last executing test programs:

11.194810067s ago: executing program 4 (id=204):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000072000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0x14, &(0x7f0000000040)={@random="f60db9be9ce2", @multicast, @val={@void}, {@generic={0x88a8, "c1df"}}}, 0x0)

11.17051575s ago: executing program 4 (id=207):
r0 = syz_open_dev$usbfs(&(0x7f0000000c40), 0x310decfa, 0x1)
ioctl$USBDEVFS_CONTROL(r0, 0x41045508, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440)=ANY=[@ANYRESOCT=r0, @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES16=r0, @ANYRES32=0x0, @ANYRES8], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000004000000b703000008000040850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, @void, @value}, 0xffffffffffffff98)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000002c0)='mm_page_alloc\x00', r2}, 0x10)
sysfs$3(0x3)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000080), 0xffffff0c)
r3 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r4=>0x0})
sendto$packet(r3, &(0x7f0000000080)="18", 0x10, 0x0, &(0x7f00000000c0)={0x11, 0xc, r4, 0x1, 0x0, 0x6, @multicast}, 0x14)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0900000004000000e27f000001000000020000"], 0x48)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000300)={[{@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@resuid}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@lazytime}, {@jqfmt_vfsold}, {@usrquota}, {@nodelalloc}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
setsockopt$packet_drop_memb(r3, 0x107, 0x2, &(0x7f00000003c0)={r4, 0x1, 0x6, @local}, 0x10)
r7 = openat$cgroup_ro(r6, &(0x7f0000000400)='pids.current\x00', 0x275a, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, r7, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
writev(r8, &(0x7f0000000300)=[{&(0x7f00000000c0)="c057", 0x2}], 0x1)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r9 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r9, &(0x7f0000000240)=@abs={0x1}, 0x2)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)
io_setup(0x8, &(0x7f00000000c0)=<r10=>0x0)
r11 = openat$selinux_status(0xffffff9c, &(0x7f0000000100), 0x0, 0x0)
io_cancel(r10, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x2, 0x401, r11, &(0x7f0000000140)="696c95d5c97e2df559d5620381bcef8deeb8650228c2870168cff6e39cb890b96ff702af61e390bda045b1b4b5937d756d32247bf70aa84f8c704f4c6c74cfaf4f0bb186d31b2ec29c5af98eaa1e62d20b0c05d46a3d2838a6899fb91b465f170a9f2efaba7b2b7022b8ea99aa4245c526240a37f3f503fcff40f60f20604cdc684e025067aa276ae4cd608896ca181bbc7b00dacc02f15627e9c647d130d8bfd2666ca4e58e84b8f1f9bb", 0xab, 0x5, 0x0, 0x3}, &(0x7f0000000240))
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)

10.84918367s ago: executing program 4 (id=219):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x11, &(0x7f0000000500), 0x1, 0x631, &(0x7f0000001940)="$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")

10.747312039s ago: executing program 4 (id=221):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0x5, 0x1, 0x8a, 0xe7c9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x8, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

10.698809124s ago: executing program 4 (id=223):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r3}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_resuseaddr={0x0}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f00000002c0)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @private2}}}, 0x30)
write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="7f450700000053c407cd"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
chdir(&(0x7f0000000100)='./file0\x00')
mount$9p_tcp(0x0, &(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', &(0x7f00000004c0), 0x8, &(0x7f0000000080)={'trans=tcp,', {'port', 0x3d, 0x4e21}})

10.679326455s ago: executing program 4 (id=225):
r0 = socket(0x25, 0x5, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2e, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a00000005000000020000000300000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\b\x00'], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000640), &(0x7f00000000c0), 0x80000075, r1}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000000001000000bfa200000000000007020000f8ffffffb703000008000000b704000000030000000000007b3400009500000000c5af3c56f92ad696c6"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r2}, 0x10)
socket$packet(0x11, 0x3, 0x300) (async)
getpeername$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, 0x0)
socket$inet(0x2, 0x2, 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async, rerun: 64)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (rerun: 64)
ioctl$LOOP_CTL_ADD(r3, 0x4c80, 0xb)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000002c0)={0x3, &(0x7f0000000280)=[{0x9f54, 0x0, 0x9, 0x3}, {0x3, 0x9, 0x0, 0xd}, {0x86, 0x1c, 0x9, 0x4}]}, 0x10) (async)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0xb)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000380)='./file2\x00', 0x30040e, &(0x7f0000000740)={[{@block_validity}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@minixdf}, {@journal_dev={'journal_dev', 0x3d, 0x4}}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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") (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) (async)
r4 = socket(0x15, 0x5, 0x0)
getsockopt(r4, 0x200000000114, 0x2710, &(0x7f0000005ec0)=""/102394, &(0x7f0000000040)=0x18ffa) (async)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000ffff00208500000070000000850000002a00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
r6 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r6, &(0x7f0000000140)={0x28, 0x0, 0x0, @my=0x1}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000008c0)={&(0x7f0000000040)='virtio_transport_alloc_pkt\x00', r5}, 0x10) (async)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r6, 0x28, 0x1, &(0x7f0000000100)=0xfffffffffffffffe, 0x112) (async)
statx(0xffffffffffffffff, 0x0, 0xc400, 0x100, 0x0) (async)
r7 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)={0x7c, r8, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0x3}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}], @NL80211_ATTR_DURATION={0x8, 0x57, 0xa}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0xc}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xf}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xff}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x243}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x32}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x9}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x200}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x6}]}, 0x7c}}, 0x4000054)
sendmsg$NL80211_CMD_REQ_SET_REG(r0, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x1c, r8, 0x4, 0x70bd27, 0x25dfdbfe, {}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x58}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x81) (async, rerun: 64)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0) (rerun: 64)

3.610565317s ago: executing program 2 (id=326):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a5000000"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0)
r2 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_subtree(r2, &(0x7f00000001c0), 0x2, 0x0)
write$cgroup_subtree(r3, 0x0, 0x0)

3.550104352s ago: executing program 2 (id=328):
r0 = socket$inet6(0xa, 0x2, 0x3a)
setsockopt$inet6_int(r0, 0x29, 0x10, &(0x7f0000000000), 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x0, 0xc, &(0x7f0000000140)=@framed={{}, [@call, @printk={@lu}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x0, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="85000000080000004e00000000000000850000007d"], 0x0, 0x0, 0xffffffffffffff58, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
setsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, &(0x7f00000002c0)={0x4}, 0x2)
ppoll(&(0x7f0000000180)=[{}], 0x1, 0x0, 0x0, 0x0)
getsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000180), &(0x7f00000001c0)=0x4)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x400454d0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18020000000000000000000000000000850000009b"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
sendto$inet6(r0, &(0x7f0000000180)="800037bbfa9ba1ce", 0x8, 0x488c0, &(0x7f00000003c0)={0xa, 0x1, 0x0, @dev={0xfe, 0x80, '\x00', 0x2d}, 0x9}, 0x1c)

2.798451392s ago: executing program 2 (id=337):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$binderfs(0xffffff9c, &(0x7f0000000180)='./binderfs2/custom0\x00', 0x2, 0x0)
r2 = getpgrp(0x0)
ioctl$BINDER_GET_FROZEN_INFO(r1, 0xc00c620f, &(0x7f00000001c0)={r2})
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000280)={0x5, &(0x7f0000000200)=[{0x3, 0x0, 0x3, 0xfffffff9}, {0x800, 0x3, 0x6, 0xbe2a}, {0x1, 0x7, 0x2}, {0x7114, 0x6, 0x7, 0x9}, {0xff, 0x5, 0x48, 0x4}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, @void, @value}, 0x94)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x7, &(0x7f0000000300)=@raw=[@jmp={0x5, 0x0, 0x0, 0x9, 0x3, 0x50, 0xffffffffffffffe4}, @cb_func={0x18, 0x0, 0x4, 0x0, 0x2}, @generic={0x5, 0x7, 0x1, 0x5, 0xfffffff5}, @generic={0xe, 0x5, 0xc, 0x2, 0x1}, @cb_func={0x18, 0x9, 0x4, 0x0, 0x1}], &(0x7f0000000340)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41100, 0x48, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000380)={0x0, 0x1}, 0x8, 0x10, &(0x7f00000003c0)={0x0, 0x2, 0x6, 0x4}, 0x10, 0x0, 0x0, 0x1, &(0x7f0000000400)=[0x1, 0xffffffffffffffff], &(0x7f0000000440)=[{0x0, 0x4, 0x3, 0x1}], 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='skb_copy_datagram_iovec\x00', r3, 0x0, 0xfffffffffffffffc}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r4], 0x0, 0x8000, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
socket$l2tp6(0xa, 0x2, 0x73)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xffc, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='attr/current\x00')
preadv(r6, &(0x7f00000003c0)=[{&(0x7f0000000380)=""/44, 0x2c}], 0x1, 0x0, 0x0)

2.464901703s ago: executing program 3 (id=345):
r0 = openat$selinux_avc_cache_stats(0xffffff9c, &(0x7f0000000180), 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000280)={0x1, 0x58, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r1=>0x0}}, 0x10)
pipe(&(0x7f0000000280)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$P9_RGETLOCK(r2, &(0x7f00000002c0)=ANY=[], 0x200002e6)
fcntl$setpipe(r2, 0x407, 0x7000000)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x19, 0x2b72, 0x8, 0x0, 0x104, r0, 0x5, '\x00', r1, r2, 0x0, 0x0, 0x2, 0x0, @void, @value, @void, @value}, 0x50)
r3 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
listen(r3, 0x0)
r4 = socket$tipc(0x1e, 0x5, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x9, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r6}, 0x10)
r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000200)={<r8=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r7, &(0x7f0000000140)={0x3, 0x40, 0xfa00, {{0xa, 0xfffe, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x1}, {0xa, 0x0, 0x0, @mcast1}, r8}}, 0x48)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r7, &(0x7f0000000000)={0x15, 0x110, 0xfa08, {r8, 0x0, 0x10, 0x10, 0x0, @in={0x2, 0xfffd, @empty}, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}}}, 0x118)
sendmsg$tipc(r4, &(0x7f0000002300)={&(0x7f0000000040)=@name={0x1e, 0x2, 0x0, {{}, 0x4}}, 0x10, 0x0}, 0x0)
sendmsg$tipc(r4, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x3, {0x41}}, 0x10, 0x0}, 0x20000000)
accept4(r3, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000003c0)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r9}, 0x10)
openat$tun(0xffffff9c, &(0x7f0000000380), 0x4000, 0x0)
inotify_init()

2.286080599s ago: executing program 3 (id=347):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0x3, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bind$tipc(0xffffffffffffffff, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)

2.284569749s ago: executing program 3 (id=349):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x4e23, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
fchdir(0xffffffffffffffff)
r1 = inotify_init1(0x0)
fcntl$setown(r1, 0x8, 0xffffffffffffffff)
fcntl$getownex(r1, 0x10, 0x0)
r2 = openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r2, 0x40505412, 0x0)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000020000807b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00"/11], 0x48)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000c80)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000900)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}, {0x0, 0x1}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x28, 0x2, {{0x0, 0xffffffff, 0x0, 0x0, 0xffffffff, 0x4f77}, [@TCA_NETEM_CORRUPT={0xc, 0x4, {0xfffffffd}}]}}}]}, 0x58}}, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000000040)=[{0x0}], 0x1}}, {{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000b80)="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", 0x37f}, {&(0x7f00000003c0)="439e9c06fc666cabc8569d63a866b31ff3c6da1e28f23f455e96a02001fc3fb089ed", 0x22}], 0x2}}], 0x2, 0x48000)

1.995851716s ago: executing program 0 (id=355):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x3000490, &(0x7f0000000c80)={[{@dioread_lock}, {@usrjquota}, {@errors_remount}, {@norecovery}, {@auto_da_alloc}, {@noquota}, {@grpquota}, {@barrier_val}, {@mblk_io_submit}, {@jqfmt_vfsold}]}, 0x45, 0x7b1, &(0x7f00000004c0)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x42, 0x20)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
ftruncate(r0, 0x2007ffb)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000117b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x13, r0, 0x0)
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

