017][ T8565] loop0: detected capacity change from 0 to 256
[  143.449153][ T8565] FAT-fs (loop0): Directory bread(block 1285) failed
[  143.456670][ T8565] FAT-fs (loop0): Directory bread(block 1285) failed
[  143.463613][ T8565] FAT-fs (loop0): Directory bread(block 1285) failed
[  143.470568][ T8565] FAT-fs (loop0): Directory bread(block 1285) failed
[  143.481356][ T8565] FAT-fs (loop0): Directory bread(block 1285) failed
[  143.489321][ T8565] FAT-fs (loop0): Directory bread(block 1285) failed
[  143.496437][ T8565] FAT-fs (loop0): Directory bread(block 1285) failed
[  143.503506][ T8565] FAT-fs (loop0): Directory bread(block 1285) failed
[  143.510769][ T8565] FAT-fs (loop0): FAT read failed (blocknr 1281)
[  143.517424][ T8566] FAT-fs (loop0): Directory bread(block 1285) failed
[  143.597060][ T8573] loop0: detected capacity change from 0 to 256
[  143.613215][ T8576] loop4: detected capacity change from 0 to 512
[  143.629121][ T8576] EXT4-fs: old and new quota format mixing
[  143.738111][ T8578] loop2: detected capacity change from 0 to 512
[  143.775420][ T8585] loop4: detected capacity change from 0 to 128
[  143.840069][ T8590] loop1: detected capacity change from 0 to 512
[  143.871749][ T8595] netlink: 'syz.2.1447': attribute type 4 has an invalid length.
[  143.922252][ T8595] netlink: 'syz.2.1447': attribute type 4 has an invalid length.
[  143.938414][ T8600] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  144.022341][ T8595] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1447'.
[  144.048825][ T8595] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1447'.
[  144.072847][ T8595] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1447'.
[  144.083316][ T8595] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1447'.
[  144.118423][ T8595] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1447'.
[  144.120047][ T8612] loop4: detected capacity change from 0 to 512
[  144.129247][ T8595] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1447'.
[  144.150678][ T8612] loop4: detected capacity change from 0 to 512
[  144.169913][ T8612] EXT4-fs (loop4): can't mount with commit=2, fs mounted w/o journal
[  144.181899][ T8612] loop4: detected capacity change from 0 to 256
[  144.203419][ T8612] FAT-fs (loop4): Directory bread(block 64) failed
[  144.210219][ T8612] FAT-fs (loop4): Directory bread(block 65) failed
[  144.216800][ T8612] FAT-fs (loop4): Directory bread(block 66) failed
[  144.223361][ T8612] FAT-fs (loop4): Directory bread(block 67) failed
[  144.230029][ T8612] FAT-fs (loop4): Directory bread(block 68) failed
[  144.236673][ T8612] FAT-fs (loop4): Directory bread(block 69) failed
[  144.243488][ T8612] FAT-fs (loop4): Directory bread(block 70) failed
[  144.250175][ T8612] FAT-fs (loop4): Directory bread(block 71) failed
[  144.257530][ T8612] FAT-fs (loop4): Directory bread(block 72) failed
[  144.264103][ T8612] FAT-fs (loop4): Directory bread(block 73) failed
[  144.333376][   T29] audit: type=1400 audit(144.303:1132): avc:  denied  { setopt } for  pid=8615 comm="syz.2.1451" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  144.353117][   T29] audit: type=1326 audit(144.333:1133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8615 comm="syz.2.1451" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f042e4079f9 code=0x0
[  144.380694][   T29] audit: type=1326 audit(144.353:1134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8611 comm="syz.4.1450" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1a436f79f9 code=0x0
[  144.458779][ T8621] loop2: detected capacity change from 0 to 164
[  144.464863][   T29] audit: type=1400 audit(144.433:1135): avc:  denied  { create } for  pid=8615 comm="syz.2.1451" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1
[  144.487516][   T29] audit: type=1400 audit(144.443:1136): avc:  denied  { read } for  pid=8615 comm="syz.2.1451" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  144.553937][ T8623] loop0: detected capacity change from 0 to 2048
[  144.561086][ T8623] EXT4-fs (loop0): blocks per group (262144) and clusters per group (5) inconsistent
[  144.576063][ T8623] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1452'.