1.995148896s ago: executing program 2 (id=356):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, 0x0, 0x0)
r1 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r1, &(0x7f0000004cc0)={0x2, 0x0, @private=0xa010101}, 0x10)
listen(r1, 0xffffffff)
r2 = accept4(r1, 0x0, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r2, 0x84, 0x7c, 0x0, &(0x7f0000000080))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
r3 = socket$netlink(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRESOCT=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r3, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r3)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f0000000600)={0x0, 0xfffffffe, &(0x7f0000000300)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x0)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='projid_map\x00')
preadv(r5, &(0x7f00000003c0)=[{&(0x7f0000000380)=""/44, 0x2c}], 0x1, 0x0, 0x0)
preadv(r5, &(0x7f0000000140)=[{&(0x7f0000000000)=""/47, 0x2f}], 0x1, 0x6, 0x0)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
r7 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r7, 0x84, 0x6f, &(0x7f0000002f00)={0x0, 0x10, &(0x7f0000002ec0)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000002f40)=0x10)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r8=>0x0]}, &(0x7f0000000080)=0x8)
setsockopt$inet_sctp6_SCTP_MAXSEG(r6, 0x84, 0xd, &(0x7f0000000180)=@assoc_value={r8, 0x3}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r5, 0x84, 0x7c, &(0x7f00000001c0)={r8, 0xd, 0x3}, 0x8)

1.414029769s ago: executing program 3 (id=358):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
pipe(&(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
vmsplice(r2, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1)
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet(0x2, 0x2, 0x0)
getsockopt$inet_mreqsrc(r2, 0x0, 0x28, &(0x7f0000000200)={@multicast1, @private, @dev}, &(0x7f00000001c0)=0xc)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'bond_slave_1\x00', <r4=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYRESHEX=r3, @ANYRES32=r4, @ANYBLOB="000020000008000024001200140001006272696467655f736c617665800000000c000500080005"], 0x3}}, 0x400404d)
splice(r1, 0x0, r2, 0x0, 0x10500, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r5}, 0x10)
r6 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000340)={'vlan0\x00', <r8=>0x0})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'gretap0\x00', <r9=>0x0})
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000380)=@newlink={0x40, 0x10, 0x705, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @hsr={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_HSR_SLAVE2={0x8, 0x2, r8}, @IFLA_HSR_SLAVE1={0x8, 0x1, r9}]}}}]}, 0x40}}, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x4c004, 0x0, 0x0)

1.212393748s ago: executing program 0 (id=360):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd1, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0x120, &(0x7f0000000100)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xeb, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@response={0x2, 0x0, 0x0, "82d18160f7d8dda36479a6b179161b4bbff2d0508977b3928ebd2dee05607d17", "0194bd7b1b0303c5ba7f602606a285b3", {"30da2d58da817f8a5f77a23de36a2164", "3b33cfa231a427159c7b9f0eceb155f0"}}}}}}}, 0x0)

1.08570982s ago: executing program 2 (id=361):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

500.918613ms ago: executing program 1 (id=363):
r0 = socket$pppoe(0x18, 0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
creat(&(0x7f00000000c0)='./file0\x00', 0xc9028ba210c11f88)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x9, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
connect$pppoe(r0, &(0x7f0000000080)={0x18, 0x0, {0xfffe, @local, 'geneve0\x00'}}, 0x1e)
connect$pppoe(r0, &(0x7f0000000000)={0x18, 0x0, {0x0, @remote, 'veth0_to_bridge\x00'}}, 0x1e)

500.490904ms ago: executing program 2 (id=364):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6}]})
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sys_enter\x00', r0}, 0x10)
set_tid_address(0x0)

462.344297ms ago: executing program 3 (id=365):
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x0, 0x3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r2)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000006c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYRESDEC=r2], 0x2c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_OCB(r1, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="000325bd7000fddbdf25a6acbe2d0c009900ff7f00002b000000"], 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x81)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRESDEC=r4, @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000500)={{r4}, &(0x7f0000000180), &(0x7f00000004c0)=r5}, 0x20)
socket$packet(0x11, 0x2, 0x300)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x80c80, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r7 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r6, &(0x7f0000000700)=ANY=[@ANYBLOB="00000000ffffffffffffaaaaaaaaaabb08004500452c00000000002f9078ace5593963b91768894c036ac01e0001e0000001000065580018907804000000403b82f718bee683c5e2782d9e31badf90637e576becfd3aa6f03322a1f8e2e823cc39a5e5f27834ab010000a0667a815e85f4"], 0xfdef)
open(&(0x7f0000000080)='./bus\x00', 0x18400, 0x62)
unshare(0x68040200)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f00000005c0), r2)
sendmsg$ETHTOOL_MSG_EEE_SET(r2, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="01002abd7000ffdbdf25180000001400ef8008000300030000000800030001000000050006000100000005000600010000000500050000000000"], 0x40}, 0x1, 0x0, 0x0, 0x804}, 0x40)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r9 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(0xffffffffffffffff, 0xc0a85320, 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(0xffffffffffffffff, 0xc0a85352, &(0x7f0000000200)={{0x80}, 'port0\x00'})
bpf$MAP_CREATE(0x0, 0x0, 0x0)
open(&(0x7f0000000540)='./bus\x00', 0x0, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(r9, 0x0, 0x61, &(0x7f0000000440)={'filter\x00', 0x4}, 0x68)
mount(&(0x7f00000007c0)=@filename='./bus\x00', &(0x7f0000000280)='./bus\x00', &(0x7f0000000780)='9p\x00', 0x10022, &(0x7f00000002c0)='trans=rdma,\xb6\a\xfc\t\xf3\xfc\r\xd4\x91\xf0\xac(]\x94Q\xd0\xc1X\xbe\xac \xd8\x1b\x89\xa1\x85}\xc2dc}\xb6\x9e\xae] s\xf76\xcchU\xe9\xa6\x1d\x97\xdd\xb6KJ')
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f00000001c0)='cpu>\'\'\t|\t')

445.965639ms ago: executing program 1 (id=366):
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000080)='./file1\x00', 0x8, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], 0xfd, 0x1bf, &(0x7f0000000480)="$eJzs3TGL02AYB/Cn9bzmnG4TRCHg4nSon+BEThADgtJBJ4XT5SqCt0SX9mP4Af0A0qmLRGrSxkaHWmxS6++39En/edvnHZp26ZNXN99dnL+/fPvl+udIkl70T+M0Zr04jn4sTAIA2CezooivRanrXgCAdqzx/f+t5ZYAgC17/uLlkwdZdvYsTZOI6SQf5sPyscwfPc7O7qY/HNerpnk+vLLM76XN3w7z/Gpcq/L75fp0NT+MO7fLfJ49fJo18kGcb3frAAAAAAAAAAAAAAAAAAAAAADQmVuRLvx2vs/JSTM/qvLy6Kf5QI35PQdx46A6rMcDFeM2NgUAAAAAAAAAAAAAAAAAAAD/mMuPny5ej0ZvPtTFICJWn/mTole98IbL2y76sRNtKP5qke5GG6MNPwWHEbGtxmZFUax1cn2NGHR1cQIAAAAAAAAAAAAAAAAAgP9M/affX7Oki4YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoAP1/f83KMYRscbJyzc76nSrAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7LHvAQAA///DgjXa") (async)
r0 = syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000080)='./file1\x00', 0x8, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], 0xfd, 0x1bf, &(0x7f0000000480)="$eJzs3TGL02AYB/Cn9bzmnG4TRCHg4nSon+BEThADgtJBJ4XT5SqCt0SX9mP4Af0A0qmLRGrSxkaHWmxS6++39En/edvnHZp26ZNXN99dnL+/fPvl+udIkl70T+M0Zr04jn4sTAIA2CezooivRanrXgCAdqzx/f+t5ZYAgC17/uLlkwdZdvYsTZOI6SQf5sPyscwfPc7O7qY/HNerpnk+vLLM76XN3w7z/Gpcq/L75fp0NT+MO7fLfJ49fJo18kGcb3frAAAAAAAAAAAAAAAAAAAAAADQmVuRLvx2vs/JSTM/qvLy6Kf5QI35PQdx46A6rMcDFeM2NgUAAAAAAAAAAAAAAAAAAAD/mMuPny5ej0ZvPtTFICJWn/mTole98IbL2y76sRNtKP5qke5GG6MNPwWHEbGtxmZFUax1cn2NGHR1cQIAAAAAAAAAAAAAAAAAgP9M/affX7Oki4YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoAP1/f83KMYRscbJyzc76nSrAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7LHvAQAA///DgjXa")
socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_mems\x00', 0x275a, 0x0)
ioctl$FAT_IOCTL_SET_ATTRIBUTES(r1, 0x40047211, &(0x7f00000000c0)=0x640e7)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000640)={0x0, ""/256, 0x0, 0x0, <r3=>0x0})
ioctl$FS_IOC_READ_VERITY_METADATA(r0, 0xc0286687, &(0x7f0000000000)={0x3, 0x2, 0x4e, &(0x7f0000000140)=""/78}) (async)
ioctl$FS_IOC_READ_VERITY_METADATA(r0, 0xc0286687, &(0x7f0000000000)={0x3, 0x2, 0x4e, &(0x7f0000000140)=""/78})
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file2\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x6, 0x360, &(0x7f0000000540)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r2, 0xc0c89425, &(0x7f0000000840)={"5952045a5e1fbbb36cfed148c6a684ed", 0x0, r3, {0x3, 0xffff}, {0x1, 0x9}, 0x2f70, [0x8, 0x7, 0x1b, 0xfffffffffffffff9, 0x2, 0x0, 0x8, 0xb, 0x2, 0x10, 0xfe, 0x7, 0x0, 0x5, 0xfffffffffffffffe]})

383.468605ms ago: executing program 0 (id=367):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x1, 0x4, 0x7fe2, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r2, &(0x7f0000004540)=[{{&(0x7f0000000040)={0x2, 0x4e22, @multicast1}, 0x10, 0x0}}, {{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000180)="15b26f226e2966667482d50703b0a8d92ccd9e69d5cc4cb3d467a670b237a9225fb56c0f7ea725dee27c4bb43bb50c6748c83b71d59f0537405dfab648c096607340fac939a2efd31cbe2f8ca29c409e87ea0974b7bceff9afef5dffd691575f5115f2f961ad488e3386036913e98181a6034febaab853a3e928b9035b0e3a8e1cb393c70f6d0448970e0af2476f8b923ee09c19deca55d58f70e8eeff55dda6381cb96afe97196c0af0a8fd450a1447a1a521e2c211fb84cbcf4aebd31298972ec6be", 0xc3}, {&(0x7f0000000d80)="7d68e6de85f9b0cbc9d710267f321ec64eab043ecad9af7e01e9463218ec45924a99867163e468d36a682fadd749caa325e685d75559a87139e02fae7271be8f55671cfd32a09896278d1941370174720838039d0989bc3394b8a4c4f4a30f0496be313d6d60fe47966c634a3ee1f659e8ef310647725bda0130d5de5028220a4cf5fc808a75694738ee26cb21302b4bba4265b845a5d5dce706d9820c6936b122f9658446d74a9016b94424971dd443a6907eb5c73b6b200e92b23f2c36a214729b0bc231511e", 0xc7}, {&(0x7f0000000380)="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", 0x9fd}], 0x3}}, {{0x0, 0x0, &(0x7f00000017c0)=[{&(0x7f0000001700)="c9", 0x1}], 0x1}}], 0x3, 0x240080e4)

345.928208ms ago: executing program 0 (id=368):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x2, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d00000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000300000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = syz_io_uring_setup(0x1d93, &(0x7f0000010400), &(0x7f0000010080), &(0x7f0000000580))
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000003740)=[{0x0}, {0x0}, {&(0x7f0000000300)=""/193, 0xc1}, {&(0x7f0000000640)=""/202, 0xca}, {&(0x7f0000000180)=""/167, 0xa7}, {&(0x7f0000000740)=""/4096, 0x1000}], 0x6)

300.371132ms ago: executing program 0 (id=369):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ff7fffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000040)=@o_path={&(0x7f0000000000)='./file0\x00', 0x0, 0x4008, r1}, 0x18)
syncfs(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000100)='sys_enter\x00', r1}, 0x10)
timerfd_gettime(0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000080), &(0x7f00000000c0)=0x4)

230.411188ms ago: executing program 0 (id=370):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x3000490, &(0x7f0000000c80)={[{@dioread_lock}, {@usrjquota}, {@errors_remount}, {@norecovery}, {@auto_da_alloc}, {@noquota}, {@grpquota}, {@barrier_val}, {@mblk_io_submit}, {@jqfmt_vfsold}]}, 0x45, 0x7b1, &(0x7f00000004c0)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x42, 0x20)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
ftruncate(r0, 0x2007ffb)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000117b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x13, r0, 0x0)
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

229.824809ms ago: executing program 1 (id=371):
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setns(r0, 0x8000000)
r2 = syz_clone(0x40080, &(0x7f0000000040)="e63800bee885a8ed2d2ddaa5b789a2315d14ad966aa3bbd05f9b1d", 0x1b, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100)="9e76f523074f3c8285ee3f62adefd84c859cfc62c8e6117695e41c250ec85d627e2fe7694ab7e669421ac4d0fd14202f72501788a2875386403f8d9fa57a546ab4f79cb86b2408f507f0963b67ae9649cd9b96c43cf6f8cf24209634af0b5dbd7ac82d100c15e201494385397a9b4ac123aebe608ca801699292facf974bf8a77c237da06cd873af1f36")
ptrace$getsig(0x4202, r2, 0x60efb714, &(0x7f00000001c0))
getpgrp(r2) (async)
sync_file_range(r1, 0x5, 0x7f, 0x0) (async)
sendto$inet_nvme_icreq_pdu(r0, &(0x7f0000000240)={{0x0, 0x4, 0x80, 0x2}, 0x0, 0x0, 0x2, 0x39}, 0x80, 0x0, 0x0, 0x0) (async)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f00000002c0)={0x3, 'veth1_to_bridge\x00', {0x8}, 0xed})
sched_setscheduler(r2, 0x2, &(0x7f0000000300)=0x3) (async)
getegid()
socket$inet6(0xa, 0x80000, 0x7) (async)
ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r0, 0x8040942d, &(0x7f0000000340)) (async)
getsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f00000003c0)={@private0, <r3=>0x0}, &(0x7f0000000400)=0x14)
sendmsg$nl_route_sched(r1, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)=@gettclass={0x24, 0x2a, 0x800, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r3, {0x7, 0x4}, {0x3, 0xc}, {0x10, 0xfff3}}, ["", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x40004) (async)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r0, 0x40189429, &(0x7f0000000500)={0x0, 0x5, 0xffffffff}) (async)
r4 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
getsockopt$llc_int(r4, 0x10c, 0x7, &(0x7f0000000540), &(0x7f0000000580)=0x4) (async)
ioctl$AUTOFS_IOC_EXPIRE_MULTI(r1, 0x40049366, &(0x7f00000005c0)=0x4) (async, rerun: 32)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000ac0)={r1, 0x20, &(0x7f0000000a80)={&(0x7f0000000900)=""/92, 0x5c, <r5=>0x0, &(0x7f0000000980)=""/202, 0xca}}, 0x10) (rerun: 32)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=@base={0x1b, 0x5, 0x8, 0x9, 0x30003, r1, 0x9, '\x00', r3, 0xffffffffffffffff, 0x2, 0x0, 0x1, 0x0, @void, @value, @value=r0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000bc0)={0x16, 0x24, &(0x7f0000000600)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@cb_func={0x18, 0x6, 0x4, 0x0, 0xffffffffffffffff}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x800}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}, @map_val={0x18, 0xa, 0x2, 0x0, r4, 0x0, 0x0, 0x0, 0xfffffdf9}, @call={0x85, 0x0, 0x0, 0x68}, @ldst={0x3, 0x2, 0x6, 0x5, 0x2, 0x100, 0xfffffffffffffff0}, @initr0={0x18, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x8}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000740)='syzkaller\x00', 0x1, 0xe1, &(0x7f0000000780)=""/225, 0x40e00, 0x42, '\x00', 0x0, @fallback=0x1e, r0, 0x8, &(0x7f0000000880)={0x7, 0x3}, 0x8, 0x10, &(0x7f00000008c0)={0x1, 0x7, 0x4, 0x200}, 0x10, r5, r1, 0x0, &(0x7f0000000b80)=[r1, r6, r0], 0x0, 0x10, 0x7, @void, @value}, 0x94)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000c80), r1) (async)
openat$ptp0(0xffffff9c, &(0x7f0000000cc0), 0x80, 0x0) (async)
recvmmsg(r0, &(0x7f00000064c0)=[{{&(0x7f0000000d00)=@ll={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, 0x80, &(0x7f0000001200)=[{&(0x7f0000000d80)=""/2, 0x2}, {&(0x7f0000000dc0)=""/38, 0x26}, {&(0x7f0000000e00)=""/118, 0x76}, {&(0x7f0000000e80)=""/211, 0xd3}, {&(0x7f0000000f80)=""/57, 0x39}, {&(0x7f0000000fc0)=""/97, 0x61}, {&(0x7f0000001040)=""/203, 0xcb}, {&(0x7f0000001140)}, {&(0x7f0000001180)=""/97, 0x61}], 0x9, &(0x7f00000012c0)=""/217, 0xd9}, 0x39900}, {{&(0x7f00000013c0)=@l2={0x1f, 0x0, @fixed}, 0x80, &(0x7f00000024c0)=[{&(0x7f0000001440)=""/4096, 0x1000}, {&(0x7f0000002440)=""/74, 0x4a}], 0x2, &(0x7f0000002500)=""/166, 0xa6}, 0x1}, {{&(0x7f00000025c0)=@phonet, 0x80, &(0x7f0000003800)=[{&(0x7f0000002640)=""/68, 0x44}, {&(0x7f00000026c0)=""/201, 0xc9}, {&(0x7f00000027c0)=""/4096, 0x1000}, {&(0x7f00000037c0)=""/55, 0x37}], 0x4}, 0x4}, {{&(0x7f0000003840)=@x25={0x9, @remote}, 0x80, &(0x7f0000003a00)=[{&(0x7f00000038c0)=""/177, 0xb1}, {&(0x7f0000003980)=""/21, 0x15}, {&(0x7f00000039c0)}], 0x3, &(0x7f0000003a40)=""/109, 0x6d}, 0xcb}, {{0x0, 0x0, &(0x7f0000004cc0)=[{&(0x7f0000003ac0)=""/4096, 0x1000}, {&(0x7f0000004ac0)=""/43, 0x2b}, {&(0x7f0000004b00)=""/158, 0x9e}, {&(0x7f0000004bc0)=""/42, 0x2a}, {&(0x7f0000004c00)=""/170, 0xaa}], 0x5, &(0x7f0000004d40)=""/51, 0x33}, 0x1000}, {{&(0x7f0000004d80)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @private1}}, 0x80, &(0x7f0000006080)=[{&(0x7f0000004e00)=""/185, 0xb9}, {&(0x7f0000004ec0)=""/179, 0xb3}, {&(0x7f0000004f80)=""/173, 0xad}, {&(0x7f0000005040)=""/4096, 0x1000}, {&(0x7f0000006040)=""/3, 0x3}], 0x5, &(0x7f0000006100)=""/138, 0x8a}, 0x2}, {{0x0, 0x0, &(0x7f0000006300)=[{&(0x7f00000061c0)=""/252, 0xfc}, {&(0x7f00000062c0)=""/23, 0x17}], 0x2}, 0x3ff}, {{&(0x7f0000006340)=@alg, 0x80, &(0x7f0000006480)=[{&(0x7f00000063c0)=""/149, 0x95}], 0x1}}], 0x8, 0x4100, &(0x7f00000066c0))
sendto$packet(r1, &(0x7f0000006700)="3056f1bb4a1b", 0x6, 0x0, &(0x7f0000006740)={0x11, 0xf7, r7, 0x1, 0xe}, 0x14)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x80010, r4, 0x9e9db000)
statx(r1, &(0x7f0000006840)='./file0\x00', 0x1000, 0x10, &(0x7f0000006880)={0x0, 0x0, 0x0, 0x0, <r8=>0x0})
mount$9p_tcp(&(0x7f0000006780), &(0x7f00000067c0)='./file0\x00', &(0x7f0000006800), 0x20, &(0x7f0000006980)={'trans=tcp,', {'port', 0x3d, 0x4e21}, 0x2c, {[{@fscache}, {@msize={'msize', 0x3d, 0xfffffffffffffff9}}, {@posixacl}, {@noextend}, {@afid={'afid', 0x3d, 0xacd}}], [{@pcr={'pcr', 0x3d, 0xf}}, {@euid_gt}, {@euid_gt={'euid>', r8}}, {@smackfstransmute}]}}) (async, rerun: 32)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000006ac0), r1) (rerun: 32)
sendmsg$NL80211_CMD_DISASSOCIATE(r1, &(0x7f0000006b80)={&(0x7f0000006a80)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000006b40)={&(0x7f0000006b00)={0x34, r9, 0x300, 0x70bd26, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x14, 0x2a, [@mesh_id={0x72, 0x6}, @mesh_id={0x72, 0x6}]}, @NL80211_ATTR_REASON_CODE={0x6}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x4}, 0x8004010)

157.889065ms ago: executing program 1 (id=372):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000003c0)={<r1=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000700)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0x0, @mcast2}, {0xa, 0x0, 0x0, @mcast2={0xff, 0x5}}, r1}}, 0x48)
close_range(r0, 0xffffffffffffffff, 0x0)
r2 = syz_open_dev$usbfs(0x0, 0x1ff, 0xa401)
r3 = fcntl$dupfd(r2, 0x0, r2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
write$RDMA_USER_CM_CMD_DISCONNECT(r3, &(0x7f0000000080)={0xa, 0x4, 0xfa00, {r1}}, 0xc)
ioctl$USBDEVFS_RESET(r3, 0x5514)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x1000, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r4}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r5}, 0x10)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2800001, 0xc3072, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600600, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x42031, 0xffffffffffffffff, 0x0)
close_range(r3, 0xffffffffffffffff, 0x4356b397761a0606)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000002020000ff0f00000700000008000000", @ANYRES32=r6, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYBLOB='\x00'/14], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0xc, &(0x7f00000004c0)=ANY=[@ANYRES32=r6, @ANYRESOCT=r6, @ANYRES16], 0x0, 0xa86, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r8, @ANYBLOB="0000000000000000b707000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r9}, 0x10)

157.405645ms ago: executing program 3 (id=373):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, 0x0}, 0x8040)
r0 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000080), 0x8)
syz_io_uring_setup(0x3675, &(0x7f000000a9c0)={0x0, 0x0, 0x4, 0x2}, &(0x7f0000000040), &(0x7f000000aa80))
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
r3 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000200)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r2, 0x84, 0x17, &(0x7f00000000c0)=ANY=[], 0x15)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f00000008c0)=ANY=[@ANYRESHEX=r0, @ANYRESOCT=r1], 0x1, 0x222, &(0x7f0000000300)="$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")
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x81000)
bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1807000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0a00000004000000080000004800000000000000", @ANYRES32, @ANYBLOB="00000000000144e4c2dc4c066a19378c8f25210a", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
r7 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r7, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r7, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r7, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r7, 0x0, 0x0, 0x240007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_TIMESTAMPING(r7, 0x1, 0x41, &(0x7f0000000180)=0x8eb, 0x4)
sendmmsg$inet(r7, &(0x7f0000004bc0)=[{{0x0, 0x0, &(0x7f00000019c0)=[{&(0x7f00000014c0)="23004e4ee760d48ddc6b7a1ebfc6e0276028840fb20d5233e81c802684e8ac1dc195296ffaaeace75a07a652ee918f67beb970cd36769470f7acb5cd5becfa3839cec05a81f9488931e0a9ba9a246f45fee8b5240bd1e078539b56973bfbbee5a100668daf66ef25121ca65db1d172a4", 0x70}, {&(0x7f0000001540)="b3da23cbcecb0b0107a496fbe0bad3f402cb8be3b5ffdb88f6bbf4b6230ab98c8eb277df97b97bc85816f9158545dc085e3fe407d9e477a973f32fd54ea716ff085e02770b8da5e08bcb146b05b7444f78c1dbad47", 0x55}], 0x2}}, {{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000b80)="1ee88f78de7d57006d8ffa3f1d92c228", 0x10}], 0x1}}], 0x2, 0x0)
sendto$inet(r7, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)
fcntl$lock(r6, 0x26, &(0x7f0000000000)={0x2})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r4}, &(0x7f0000000200), &(0x7f0000000280)=r5}, 0x20)
syz_clone(0x240c7000, 0x0, 0x0, 0x0, 0x0, 0x0)
add_key(&(0x7f0000000080)='dns_resolver\x00', &(0x7f0000000180)={'syz', 0x0}, &(0x7f0000000680)="d836fc116d216f83002392b4e5dde6839f53113b372d9edb123c64d67b5daeafa97dfefc0f2757c501635858d61423b94ba21a3b92eaa961174c667ca2cb67ceed778854eb41139a367c884564ac9b4c331cca4fefb7c8a25882fa307bbef7ad9af2207c48fc8461a30da4fe4f259baf890492ed53ca5f9a9a8a55385c6dc19e2b9e7c353a9090f44f37f40db4b6ee46257466be28f1f8a2d09fdeede2a0e041380d062d3f82f66d860f5853971ed8606a07daad729a8c9f4cbda79deeaedfb1f9f2698bcc8d9d8bff08f8d3ba72", 0xce, 0xffffffffffffffff)
socket$xdp(0x2c, 0x3, 0x0)