[  144.600807][ T8623] loop0: detected capacity change from 0 to 1024
[  144.659120][ T8626] loop0: detected capacity change from 0 to 512
[  144.666305][ T8626] EXT4-fs: old and new quota format mixing
[  144.739919][ T8630] loop0: detected capacity change from 0 to 2048
[  144.754858][ T8633] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1456'.
[  144.764090][ T8634] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1456'.
[  144.896494][ T8646] loop3: detected capacity change from 0 to 128
[  144.905474][ T8647] netlink: 'syz.0.1458': attribute type 2 has an invalid length.
[  144.905694][ T8646] EXT4-fs: Ignoring removed nobh option
[  144.921404][ T8646] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities
[  145.020899][ T8654] loop4: detected capacity change from 0 to 256
[  145.274923][ T8665] loop1: detected capacity change from 0 to 512
[  145.282939][ T8665] EXT4-fs: old and new quota format mixing
[  145.452001][ T8672] loop1: detected capacity change from 0 to 2048
[  145.662954][ T8686] netlink: 14 bytes leftover after parsing attributes in process `syz.0.1474'.
[  145.707509][ T8690] loop0: detected capacity change from 0 to 512
[  145.714504][ T8690] EXT4-fs: old and new quota format mixing
[  145.788724][ T8696] loop0: detected capacity change from 0 to 2048
[  145.838221][ T6770] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 16: comm syz-executor: path /126/file0: bad entry in directory: rec_len is smaller than minimal - offset=108, inode=646161, rec_len=0, size=4096 fake=0
[  145.880250][ T8704] loop3: detected capacity change from 0 to 128
[  145.892068][   T29] kauditd_printk_skb: 4 callbacks suppressed
[  145.892089][   T29] audit: type=1326 audit(145.863:1141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8701 comm="syz.3.1481" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3225f879f9 code=0x0
[  146.055703][   T29] audit: type=1326 audit(146.033:1142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8705 comm="syz.3.1484" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3225f879f9 code=0x0
[  146.114150][ T8716] loop4: detected capacity change from 0 to 512
[  146.121480][ T8716] EXT4-fs (loop4): can't mount with commit=127, fs mounted w/o journal
[  146.157366][ T8723] loop4: detected capacity change from 0 to 512
[  146.169974][ T8723] EXT4-fs: old and new quota format mixing
[  146.186025][   T29] audit: type=1326 audit(146.153:1143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8724 comm="syz.2.1490" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f042e4079f9 code=0x0
[  146.186055][ T8707] netlink: 'syz.3.1484': attribute type 2 has an invalid length.