136.968367ms ago: executing program 1 (id=374):
r0 = io_uring_setup(0xdac, &(0x7f0000000180)={0x0, 0x0, 0x40})
timerfd_settime(0xffffffffffffffff, 0x0, &(0x7f0000000040)={{0x77359400}, {0x0, 0x989680}}, 0x0)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x34, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bind$bt_hci(r1, &(0x7f0000000000)={0x27}, 0x74)
sendmmsg$unix(r1, &(0x7f0000000b00)=[{{&(0x7f0000000e80)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000740)=[{&(0x7f0000001dc0)="bb", 0x1}], 0x1}}], 0x1, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8501040000a27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf60230900db5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d53783bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff90326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da22940216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866f0f70612c3e0f14c95ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbc128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954fe3b3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f4101964549209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d518b6a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc50014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acf4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd574d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111cbbf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494118276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc978e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88c3c44b3b7486f979e8a3174b531f573fe0e5239c000be2733c49505000000175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c020d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d0104361c37c61a43b5afd865b60d4cae891b73220f17d25979a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9007e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e64701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d0f84fb0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867ec92d13a4faa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d93e1fe9c0b4a4a2689217380400a9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35130b00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a000000000000000000000000000020bd79e41c682139c58ac1deb039a691ad640e12c12fe11d70fe495906f2d5d71778acbd4eee53a3996cb0de84bd2b059d60c0f96a53ea44e0b293865aa68df494f87db976e36ad6c06912244d4c883c4aaa60b4a1392ce0b2f2c519663b4652ff871e0f6dfff9f7d34ecf04be0a58c3d53174b67d1886e34b81ad8c60da56acc64739c3acab24aa8d0ac92d465074f915608b1b60a948bad401b1a7fb3627bbe6c45123ed44bfdf8cc143bd1b7a663dc3d0476b8e39becffc429e41f66b1e37ae52aacaff0f1dc8ea70b68c25072e20586b19127d75fa71577f265c510000000000000000000000000046c526af5d20bb22453148ef4fbf93f9a4d3f49c3719bdce14fb6500ba19b77ef31d56acd8f5d01ff18332892856251ec90c35a16ed2d4d42df43a6b0df7cf7a84846a4e0e5e34aa797d6b6e21ba2d312e9a46cd8f83d0fbc77cf15875bc8afe84e19425793ef08784817f30f774ec7ccdc60cf8a8aeb9ca2639d76d0e53795d2e442afa40adb87d47a4ff4dcf55fcb65043b452177ec30c1082f9417a9ba50fec37f0db3b6bdec446438d95e59883eeb74a80ecaadfa7b5b979fd656d416add6acda6bbd196e03057445899a113b8634158be2968cfba986bfb1898a5b3cadbaa09d740f1f09e1bf057c0a2f6849f9a9684e5f34b23500de089c15bcb2e2d0052d05042c2c01eae1249b9c0e2f1547ffb8587b851185d4e01234893e661e97b899c9b45d1e467cfb450e6995944320dee388fbbc88f54dd94d1b1ccd1290317885ca0417d79b937c45a83014f761e4114866de3902a6c7edfc5bc05cb3d077af80000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x49)
munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r2}, 0x10)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89101)
mount_setattr(r3, &(0x7f0000001d80)='.\x00', 0x8800, &(0x7f0000001dc0)={0x0, 0x0, 0x80000}, 0x20)

0s ago: executing program 1 (id=375):
write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb80, &(0x7f0000000c40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x46, 0x0)
pwrite64(r0, &(0x7f0000000000)='W*a', 0x3, 0x9000)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0x5, 0x2, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
mq_unlink(0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x107842, 0x0)
sendfile(r3, r3, 0x0, 0x80000000)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(0xffffffffffffffff, 0x0, 0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x200020, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010200000000000000020000000900010073797a300000000040000000030a01010000000000000000020000000900010073797a30000000000900030073797a320000000014000480080001400000000008000240000000002c000000030a03000000000000000000020000000900010073797a30000000000900030073797a32"], 0xb4}}, 0x0)

kernel console output (not intermixed with test programs):



syzkaller
syzkaller login: [   14.569292][   T29] kauditd_printk_skb: 43 callbacks suppressed
[   14.569306][   T29] audit: type=1400 audit(1727846940.883:76): avc:  denied  { transition } for  pid=3145 comm="sshd" path="/bin/sh" dev="sda1" ino=89 scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   14.573051][   T29] audit: type=1400 audit(1727846940.883:77): avc:  denied  { noatsecure } for  pid=3145 comm="sshd" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   14.575607][   T29] audit: type=1400 audit(1727846940.883:78): avc:  denied  { write } for  pid=3145 comm="sh" path="pipe:[444]" dev="pipefs" ino=444 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[   14.578871][   T29] audit: type=1400 audit(1727846940.883:79): avc:  denied  { rlimitinh } for  pid=3145 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   14.581601][   T29] audit: type=1400 audit(1727846940.883:80): avc:  denied  { siginh } for  pid=3145 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   18.388823][   T29] audit: type=1400 audit(1727846944.703:81): avc:  denied  { read } for  pid=2949 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
Warning: Permanently added '10.128.1.116' (ED25519) to the list of known hosts.
[   21.850693][   T29] audit: type=1400 audit(1727846948.163:82): avc:  denied  { mounton } for  pid=3252 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1925 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   21.851628][ T3252] cgroup: Unknown subsys name 'net'
[   21.873492][   T29] audit: type=1400 audit(1727846948.163:83): avc:  denied  { mount } for  pid=3252 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   21.900957][   T29] audit: type=1400 audit(1727846948.193:84): avc:  denied  { unmount } for  pid=3252 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   22.014804][ T3252] cgroup: Unknown subsys name 'cpuset'
[   22.020890][ T3252] cgroup: Unknown subsys name 'rlimit'
[   22.137155][   T29] audit: type=1400 audit(1727846948.453:85): avc:  denied  { setattr } for  pid=3252 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=118 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   22.160480][   T29] audit: type=1400 audit(1727846948.453:86): avc:  denied  { create } for  pid=3252 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
Setting up swapspace version 1, size = 127995904 bytes
[   22.180956][   T29] audit: type=1400 audit(1727846948.453:87): avc:  denied  { write } for  pid=3252 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   22.188196][ T3258] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   22.201299][   T29] audit: type=1400 audit(1727846948.453:88): avc:  denied  { read } for  pid=3252 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   22.230098][   T29] audit: type=1400 audit(1727846948.453:89): avc:  denied  { mounton } for  pid=3252 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   22.233598][ T3252] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   22.254952][   T29] audit: type=1400 audit(1727846948.453:90): avc:  denied  { mount } for  pid=3252 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   22.286936][   T29] audit: type=1400 audit(1727846948.523:91): avc:  denied  { relabelto } for  pid=3258 comm="mkswap" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   23.370920][ T3264] chnl_net:caif_netlink_parms(): no params data found
[   23.429325][ T3266] chnl_net:caif_netlink_parms(): no params data found
[   23.439569][ T3273] chnl_net:caif_netlink_parms(): no params data found
[   23.480903][ T3264] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.488076][ T3264] bridge0: port 1(bridge_slave_0) entered disabled state
[   23.495387][ T3264] bridge_slave_0: entered allmulticast mode
[   23.501753][ T3264] bridge_slave_0: entered promiscuous mode
[   23.510624][ T3264] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.517740][ T3264] bridge0: port 2(bridge_slave_1) entered disabled state
[   23.524930][ T3264] bridge_slave_1: entered allmulticast mode
[   23.531339][ T3264] bridge_slave_1: entered promiscuous mode
[   23.607918][ T3266] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.615071][ T3266] bridge0: port 1(bridge_slave_0) entered disabled state
[   23.622359][ T3266] bridge_slave_0: entered allmulticast mode
[   23.628754][ T3266] bridge_slave_0: entered promiscuous mode
[   23.637445][ T3264] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   23.656445][ T3266] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.663603][ T3266] bridge0: port 2(bridge_slave_1) entered disabled state
[   23.670922][ T3266] bridge_slave_1: entered allmulticast mode
[   23.677349][ T3266] bridge_slave_1: entered promiscuous mode
[   23.684194][ T3264] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   23.698507][ T3273] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.705656][ T3273] bridge0: port 1(bridge_slave_0) entered disabled state
[   23.713032][ T3273] bridge_slave_0: entered allmulticast mode
[   23.719690][ T3273] bridge_slave_0: entered promiscuous mode
[   23.727976][ T3273] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.735075][ T3273] bridge0: port 2(bridge_slave_1) entered disabled state
[   23.742546][ T3273] bridge_slave_1: entered allmulticast mode
[   23.749295][ T3273] bridge_slave_1: entered promiscuous mode
[   23.764822][ T3269] chnl_net:caif_netlink_parms(): no params data found
[   23.773341][ T3274] chnl_net:caif_netlink_parms(): no params data found
[   23.791275][ T3266] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   23.801438][ T3266] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   23.822712][ T3264] team0: Port device team_slave_0 added
[   23.829555][ T3264] team0: Port device team_slave_1 added
[   23.851698][ T3273] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   23.862003][ T3273] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   23.879759][ T3266] team0: Port device team_slave_0 added
[   23.899621][ T3266] team0: Port device team_slave_1 added
[   23.911103][ T3264] batman_adv: batadv0: Adding interface: batadv_slave_0
[   23.918203][ T3264] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   23.944186][ T3264] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   23.968023][ T3273] team0: Port device team_slave_0 added
[   23.974666][ T3273] team0: Port device team_slave_1 added
[   23.980933][ T3264] batman_adv: batadv0: Adding interface: batadv_slave_1
[   23.988056][ T3264] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.014136][ T3264] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   24.052702][ T3274] bridge0: port 1(bridge_slave_0) entered blocking state
[   24.059883][ T3274] bridge0: port 1(bridge_slave_0) entered disabled state
[   24.067161][ T3274] bridge_slave_0: entered allmulticast mode
[   24.073542][ T3274] bridge_slave_0: entered promiscuous mode
[   24.080339][ T3266] batman_adv: batadv0: Adding interface: batadv_slave_0
[   24.087328][ T3266] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.113885][ T3266] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   24.124693][ T3269] bridge0: port 1(bridge_slave_0) entered blocking state
[   24.131947][ T3269] bridge0: port 1(bridge_slave_0) entered disabled state
[   24.139200][ T3269] bridge_slave_0: entered allmulticast mode
[   24.145584][ T3269] bridge_slave_0: entered promiscuous mode
[   24.152578][ T3269] bridge0: port 2(bridge_slave_1) entered blocking state
[   24.159843][ T3269] bridge0: port 2(bridge_slave_1) entered disabled state
[   24.167014][ T3269] bridge_slave_1: entered allmulticast mode
[   24.173412][ T3269] bridge_slave_1: entered promiscuous mode
[   24.180010][ T3273] batman_adv: batadv0: Adding interface: batadv_slave_0
[   24.187219][ T3273] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.213462][ T3273] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   24.224398][ T3274] bridge0: port 2(bridge_slave_1) entered blocking state
[   24.231455][ T3274] bridge0: port 2(bridge_slave_1) entered disabled state
[   24.238907][ T3274] bridge_slave_1: entered allmulticast mode
[   24.245284][ T3274] bridge_slave_1: entered promiscuous mode
[   24.251565][ T3266] batman_adv: batadv0: Adding interface: batadv_slave_1
[   24.258607][ T3266] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.284580][ T3266] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   24.299801][ T3273] batman_adv: batadv0: Adding interface: batadv_slave_1
[   24.306790][ T3273] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.332981][ T3273] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   24.376026][ T3274] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   24.390153][ T3269] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   24.405066][ T3274] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   24.420414][ T3264] hsr_slave_0: entered promiscuous mode
[   24.428256][ T3264] hsr_slave_1: entered promiscuous mode
[   24.435442][ T3269] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   24.446362][ T3273] hsr_slave_0: entered promiscuous mode
[   24.452197][ T3273] hsr_slave_1: entered promiscuous mode
[   24.458211][ T3273] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   24.465796][ T3273] Cannot create hsr debugfs directory
[   24.496320][ T3274] team0: Port device team_slave_0 added
[   24.503717][ T3266] hsr_slave_0: entered promiscuous mode
[   24.509763][ T3266] hsr_slave_1: entered promiscuous mode
[   24.515688][ T3266] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   24.523221][ T3266] Cannot create hsr debugfs directory
[   24.534810][ T3269] team0: Port device team_slave_0 added
[   24.541467][ T3269] team0: Port device team_slave_1 added
[   24.547685][ T3274] team0: Port device team_slave_1 added
[   24.587423][ T3274] batman_adv: batadv0: Adding interface: batadv_slave_0
[   24.594682][ T3274] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.620684][ T3274] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   24.631927][ T3269] batman_adv: batadv0: Adding interface: batadv_slave_0
[   24.638917][ T3269] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.665369][ T3269] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   24.685484][ T3274] batman_adv: batadv0: Adding interface: batadv_slave_1
[   24.692424][ T3274] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.718736][ T3274] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   24.729791][ T3269] batman_adv: batadv0: Adding interface: batadv_slave_1
[   24.736785][ T3269] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.762872][ T3269] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   24.827298][ T3269] hsr_slave_0: entered promiscuous mode
[   24.833351][ T3269] hsr_slave_1: entered promiscuous mode
[   24.839194][ T3269] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   24.846941][ T3269] Cannot create hsr debugfs directory
[   24.878579][ T3274] hsr_slave_0: entered promiscuous mode
[   24.884855][ T3274] hsr_slave_1: entered promiscuous mode
[   24.890630][ T3274] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   24.898605][ T3274] Cannot create hsr debugfs directory
[   24.971480][ T3273] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   24.980191][ T3273] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   24.999860][ T3273] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   25.010227][ T3273] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   25.049456][ T3264] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   25.058462][ T3264] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   25.067059][ T3264] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   25.085316][ T3264] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   25.114286][ T3266] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   25.122421][ T3266] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   25.131469][ T3266] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   25.145651][ T3266] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   25.157782][ T3273] 8021q: adding VLAN 0 to HW filter on device bond0
[   25.183710][ T3269] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   25.198679][ T3269] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   25.207810][ T3269] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   25.230551][ T3273] 8021q: adding VLAN 0 to HW filter on device team0
[   25.238106][ T3269] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   25.251357][ T3274] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   25.260554][ T3274] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   25.269161][ T3274] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   25.281963][ T3274] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   25.295095][  T108] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.302320][  T108] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.325338][ T3264] 8021q: adding VLAN 0 to HW filter on device bond0
[   25.335649][   T28] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.342708][   T28] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.384172][ T3264] 8021q: adding VLAN 0 to HW filter on device team0
[   25.392643][ T3266] 8021q: adding VLAN 0 to HW filter on device bond0
[   25.407541][ T3266] 8021q: adding VLAN 0 to HW filter on device team0
[   25.424851][  T169] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.432024][  T169] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.441852][  T169] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.448939][  T169] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.468358][  T169] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.475406][  T169] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.483968][  T169] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.491009][  T169] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.505660][ T3273] 8021q: adding VLAN 0 to HW filter on device batadv0
[   25.518635][ T3274] 8021q: adding VLAN 0 to HW filter on device bond0
[   25.538444][ T3264] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   25.548863][ T3264] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   25.597431][ T3274] 8021q: adding VLAN 0 to HW filter on device team0
[   25.610692][ T3269] 8021q: adding VLAN 0 to HW filter on device bond0
[   25.639018][  T108] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.646110][  T108] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.655776][  T108] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.662892][  T108] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.682216][ T3269] 8021q: adding VLAN 0 to HW filter on device team0
[   25.704129][ T3264] 8021q: adding VLAN 0 to HW filter on device batadv0
[   25.712940][ T3273] veth0_vlan: entered promiscuous mode
[   25.723470][ T3266] 8021q: adding VLAN 0 to HW filter on device batadv0
[   25.739432][  T108] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.746606][  T108] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.755235][  T108] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.762290][  T108] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.777789][ T3273] veth1_vlan: entered promiscuous mode
[   25.784112][ T3274] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   25.831885][ T3269] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   25.842406][ T3269] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   25.887778][ T3273] veth0_macvtap: entered promiscuous mode
[   25.916674][ T3273] veth1_macvtap: entered promiscuous mode
[   25.925490][ T3269] 8021q: adding VLAN 0 to HW filter on device batadv0
[   25.950795][ T3273] batman_adv: batadv0: Interface activated: batadv_slave_0
[   25.959084][ T3264] veth0_vlan: entered promiscuous mode
[   25.970725][ T3264] veth1_vlan: entered promiscuous mode
[   25.978442][ T3273] batman_adv: batadv0: Interface activated: batadv_slave_1
[   25.996063][ T3273] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   26.004989][ T3273] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   26.013832][ T3273] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   26.022668][ T3273] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   26.037626][ T3274] 8021q: adding VLAN 0 to HW filter on device batadv0