[  146.267358][ T8730] loop4: detected capacity change from 0 to 256
[  146.409208][   T28] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.468560][   T28] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.531145][   T28] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.545512][ T8727] chnl_net:caif_netlink_parms(): no params data found
[  146.579647][ T8745] 9pnet_fd: Insufficient options for proto=fd
[  146.583651][   T28] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.622586][ T8727] bridge0: port 1(bridge_slave_0) entered blocking state
[  146.629850][ T8727] bridge0: port 1(bridge_slave_0) entered disabled state
[  146.648245][ T8727] bridge_slave_0: entered allmulticast mode
[  146.660599][ T8727] bridge_slave_0: entered promiscuous mode
[  146.708363][   T28] bridge_slave_0: left allmulticast mode
[  146.714103][   T28] bridge_slave_0: left promiscuous mode
[  146.719962][   T28] bridge0: port 1(bridge_slave_0) entered disabled state
[  146.773677][ T8749] ==================================================================
[  146.781825][ T8749] BUG: KCSAN: data-race in tipc_poll / tipc_sk_proto_rcv
[  146.788881][ T8749] 
[  146.791207][ T8749] read-write to 0xffff888115845776 of 2 bytes by task 8745 on cpu 0:
[  146.799288][ T8749]  tipc_sk_proto_rcv+0x657/0xb20
[  146.804280][ T8749]  tipc_sk_filter_rcv+0x18c4/0x19f0
[  146.809529][ T8749]  tipc_sk_rcv+0x48a/0x1020
[  146.814055][ T8749]  tipc_node_xmit+0x211/0x840
[  146.818758][ T8749]  tipc_node_xmit_skb+0x97/0xd0
[  146.823621][ T8749]  tipc_sk_send_ack+0x262/0x280
[  146.828501][ T8749]  tipc_recvstream+0x3b0/0x7e0
[  146.833377][ T8749]  sock_recvmsg+0x13f/0x170
[  146.837907][ T8749]  ____sys_recvmsg+0xf9/0x280
[  146.842599][ T8749]  __sys_recvmsg+0x1ea/0x280
[  146.847208][ T8749]  __x64_sys_recvmsg+0x46/0x50
[  146.851993][ T8749]  x64_sys_call+0xb84/0x2d60
[  146.856608][ T8749]  do_syscall_64+0xc9/0x1c0
[  146.861137][ T8749]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.867054][ T8749] 
[  146.869487][ T8749] read to 0xffff888115845776 of 2 bytes by task 8749 on cpu 1:
[  146.877153][ T8749]  tipc_poll+0x1f6/0x360
[  146.881426][ T8749]  sock_poll+0x233/0x260
[  146.885707][ T8749]  __io_arm_poll_handler+0x229/0xf30
[  146.891046][ T8749]  io_arm_poll_handler+0x433/0x5f0
[  146.896173][ T8749]  io_queue_async+0x89/0x370
[  146.901008][ T8749]  io_req_task_submit+0xb3/0xc0
[  146.905878][ T8749]  io_poll_task_func+0x6f3/0x8b0
[  146.910838][ T8749]  io_handle_tw_list+0xe3/0x200
[  146.915800][ T8749]  tctx_task_work_run+0x6c/0x1b0
[  146.920761][ T8749]  tctx_task_work+0x40/0x80
[  146.925285][ T8749]  task_work_run+0x13a/0x1a0
[  146.929980][ T8749]  get_signal+0xeee/0x1080
[  146.934421][ T8749]  arch_do_signal_or_restart+0x95/0x4b0
[  146.939997][ T8749]  syscall_exit_to_user_mode+0x59/0x130
[  146.945652][ T8749]  do_syscall_64+0xd6/0x1c0
[  146.950210][ T8749]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.956130][ T8749] 
[  146.958458][ T8749] value changed: 0x020c -> 0x018a
[  146.963486][ T8749] 
[  146.965816][ T8749] Reported by Kernel Concurrency Sanitizer on:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  146.971982][ T8749] CPU: 1 UID: 0 PID: 8749 Comm: syz.1.1494 Not tainted 6.11.0-rc2-syzkaller-00013-gd4560686726f #0
[  146.982772][ T8749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  146.993111][ T8749] ==================================================================
[  147.074840][   T29] audit: type=1400 audit(146.973:1144): avc:  denied  { write } for  pid=3248 comm="syz-executor" path="pipe:[533]" dev="pipefs" ino=533 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  147.097425][   T29] audit: type=1400 audit(147.013:1145): avc:  denied  { search } for  pid=2942 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  147.229860][   T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  147.242106][   T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  147.252712][   T28] bond0 (unregistering): Released all slaves
[  147.261267][ T8727] bridge0: port 2(bridge_slave_1) entered blocking state
[  147.268572][ T8727] bridge0: port 2(bridge_slave_1) entered disabled state
[  147.275960][ T8727] bridge_slave_1: entered allmulticast mode
[  147.282529][ T8727] bridge_slave_1: entered promiscuous mode
[  147.374889][   T28] tipc: Disabling bearer <udp:syz1>