[   26.048888][ T3266] veth0_vlan: entered promiscuous mode
[   26.059518][ T3264] veth0_macvtap: entered promiscuous mode
[   26.071603][ T3266] veth1_vlan: entered promiscuous mode
[   26.079745][ T3264] veth1_macvtap: entered promiscuous mode
[   26.097143][ T3264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   26.107659][ T3264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   26.120594][ T3264] batman_adv: batadv0: Interface activated: batadv_slave_0
[   26.144696][ T3264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   26.155202][ T3264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   26.174423][ T3264] batman_adv: batadv0: Interface activated: batadv_slave_1
[   26.188330][ T3273] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   26.189099][ T3264] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   26.211709][ T3264] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   26.220594][ T3264] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   26.229469][ T3264] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   26.246052][ T3266] veth0_macvtap: entered promiscuous mode
[   26.261969][ T3266] veth1_macvtap: entered promiscuous mode
[   26.271728][ T3269] veth0_vlan: entered promiscuous mode
[   26.296197][ T3266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   26.306692][ T3266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   26.316725][ T3266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   26.327341][ T3266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   26.338742][ T3266] batman_adv: batadv0: Interface activated: batadv_slave_0
[   26.352393][ T3269] veth1_vlan: entered promiscuous mode
[   26.366027][ T3266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   26.376589][ T3266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   26.386456][ T3266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   26.396950][ T3266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   26.401937][ T3408] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1'.
[   26.410319][ T3266] batman_adv: batadv0: Interface activated: batadv_slave_1
[   26.431668][ T3269] veth0_macvtap: entered promiscuous mode
[   26.453204][ T3266] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   26.462032][ T3266] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   26.470964][ T3266] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   26.479762][ T3266] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   26.502318][ T3269] veth1_macvtap: entered promiscuous mode
[   26.522694][ T3274] veth0_vlan: entered promiscuous mode
[   26.545185][ T3412] loop0: detected capacity change from 0 to 1024
[   26.546268][ T3269] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   26.552126][ T3412] EXT4-fs: Ignoring removed nobh option
[   26.561962][ T3269] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   26.561974][ T3269] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   26.561987][ T3269] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   26.561995][ T3269] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   26.567579][ T3412] EXT4-fs: Ignoring removed nomblk_io_submit option
[   26.577339][ T3269] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   26.588945][ T3269] batman_adv: batadv0: Interface activated: batadv_slave_0
[   26.635136][ T3274] veth1_vlan: entered promiscuous mode
[   26.647129][ T3269] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   26.654094][ T3412] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   26.657720][ T3269] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   26.679968][ T3269] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   26.690467][ T3269] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   26.700378][ T3269] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   26.710877][ T3269] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   26.723067][ T3269] batman_adv: batadv0: Interface activated: batadv_slave_1
[   26.730710][ T3412] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   26.743480][ T3274] veth0_macvtap: entered promiscuous mode
[   26.751044][ T3274] veth1_macvtap: entered promiscuous mode
[   26.760688][ T3274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   26.771143][ T3274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   26.781095][ T3274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   26.791771][ T3274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   26.801918][ T3274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   26.812498][ T3274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   26.822512][ T3274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   26.833035][ T3274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   26.843908][ T3274] batman_adv: batadv0: Interface activated: batadv_slave_0
[   26.854294][ T3426] FAULT_INJECTION: forcing a failure.
[   26.854294][ T3426] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   26.858233][ T3424] Zero length message leads to an empty skb
[   26.867379][ T3426] CPU: 1 UID: 0 PID: 3426 Comm: syz.3.10 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   26.867408][ T3426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   26.893934][ T3426] Call Trace:
[   26.897221][ T3426]  <TASK>
[   26.900141][ T3426]  dump_stack_lvl+0xf2/0x150
[   26.904846][ T3426]  dump_stack+0x15/0x20
[   26.909058][ T3426]  should_fail_ex+0x223/0x230
[   26.913747][ T3426]  should_fail+0xb/0x10
[   26.918261][ T3426]  should_fail_usercopy+0x1a/0x20
[   26.923429][ T3426]  _copy_to_user+0x1e/0xa0
[   26.927885][ T3426]  bpf_verifier_vlog+0x405/0x4d0
[   26.932875][ T3426]  btf_verifier_log+0xaf/0xf0
[   26.937551][ T3426]  ? btf_parse_hdr+0x3b/0x3a0
[   26.942302][ T3426]  ? should_fail_ex+0xd7/0x230
[   26.947180][ T3426]  btf_parse_hdr+0x306/0x3a0
[   26.951815][ T3426]  btf_new_fd+0x270/0x790
[   26.956217][ T3426]  bpf_btf_load+0x115/0x130
[   26.960740][ T3426]  __sys_bpf+0x686/0x7a0
[   26.964977][ T3426]  __x64_sys_bpf+0x43/0x50
[   26.969465][ T3426]  x64_sys_call+0x2625/0x2d60
[   26.974227][ T3426]  do_syscall_64+0xc9/0x1c0
[   26.978787][ T3426]  ? clear_bhb_loop+0x55/0xb0
[   26.983522][ T3426]  ? clear_bhb_loop+0x55/0xb0
[   26.988284][ T3426]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   26.994199][ T3426] RIP: 0033:0x7ff48bc0dff9
[   26.998607][ T3426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   27.018320][ T3426] RSP: 002b:00007ff48a881038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   27.026727][ T3426] RAX: ffffffffffffffda RBX: 00007ff48bdc5f80 RCX: 00007ff48bc0dff9
[   27.034726][ T3426] RDX: 0000000000000028 RSI: 0000000020000b80 RDI: 0000000000000012
[   27.042684][ T3426] RBP: 00007ff48a881090 R08: 0000000000000000 R09: 0000000000000000
[   27.050908][ T3426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   27.058867][ T3426] R13: 0000000000000001 R14: 00007ff48bdc5f80 R15: 00007ffe89b46e78
[   27.066833][ T3426]  </TASK>
[   27.071378][ T3269] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   27.080108][ T3269] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   27.088806][ T3269] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   27.097574][ T3269] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   27.128909][ T3274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   27.139576][ T3274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   27.149623][ T3274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   27.160133][ T3274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   27.169963][ T3274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   27.180497][ T3274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   27.190436][ T3274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   27.201054][ T3274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   27.220033][ T3274] batman_adv: batadv0: Interface activated: batadv_slave_1
[   27.230590][ T3431] netlink: 24 bytes leftover after parsing attributes in process `syz.2.12'.
[   27.277948][   T29] kauditd_printk_skb: 116 callbacks suppressed
[   27.278046][   T29] audit: type=1326 audit(1727846953.593:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3429 comm="syz.2.12" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5489b3dff9 code=0x7ffc0000
[   27.278306][ T3264] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   27.284290][   T29] audit: type=1326 audit(1727846953.593:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3429 comm="syz.2.12" exe="/root/syz-executor" sig=0 arch=c000003e syscall=103 compat=0 ip=0x7f5489b3dff9 code=0x7ffc0000
[   27.284313][   T29] audit: type=1326 audit(1727846953.593:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3429 comm="syz.2.12" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5489b3dff9 code=0x7ffc0000
[   27.312044][ T3431] loop2: detected capacity change from 0 to 1024
[   27.316675][   T29] audit: type=1326 audit(1727846953.593:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3429 comm="syz.2.12" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5489b3dff9 code=0x7ffc0000
[   27.345065][ T3434] loop3: detected capacity change from 0 to 2048
[   27.363109][   T29] audit: type=1326 audit(1727846953.593:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3429 comm="syz.2.12" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5489b3dff9 code=0x7ffc0000
[   27.393449][ T3431] EXT4-fs: Ignoring removed nobh option
[   27.398979][   T29] audit: type=1326 audit(1727846953.593:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3429 comm="syz.2.12" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f5489b3fe8c code=0x7ffc0000
[   27.422130][ T3431] EXT4-fs: Ignoring removed nomblk_io_submit option
[   27.427623][   T29] audit: type=1326 audit(1727846953.593:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3429 comm="syz.2.12" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5489b3dff9 code=0x7ffc0000
[   27.451598][ T3274] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   27.457226][   T29] audit: type=1326 audit(1727846953.593:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3429 comm="syz.2.12" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5489b3dff9 code=0x7ffc0000
[   27.480638][ T3274] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   27.489266][   T29] audit: type=1326 audit(1727846953.593:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3429 comm="syz.2.12" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5489b3dff9 code=0x7ffc0000
[   27.512256][ T3274] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   27.521129][   T29] audit: type=1326 audit(1727846953.593:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3429 comm="syz.2.12" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5489b3dff9 code=0x7ffc0000
[   27.544348][ T3274] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   27.623454][ T3441] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   27.631208][ T3441] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[   27.649544][ T3434] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   27.651241][ T3441] netlink: 8 bytes leftover after parsing attributes in process `syz.1.15'.
[   27.674238][ T3431] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   27.700747][ T3446] netlink: 132 bytes leftover after parsing attributes in process `syz.0.13'.
[   27.714192][ T3431] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   27.748487][ T3434] siw: device registration error -23
[   27.769003][ T3266] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   27.789131][ T3452] syz.1.16[3452] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   27.789259][ T3452] syz.1.16[3452] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   27.812559][ T3273] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   27.816449][ T3452] syz.1.16[3452] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   27.850051][ T3456] loop0: detected capacity change from 0 to 512
[   27.897391][ T3452] syz.1.16[3452] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   27.897700][ T3452] syz.1.16[3452] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   27.917802][ T3452] syz.1.16[3452] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   27.980195][ T3482] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   27.995073][ T3480] capability: warning: `syz.4.27' uses deprecated v2 capabilities in a way that may be insecure
[   28.019426][ T3479] loop2: detected capacity change from 0 to 512
[   28.034885][ T3482] bridge0: port 2(bridge_slave_1) entered disabled state
[   28.042172][ T3482] bridge0: port 1(bridge_slave_0) entered disabled state
[   28.063279][ T3479] netlink: 20 bytes leftover after parsing attributes in process `syz.2.25'.
[   28.125118][ T3497] netlink: 28 bytes leftover after parsing attributes in process `syz.3.33'.
[   28.271723][ T3510] netlink: 8 bytes leftover after parsing attributes in process `syz.3.38'.
[   28.280580][ T3510] netlink: 8 bytes leftover after parsing attributes in process `syz.3.38'.
[   28.401415][ T3525] loop3: detected capacity change from 0 to 1024
[   28.408507][ T3525] EXT4-fs: Ignoring removed orlov option
[   28.414636][ T3525] EXT4-fs: Ignoring removed nomblk_io_submit option
[   28.425857][ T3525] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   28.438579][ T3525] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   28.452669][ T3525] netlink: 'syz.3.43': attribute type 10 has an invalid length.
[   28.460407][ T3525] netlink: 40 bytes leftover after parsing attributes in process `syz.3.43'.
[   28.471250][ T3525] bridge0: port 3(ipvlan0) entered blocking state
[   28.477855][ T3525] bridge0: port 3(ipvlan0) entered disabled state
[   28.484571][ T3525] ipvlan0: entered allmulticast mode
[   28.489898][ T3525] veth0_vlan: entered allmulticast mode
[   28.496325][ T3525] ipvlan0: left allmulticast mode
[   28.501437][ T3525] veth0_vlan: left allmulticast mode
[   28.507714][ T3525] A link change request failed with some changes committed already. Interface ipvlan0 may have been left with an inconsistent configuration, please check.
[   28.524111][ T3528] netlink: 24 bytes leftover after parsing attributes in process `syz.3.43'.
[   28.638390][ T3542] loop3: detected capacity change from 0 to 2048
[   28.646401][ T3542] EXT4-fs: Ignoring removed mblk_io_submit option
[   28.680001][ T3542] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   28.695233][ T3544] bridge0: port 2(bridge_slave_1) entered disabled state
[   28.702442][ T3544] bridge0: port 1(bridge_slave_0) entered disabled state
[   28.902696][ T3559] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   29.067044][ T3569] syz.4.56[3569] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   29.067093][ T3569] syz.4.56[3569] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   29.099956][ T3569] syz.4.56[3569] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   29.136280][ T3569] syz.4.56[3569] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   29.181350][ T3574] loop0: detected capacity change from 0 to 2048
[   29.275796][ T3576] loop2: detected capacity change from 0 to 128
[   29.442894][ T3582] bridge0: port 2(bridge_slave_1) entered disabled state
[   29.450106][ T3582] bridge0: port 1(bridge_slave_0) entered disabled state
[   29.520748][   T40] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm kworker/u8:2: bg 0: block 234: padding at end of block bitmap is not set
[   29.536263][   T40] EXT4-fs (loop3): Remounting filesystem read-only
[   29.569719][ T3266] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   29.838539][ T3611] bridge0: port 2(bridge_slave_1) entered disabled state
[   29.845762][ T3611] bridge0: port 1(bridge_slave_0) entered disabled state
[   29.867012][ T3611] syz.2.72 (3611) used greatest stack depth: 10832 bytes left
[   29.885943][ T3617] bridge0: port 3(ipvlan2) entered blocking state
[   29.892461][ T3617] bridge0: port 3(ipvlan2) entered disabled state
[   29.899717][ T3617] ipvlan2: entered allmulticast mode
[   29.905124][ T3617] bridge0: entered allmulticast mode
[   29.910973][ T3617] ipvlan2: left allmulticast mode
[   29.916042][ T3617] bridge0: left allmulticast mode
[   30.158959][ T3637] loop2: detected capacity change from 0 to 128
[   30.928039][ T3672] loop4: detected capacity change from 0 to 1024
[   30.935151][ T3672] EXT4-fs: Ignoring removed nobh option
[   30.940733][ T3672] EXT4-fs: Ignoring removed nomblk_io_submit option
[   30.955265][ T3672] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   30.975351][ T3672] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   31.408821][ T3695] loop0: detected capacity change from 0 to 1024
[   31.415653][ T3697] loop1: detected capacity change from 0 to 256
[   31.416303][ T3695] EXT4-fs: Ignoring removed nobh option
[   31.427629][ T3695] EXT4-fs: Ignoring removed nomblk_io_submit option
[   31.446679][ T3697] process 'syz.1.105' launched './file0' with NULL argv: empty string added
[   31.466177][ T3695] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   31.501525][ T3695] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   31.662570][ T3704] __nla_validate_parse: 7 callbacks suppressed
[   31.662587][ T3704] netlink: 8 bytes leftover after parsing attributes in process `syz.1.106'.
[   31.699599][ T3704] loop1: detected capacity change from 0 to 128
[   31.718484][ T3274] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   31.931320][ T3737] FAULT_INJECTION: forcing a failure.
[   31.931320][ T3737] name failslab, interval 1, probability 0, space 0, times 0
[   31.944523][ T3737] CPU: 1 UID: 0 PID: 3737 Comm: syz.4.119 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   31.955185][ T3737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   31.965282][ T3737] Call Trace:
[   31.968546][ T3737]  <TASK>
[   31.971464][ T3737]  dump_stack_lvl+0xf2/0x150
[   31.976128][ T3737]  dump_stack+0x15/0x20
[   31.980262][ T3737]  should_fail_ex+0x223/0x230
[   31.984945][ T3737]  ? sock_alloc_inode+0x34/0xa0
[   31.989800][ T3737]  should_failslab+0x8f/0xb0
[   31.994411][ T3737]  kmem_cache_alloc_lru_noprof+0x51/0x2a0
[   32.000157][ T3737]  sock_alloc_inode+0x34/0xa0
[   32.004820][ T3737]  ? __pfx_sock_alloc_inode+0x10/0x10
[   32.010250][ T3737]  alloc_inode+0x3c/0x160
[   32.014668][ T3737]  new_inode_pseudo+0x15/0x20
[   32.019370][ T3737]  __sock_create+0x12b/0x4f0
[   32.023970][ T3737]  sock_create_kern+0x38/0x50
[   32.028645][ T3737]  mptcp_subflow_create_socket+0x84/0x710
[   32.034438][ T3737]  ? finish_task_switch+0xbf/0x2b0
[   32.039713][ T3737]  __mptcp_nmpc_sk+0xb4/0x3c0
[   32.044374][ T3737]  mptcp_connect+0x59/0x760
[   32.049087][ T3737]  __inet_stream_connect+0x162/0x790
[   32.054820][ T3737]  ? _raw_spin_unlock_bh+0x36/0x40
[   32.060021][ T3737]  ? release_sock+0x117/0x150
[   32.064690][ T3737]  ? _raw_spin_unlock_bh+0x36/0x40
[   32.069873][ T3737]  ? lock_sock_nested+0x10f/0x140
[   32.074974][ T3737]  ? selinux_netlbl_socket_connect+0x113/0x130
[   32.081200][ T3737]  inet_stream_connect+0x48/0x70
[   32.086142][ T3737]  ? __pfx_inet_stream_connect+0x10/0x10
[   32.091883][ T3737]  __sys_connect+0x19d/0x1b0
[   32.096516][ T3737]  __x64_sys_connect+0x41/0x50
[   32.101315][ T3737]  x64_sys_call+0x2220/0x2d60
[   32.106074][ T3737]  do_syscall_64+0xc9/0x1c0
[   32.110566][ T3737]  ? clear_bhb_loop+0x55/0xb0
[   32.115235][ T3737]  ? clear_bhb_loop+0x55/0xb0
[   32.119968][ T3737]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   32.125846][ T3737] RIP: 0033:0x7f5992a3dff9
[   32.130302][ T3737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   32.149891][ T3737] RSP: 002b:00007f59916b1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[   32.158562][ T3737] RAX: ffffffffffffffda RBX: 00007f5992bf5f80 RCX: 00007f5992a3dff9
[   32.166600][ T3737] RDX: 000000000000001c RSI: 0000000020000180 RDI: 0000000000000003
[   32.174570][ T3737] RBP: 00007f59916b1090 R08: 0000000000000000 R09: 0000000000000000
[   32.182524][ T3737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   32.190576][ T3737] R13: 0000000000000000 R14: 00007f5992bf5f80 R15: 00007ffd674a22d8
[   32.198570][ T3737]  </TASK>
[   32.201811][ T3737] socket: no more sockets
[   32.215639][ T3264] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   32.241505][ T3741] netlink: 8 bytes leftover after parsing attributes in process `syz.4.121'.
[   32.292009][ T3750] loop4: detected capacity change from 0 to 2048
[   32.303009][ T3750] journal_path: Lookup failure for './file1'
[   32.309065][ T3750] EXT4-fs: error: could not find journal device path
[   32.339514][   T29] kauditd_printk_skb: 539 callbacks suppressed
[   32.339527][   T29] audit: type=1400 audit(1727846958.643:757): avc:  denied  { shutdown } for  pid=3749 comm="syz.0.124" lport=59785 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   32.366735][   T29] audit: type=1400 audit(1727846958.653:758): avc:  denied  { connect } for  pid=3749 comm="syz.0.124" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   32.386466][   T29] audit: type=1400 audit(1727846958.653:759): avc:  denied  { ioctl } for  pid=3749 comm="syz.0.124" path="socket:[4446]" dev="sockfs" ino=4446 ioctlcmd=0xb100 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   32.428385][ T3762] pim6reg: entered allmulticast mode
[   32.433787][   T29] audit: type=1326 audit(1727846958.743:760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3760 comm="syz.3.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff48bc0dff9 code=0x7ffc0000
[   32.457066][   T29] audit: type=1326 audit(1727846958.743:761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3760 comm="syz.3.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff48bc0dff9 code=0x7ffc0000
[   32.480345][ T3766] loop3: detected capacity change from 0 to 512
[   32.486856][   T29] audit: type=1326 audit(1727846958.743:762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3760 comm="syz.3.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff48bc0dff9 code=0x7ffc0000
[   32.511005][ T3762] pim6reg: left allmulticast mode
[   32.515745][   T29] audit: type=1326 audit(1727846958.753:763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3760 comm="syz.3.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff48bc0dff9 code=0x7ffc0000
[   32.517635][ T3766] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   32.539341][   T29] audit: type=1326 audit(1727846958.753:764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3760 comm="syz.3.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=108 compat=0 ip=0x7ff48bc0dff9 code=0x7ffc0000
[   32.575021][   T29] audit: type=1326 audit(1727846958.753:765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3760 comm="syz.3.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff48bc0dff9 code=0x7ffc0000
[   32.576327][ T3766] ext4 filesystem being mounted at /35/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   32.613407][   T29] audit: type=1400 audit(1727846958.923:766): avc:  denied  { mounton } for  pid=3758 comm="syz.4.129" path="/syzcgroup/cpu/syz4/cgroup.procs" dev="cgroup" ino=249 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=file permissive=1
[   32.706594][ T3266] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   32.767615][ T3782] netlink: 24 bytes leftover after parsing attributes in process `syz.4.136'.
[   32.846065][ T3791] loop4: detected capacity change from 0 to 1024
[   32.853079][ T3791] EXT4-fs: Ignoring removed nobh option
[   32.858926][ T3791] EXT4-fs: Ignoring removed nomblk_io_submit option
[   32.875992][ T3791] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   32.900979][ T3790] loop3: detected capacity change from 0 to 1024
[   32.923368][ T3790] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   32.934145][ T3791] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   32.956214][ T3790] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   32.983886][ T3266] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.156103][ T3809] loop3: detected capacity change from 0 to 2048
[   33.170659][ T3809] EXT4-fs: Ignoring removed mblk_io_submit option
[   33.194831][ T3809] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   33.320812][ T3816] FAULT_INJECTION: forcing a failure.
[   33.320812][ T3816] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   33.334006][ T3816] CPU: 0 UID: 0 PID: 3816 Comm: syz.0.144 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   33.344623][ T3816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   33.354684][ T3816] Call Trace:
[   33.357959][ T3816]  <TASK>
[   33.360886][ T3816]  dump_stack_lvl+0xf2/0x150
[   33.365575][ T3816]  dump_stack+0x15/0x20
[   33.369732][ T3816]  should_fail_ex+0x223/0x230
[   33.374431][ T3816]  should_fail+0xb/0x10
[   33.378673][ T3816]  should_fail_usercopy+0x1a/0x20
[   33.383766][ T3816]  copy_to_user_nofault+0x7a/0x110
[   33.388876][ T3816]  bpf_probe_write_user+0x80/0xc0
[   33.393904][ T3816]  bpf_prog_5cb5524816e22ab1+0x48/0x4e
[   33.399426][ T3816]  bpf_trace_run3+0x10c/0x1d0
[   33.404246][ T3816]  ? probe_sched_wakeup+0x81/0xa0
[   33.409333][ T3816]  ? audit_log_end+0x1d0/0x1e0
[   33.414181][ T3816]  ? audit_log_end+0x1d0/0x1e0
[   33.419047][ T3816]  __traceiter_kmem_cache_free+0x33/0x50
[   33.424699][ T3816]  ? audit_log_end+0x1d0/0x1e0
[   33.429519][ T3816]  kmem_cache_free+0x237/0x2d0
[   33.434295][ T3816]  audit_log_end+0x1d0/0x1e0
[   33.438908][ T3816]  audit_seccomp+0x107/0x130
[   33.443576][ T3816]  __seccomp_filter+0x6fa/0x1180
[   33.448521][ T3816]  ? proc_fail_nth_write+0x12a/0x150
[   33.453818][ T3816]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   33.459462][ T3816]  ? vfs_write+0x580/0x910
[   33.463896][ T3816]  ? __fget_files+0x1d4/0x210
[   33.468664][ T3816]  __secure_computing+0x9f/0x1c0
[   33.473619][ T3816]  syscall_trace_enter+0xd1/0x1f0
[   33.478658][ T3816]  ? fpregs_assert_state_consistent+0x83/0xa0
[   33.484810][ T3816]  do_syscall_64+0xaa/0x1c0
[   33.489394][ T3816]  ? clear_bhb_loop+0x55/0xb0
[   33.494086][ T3816]  ? clear_bhb_loop+0x55/0xb0
[   33.498772][ T3816]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   33.504766][ T3816] RIP: 0033:0x7f18c391dff9
[   33.509189][ T3816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   33.528811][ T3816] RSP: 002b:00007f18c2597038 EFLAGS: 00000246 ORIG_RAX: 000000000000007d
[   33.537321][ T3816] RAX: ffffffffffffffda RBX: 00007f18c3ad5f80 RCX: 00007f18c391dff9
[   33.545295][ T3816] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200002c0
[   33.553260][ T3816] RBP: 00007f18c2597090 R08: 0000000000000000 R09: 0000000000000000
[   33.561231][ T3816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   33.569201][ T3816] R13: 0000000000000000 R14: 00007f18c3ad5f80 R15: 00007ffe7e85bb58
[   33.577182][ T3816]  </TASK>
[   33.642200][ T3274] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.645898][ T3820] netlink: 24 bytes leftover after parsing attributes in process `syz.1.148'.
[   33.717369][ T3828] 9pnet_fd: Insufficient options for proto=fd
[   33.764141][ T3829] loop1: detected capacity change from 0 to 1024
[   33.771041][ T3829] EXT4-fs: Ignoring removed nobh option
[   33.776700][ T3829] EXT4-fs: Ignoring removed nomblk_io_submit option
[   33.858997][ T3829] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   33.921302][ T3829] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   33.994740][ T3368] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm kworker/u8:7: bg 0: block 234: padding at end of block bitmap is not set
[   34.009532][ T3368] EXT4-fs (loop3): Remounting filesystem read-only
[   34.038555][ T3266] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.483742][ T3269] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.506258][ T3846] loop1: detected capacity change from 0 to 128
[   34.552915][ T3846] syz.1.155: attempt to access beyond end of device
[   34.552915][ T3846] loop1: rw=2049, sector=145, nr_sectors = 896 limit=128
[   34.642517][ T3850] loop0: detected capacity change from 0 to 8192
[   34.683309][ T3871] loop1: detected capacity change from 0 to 128
[   34.691215][ T3850]  loop0: p1 < > p4 < >
[   34.752924][ T3878] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[   34.761533][ T3878] vhci_hcd: default hub control req: d300 v0000 i0000 l0
[   34.788590][ T3883] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[   34.810342][ T3871] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 548, start 00000401)
[   34.820535][ T3871] FAT-fs (loop1): Filesystem has been set read-only
[   34.820652][ T3871] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 548, start 00000401)
[   34.837864][ T3871] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 548, start 00000401)
[   34.876323][ T3887] loop0: detected capacity change from 0 to 512
[   34.888019][ T3887] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities
[   34.898050][ T3871] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   34.950305][ T3895] ebtables: ebtables: counters copy to user failed while replacing table
[   35.001131][ T3910] netlink: 8 bytes leftover after parsing attributes in process `syz.3.176'.
[   35.010178][ T3910] netlink: 4 bytes leftover after parsing attributes in process `syz.3.176'.
[   35.064206][ T3919] FAULT_INJECTION: forcing a failure.
[   35.064206][ T3919] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   35.077717][ T3919] CPU: 1 UID: 0 PID: 3919 Comm: syz.3.179 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   35.088353][ T3919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   35.098420][ T3919] Call Trace:
[   35.101702][ T3919]  <TASK>
[   35.104707][ T3919]  dump_stack_lvl+0xf2/0x150
[   35.109311][ T3919]  dump_stack+0x15/0x20
[   35.113544][ T3919]  should_fail_ex+0x223/0x230
[   35.118233][ T3919]  should_fail+0xb/0x10
[   35.122382][ T3919]  should_fail_usercopy+0x1a/0x20
[   35.127435][ T3919]  _copy_from_user+0x1e/0xd0
[   35.132055][ T3919]  generic_map_update_batch+0x379/0x520
[   35.137680][ T3919]  ? __pfx_generic_map_update_batch+0x10/0x10
[   35.143740][ T3919]  bpf_map_do_batch+0x28c/0x3f0
[   35.148595][ T3919]  __sys_bpf+0x2e5/0x7a0
[   35.152820][ T3919]  __x64_sys_bpf+0x43/0x50
[   35.157225][ T3919]  x64_sys_call+0x2625/0x2d60
[   35.161894][ T3919]  do_syscall_64+0xc9/0x1c0
[   35.166402][ T3919]  ? clear_bhb_loop+0x55/0xb0
[   35.171160][ T3919]  ? clear_bhb_loop+0x55/0xb0
[   35.175825][ T3919]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   35.181734][ T3919] RIP: 0033:0x7ff48bc0dff9
[   35.186173][ T3919] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   35.205935][ T3919] RSP: 002b:00007ff48a881038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   35.214351][ T3919] RAX: ffffffffffffffda RBX: 00007ff48bdc5f80 RCX: 00007ff48bc0dff9
[   35.222325][ T3919] RDX: 0000000000000038 RSI: 0000000020000240 RDI: 000000000000001a
[   35.230510][ T3919] RBP: 00007ff48a881090 R08: 0000000000000000 R09: 0000000000000000
[   35.238481][ T3919] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   35.246553][ T3919] R13: 0000000000000000 R14: 00007ff48bdc5f80 R15: 00007ffe89b46e78
[   35.254569][ T3919]  </TASK>
[   35.527446][ T3871] syz.1.164 (3871) used greatest stack depth: 10368 bytes left
[   35.599571][ T3937] loop4: detected capacity change from 0 to 128
[   35.667693][ T3937] syz.4.187: attempt to access beyond end of device
[   35.667693][ T3937] loop4: rw=0, sector=121, nr_sectors = 120 limit=128
[   35.687771][ T3937] bpf_get_probe_write_proto: 20 callbacks suppressed
[   35.687784][ T3937] syz.4.187[3937] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   35.707531][ T3949] bond_slave_1: mtu less than device minimum
[   35.717365][ T3937] syz.4.187[3937] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   35.733247][ T3952] FAULT_INJECTION: forcing a failure.