[  147.380190][   T28] tipc: Left network mode
[  147.510539][   T28] hsr_slave_0: left promiscuous mode
[  147.516662][   T28] hsr_slave_1: left promiscuous mode
[  147.522572][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  147.530573][   T28] batman_adv: batadv0: Removing interface: batadv_slave_0
[  147.539550][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  147.547211][   T28] batman_adv: batadv0: Removing interface: batadv_slave_1
[  147.558452][   T28] veth1_macvtap: left promiscuous mode
[  147.563937][   T28] veth0_macvtap: left promiscuous mode
[  147.569547][   T28] veth1_vlan: left promiscuous mode
[  147.574855][   T28] veth0_vlan: left promiscuous mode
[  147.674846][   T28] team0 (unregistering): Port device team_slave_1 removed
[  147.688642][   T28] team0 (unregistering): Port device team_slave_0 removed
[  148.039869][   T28] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.109253][   T28] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.158783][   T28] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.208266][   T28] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.279854][   T28] bridge_slave_0: left allmulticast mode
[  148.285599][   T28] bridge_slave_0: left promiscuous mode
[  148.291370][   T28] bridge0: port 1(bridge_slave_0) entered disabled state
[  148.303168][   T28] bridge_slave_1: left allmulticast mode
[  148.308910][   T28] bridge_slave_1: left promiscuous mode
[  148.314847][   T28] bridge0: port 2(bridge_slave_1) entered disabled state
[  148.322813][   T28] bridge_slave_0: left allmulticast mode
[  148.328577][   T28] bridge_slave_0: left promiscuous mode
[  148.334303][   T28] bridge0: port 1(bridge_slave_0) entered disabled state
[  148.737808][   T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  148.748506][   T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  148.758934][   T28] bond0 (unregistering): Released all slaves
[  148.768492][   T28] bond0 (unregistering): Released all slaves
[  148.809731][   T28] tipc: Disabling bearer <udp:syz1>
[  148.815109][   T28] tipc: Left network mode
[  148.881364][   T28] hsr_slave_0: left promiscuous mode
[  148.887449][   T28] hsr_slave_1: left promiscuous mode
[  148.893377][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  148.901000][   T28] batman_adv: batadv0: Removing interface: batadv_slave_0
[  148.908983][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  148.916725][   T28] batman_adv: batadv0: Removing interface: batadv_slave_1
[  148.926605][   T28] veth1_macvtap: left promiscuous mode
[  148.932089][   T28] veth0_macvtap: left promiscuous mode
[  148.937695][   T28] veth1_vlan: left promiscuous mode
[  148.942914][   T28] veth0_vlan: left promiscuous mode
[  149.032217][   T28] team0 (unregistering): Port device team_slave_1 removed
[  149.042500][   T28] team0 (unregistering): Port device team_slave_0 removed
[  152.011772][   T11] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.058941][   T11] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.129008][   T11] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.187801][   T11] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.257532][   T11] bridge_slave_0: left allmulticast mode
[  152.263332][   T11] bridge_slave_0: left promiscuous mode
[  152.269012][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  152.577893][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  152.588886][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  152.598917][   T11] bond0 (unregistering): Released all slaves
[  152.688035][   T11] hsr_slave_0: left promiscuous mode
[  152.693723][   T11] hsr_slave_1: left promiscuous mode
[  152.699460][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  152.706989][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  152.714497][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  152.721952][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  152.732133][   T11] veth1_macvtap: left promiscuous mode
[  152.737657][   T11] veth0_macvtap: left promiscuous mode
[  152.743533][   T11] veth1_vlan: left promiscuous mode
[  152.748878][   T11] veth0_vlan: left promiscuous mode
[  152.834273][   T11] team0 (unregistering): Port device team_slave_1 removed
[  152.844849][   T11] team0 (unregistering): Port device team_slave_0 removed
[  153.130622][   T11] IPVS: stop unused estimator thread 0...