[   35.733247][ T3952] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   35.757641][ T3952] CPU: 0 UID: 0 PID: 3952 Comm: syz.0.193 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   35.768325][ T3952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   35.778399][ T3952] Call Trace:
[   35.781750][ T3952]  <TASK>
[   35.784679][ T3952]  dump_stack_lvl+0xf2/0x150
[   35.789302][ T3952]  dump_stack+0x15/0x20
[   35.793466][ T3952]  should_fail_ex+0x223/0x230
[   35.798229][ T3952]  should_fail+0xb/0x10
[   35.802391][ T3952]  should_fail_usercopy+0x1a/0x20
[   35.808033][ T3952]  copy_page_from_iter_atomic+0x22e/0xfa0
[   35.813812][ T3952]  ? shmem_write_begin+0xa2/0x180
[   35.818920][ T3952]  ? shmem_write_begin+0xda/0x180
[   35.824040][ T3952]  generic_perform_write+0x2f1/0x4a0
[   35.829854][ T3952]  shmem_file_write_iter+0xc2/0xe0
[   35.835118][ T3952]  vfs_write+0x76a/0x910
[   35.839506][ T3952]  ? __pfx_shmem_file_write_iter+0x10/0x10
[   35.845468][ T3952]  ksys_write+0xeb/0x1b0
[   35.849783][ T3952]  __x64_sys_write+0x42/0x50
[   35.854391][ T3952]  x64_sys_call+0x27dd/0x2d60
[   35.859091][ T3952]  do_syscall_64+0xc9/0x1c0
[   35.863680][ T3952]  ? clear_bhb_loop+0x55/0xb0
[   35.868434][ T3952]  ? clear_bhb_loop+0x55/0xb0
[   35.873237][ T3952]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   35.879148][ T3952] RIP: 0033:0x7f18c391cadf
[   35.883651][ T3952] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[   35.903302][ T3952] RSP: 002b:00007f18c2596df0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   35.911710][ T3952] RAX: ffffffffffffffda RBX: 0000000000080000 RCX: 00007f18c391cadf
[   35.919727][ T3952] RDX: 0000000000080000 RSI: 00007f18ba177000 RDI: 0000000000000004
[   35.927684][ T3952] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000005a7
[   35.935702][ T3952] R10: 00000000000003c2 R11: 0000000000000293 R12: 0000000000000004
[   35.943662][ T3952] R13: 00007f18c2596ef0 R14: 00007f18c2596eb0 R15: 00007f18ba177000
[   35.951629][ T3952]  </TASK>
[   35.959615][   T28] kworker/u8:1: attempt to access beyond end of device
[   35.959615][   T28] loop4: rw=1, sector=241, nr_sectors = 800 limit=128
[   35.962365][ T3952] loop0: detected capacity change from 0 to 1024
[   35.983809][ T3952] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   35.994831][ T3952] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   36.029578][ T3952] JBD2: no valid journal superblock found
[   36.035398][ T3952] EXT4-fs (loop0): Could not load journal inode
[   36.036175][ T3957] netlink: 20 bytes leftover after parsing attributes in process `syz.4.195'.
[   36.050622][ T3957] netlink: 16 bytes leftover after parsing attributes in process `syz.4.195'.
[   36.095631][ T3962] FAULT_INJECTION: forcing a failure.
[   36.095631][ T3962] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   36.110010][ T3962] CPU: 1 UID: 0 PID: 3962 Comm: syz.0.198 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   36.120611][ T3962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   36.130722][ T3962] Call Trace:
[   36.134029][ T3962]  <TASK>
[   36.136964][ T3962]  dump_stack_lvl+0xf2/0x150
[   36.141563][ T3962]  dump_stack+0x15/0x20
[   36.145789][ T3962]  should_fail_ex+0x223/0x230
[   36.150656][ T3962]  should_fail+0xb/0x10
[   36.154852][ T3962]  should_fail_usercopy+0x1a/0x20
[   36.159894][ T3962]  _copy_from_user+0x1e/0xd0
[   36.164490][ T3962]  copy_msghdr_from_user+0x54/0x2a0
[   36.169710][ T3962]  __sys_sendmmsg+0x21a/0x500
[   36.174419][ T3962]  ? trace_sys_enter+0x65/0xa0
[   36.179248][ T3962]  __x64_sys_sendmmsg+0x57/0x70
[   36.184283][ T3962]  x64_sys_call+0xa49/0x2d60
[   36.188869][ T3962]  do_syscall_64+0xc9/0x1c0
[   36.193408][ T3962]  ? clear_bhb_loop+0x55/0xb0
[   36.198165][ T3962]  ? clear_bhb_loop+0x55/0xb0
[   36.202926][ T3962]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   36.208835][ T3962] RIP: 0033:0x7f18c391dff9
[   36.213318][ T3962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   36.233022][ T3962] RSP: 002b:00007f18c2597038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   36.241424][ T3962] RAX: ffffffffffffffda RBX: 00007f18c3ad5f80 RCX: 00007f18c391dff9
[   36.249382][ T3962] RDX: 040000000000009f RSI: 00000000200002c0 RDI: 0000000000000006
[   36.257427][ T3962] RBP: 00007f18c2597090 R08: 0000000000000000 R09: 0000000000000000
[   36.265414][ T3962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   36.273393][ T3962] R13: 0000000000000000 R14: 00007f18c3ad5f80 R15: 00007ffe7e85bb58
[   36.281357][ T3962]  </TASK>
[   36.358834][ T3975] netlink: 8 bytes leftover after parsing attributes in process `syz.2.203'.
[   36.368393][ T3975] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   36.406995][ T3984] syz.3.206 uses obsolete (PF_INET,SOCK_PACKET)
[   36.442464][ T3982] loop4: detected capacity change from 0 to 1024
[   36.457127][ T3982] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   36.476744][ T3982] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   36.502178][ T3982] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.207: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[   36.589149][ T3993] netlink: 8 bytes leftover after parsing attributes in process `syz.0.201'.
[   36.623176][ T3986] loop0: detected capacity change from 0 to 128
[   36.647979][ T4009] 9pnet: Could not find request transport: fdþ¤ö¦æ�z4
[   36.686760][ T4019] loop3: detected capacity change from 0 to 128
[   36.699428][ T3274] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.708644][ T4019] syz.3.218: attempt to access beyond end of device
[   36.708644][ T4019] loop3: rw=0, sector=121, nr_sectors = 119 limit=128
[   36.759452][ T4021] loop4: detected capacity change from 0 to 1024
[   36.766609][ T4021] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[   36.777554][ T4021] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[   36.787258][ T4021] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   36.797444][ T4021] EXT4-fs (loop4): filesystem has both journal inode and journal device!
[   36.821182][   T40] kworker/u8:2: attempt to access beyond end of device
[   36.821182][   T40] loop3: rw=1, sector=241, nr_sectors = 800 limit=128
[   36.911449][ T4032] binfmt_misc: register: failed to install interpreter file ./file0/../file0
[   37.064833][ T4047] loop3: detected capacity change from 0 to 2048
[   37.079222][ T4047] EXT4-fs: Ignoring removed mblk_io_submit option
[   37.096165][ T4047] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   37.312572][ T4052] netlink: 24 bytes leftover after parsing attributes in process `syz.1.230'.
[   37.324331][ T4054] loop0: detected capacity change from 0 to 2048
[   37.345192][ T4054] EXT4-fs: Ignoring removed mblk_io_submit option
[   37.393139][ T4054] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   37.409159][   T29] kauditd_printk_skb: 350 callbacks suppressed
[   37.409173][   T29] audit: type=1326 audit(1727846963.723:1117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4051 comm="syz.1.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71b383dff9 code=0x7ffc0000
[   37.438776][   T29] audit: type=1326 audit(1727846963.723:1118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4051 comm="syz.1.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=103 compat=0 ip=0x7f71b383dff9 code=0x7ffc0000
[   37.457233][ T4057] loop1: detected capacity change from 0 to 1024
[   37.462156][   T29] audit: type=1326 audit(1727846963.723:1119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4051 comm="syz.1.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71b383dff9 code=0x7ffc0000
[   37.491828][   T29] audit: type=1326 audit(1727846963.723:1120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4051 comm="syz.1.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f71b383dff9 code=0x7ffc0000
[   37.515207][   T29] audit: type=1326 audit(1727846963.723:1121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4051 comm="syz.1.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71b383dff9 code=0x7ffc0000
[   37.534167][ T4057] EXT4-fs: Ignoring removed nobh option
[   37.538657][   T29] audit: type=1326 audit(1727846963.723:1122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4051 comm="syz.1.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f71b383fe8c code=0x7ffc0000
[   37.538688][   T29] audit: type=1326 audit(1727846963.723:1123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4051 comm="syz.1.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71b383dff9 code=0x7ffc0000
[   37.544310][ T4057] EXT4-fs: Ignoring removed nomblk_io_submit option
[   37.567478][   T29] audit: type=1326 audit(1727846963.723:1124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4051 comm="syz.1.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f71b383dff9 code=0x7ffc0000
[   37.620670][   T29] audit: type=1326 audit(1727846963.723:1125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4051 comm="syz.1.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71b383dff9 code=0x7ffc0000
[   37.644064][   T29] audit: type=1326 audit(1727846963.723:1126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4051 comm="syz.1.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f71b383dff9 code=0x7ffc0000
[   37.707215][ T4057] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   37.744529][ T4062] FAULT_INJECTION: forcing a failure.
[   37.744529][ T4062] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   37.757649][ T4062] CPU: 1 UID: 0 PID: 4062 Comm: syz.2.231 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   37.768287][ T4062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   37.778392][ T4062] Call Trace:
[   37.781662][ T4062]  <TASK>
[   37.784618][ T4062]  dump_stack_lvl+0xf2/0x150
[   37.789283][ T4062]  dump_stack+0x15/0x20
[   37.793439][ T4062]  should_fail_ex+0x223/0x230
[   37.798128][ T4062]  should_fail+0xb/0x10
[   37.802287][ T4062]  should_fail_usercopy+0x1a/0x20
[   37.807319][ T4062]  _copy_from_user+0x1e/0xd0
[   37.811906][ T4062]  copy_msghdr_from_user+0x54/0x2a0
[   37.817108][ T4062]  __sys_sendmsg+0x171/0x270
[   37.821720][ T4062]  __x64_sys_sendmsg+0x46/0x50
[   37.826499][ T4062]  x64_sys_call+0x2689/0x2d60
[   37.831192][ T4062]  do_syscall_64+0xc9/0x1c0
[   37.835758][ T4062]  ? clear_bhb_loop+0x55/0xb0
[   37.840436][ T4062]  ? clear_bhb_loop+0x55/0xb0
[   37.845199][ T4062]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   37.851226][ T4062] RIP: 0033:0x7f5489b3dff9
[   37.855653][ T4062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   37.875358][ T4062] RSP: 002b:00007f54887b7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   37.883965][ T4062] RAX: ffffffffffffffda RBX: 00007f5489cf5f80 RCX: 00007f5489b3dff9
[   37.892048][ T4062] RDX: 0000000000000000 RSI: 00000000200007c0 RDI: 0000000000000006
[   37.900096][ T4062] RBP: 00007f54887b7090 R08: 0000000000000000 R09: 0000000000000000
[   37.908140][ T4062] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   37.916122][ T4062] R13: 0000000000000000 R14: 00007f5489cf5f80 R15: 00007fff8c1f5908
[   37.924173][ T4062]  </TASK>
[   37.981011][   T40] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm kworker/u8:2: bg 0: block 234: padding at end of block bitmap is not set
[   38.015041][   T40] EXT4-fs (loop3): Remounting filesystem read-only
[   38.030155][ T4057] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   38.103998][ T3266] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.185955][   T40] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm kworker/u8:2: bg 0: block 234: padding at end of block bitmap is not set
[   38.214993][ T3269] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.229581][   T40] EXT4-fs (loop0): Remounting filesystem read-only
[   38.258021][ T3264] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.313244][ T4087] loop2: detected capacity change from 0 to 128
[   38.333925][ T4087] =======================================================
[   38.333925][ T4087] WARNING: The mand mount option has been deprecated and
[   38.333925][ T4087]          and is ignored by this kernel. Remove the mand
[   38.333925][ T4087]          option from the mount to silence this warning.
[   38.333925][ T4087] =======================================================
[   38.379293][ T4085] loop3: detected capacity change from 0 to 2048
[   38.394013][ T4085] EXT4-fs: Ignoring removed mblk_io_submit option
[   38.402656][ T4087] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   38.420995][ T4087] ext4 filesystem being mounted at /53/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   38.443994][ T4085] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.514112][ T3273] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   38.579439][ T4099] netlink: 8 bytes leftover after parsing attributes in process `syz.1.240'.
[   38.608316][ T4102] loop2: detected capacity change from 0 to 128
[   38.628389][ T4102] vfat: Unknown parameter '.'
[   38.698592][ T4103] loop1: detected capacity change from 0 to 128
[   38.775811][ T4102] loop2: detected capacity change from 0 to 8192
[   38.844283][ T4102]  loop2: p2 p3 p4
[   38.850128][ T4102] loop2: p2 start 452985600 is beyond EOD, truncated
[   38.856878][ T4102] loop2: p3 start 4177527808 is beyond EOD, truncated
[   38.863769][ T4102] loop2: p4 size 3599499392 extends beyond EOD, truncated
[   38.894742][ T3430] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   38.902173][ T3430] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   38.909683][ T3430] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   38.917126][ T3430] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   38.924531][ T3430] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   38.931920][ T3430] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   38.939350][ T3430] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   38.946849][ T3430] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   38.951790][ T4107] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   38.954245][ T3430] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   38.954267][ T3430] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   38.977483][ T3430] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   38.977507][ T3430] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   38.977527][ T3430] hid-generic 0000:0000:0000.0001: item fetching failed at offset 20/32
[   38.981997][ T3430] hid-generic 0000:0000:0000.0001: probe with driver hid-generic failed with error -22
[   39.011655][ T4107] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   39.035322][ T4107] netlink: 76 bytes leftover after parsing attributes in process `syz.0.248'.
[   39.035599][ T3254] udevd[3254]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   39.174712][ T4116] EXT4-fs (sda1): resizing filesystem from 262144 to 1 blocks
[   39.182366][ T4116] EXT4-fs warning (device sda1): ext4_resize_fs:2040: can't shrink FS - resize aborted
[   39.202920][ T4118] FAULT_INJECTION: forcing a failure.
[   39.202920][ T4118] name failslab, interval 1, probability 0, space 0, times 0
[   39.215562][ T4118] CPU: 1 UID: 0 PID: 4118 Comm: syz.0.253 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   39.226160][ T4118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   39.236319][ T4118] Call Trace:
[   39.239590][ T4118]  <TASK>
[   39.242677][ T4118]  dump_stack_lvl+0xf2/0x150
[   39.247276][ T4118]  dump_stack+0x15/0x20
[   39.251456][ T4118]  should_fail_ex+0x223/0x230
[   39.256146][ T4118]  ? sidtab_sid2str_get+0xb8/0x140
[   39.261272][ T4118]  should_failslab+0x8f/0xb0
[   39.265862][ T4118]  __kmalloc_node_track_caller_noprof+0xa6/0x380
[   39.272275][ T4118]  ? vsnprintf+0xdd8/0xe30
[   39.276766][ T4118]  kmemdup_noprof+0x2a/0x60
[   39.281374][ T4118]  sidtab_sid2str_get+0xb8/0x140
[   39.286401][ T4118]  security_sid_to_context_core+0x1eb/0x2f0
[   39.292411][ T4118]  security_sid_to_context+0x27/0x30
[   39.297822][ T4118]  selinux_secid_to_secctx+0x22/0x30
[   39.303176][ T4118]  security_secid_to_secctx+0x48/0x90
[   39.308554][ T4118]  audit_log_task_context+0x8c/0x1b0
[   39.313971][ T4118]  audit_log_task+0xfb/0x180
[   39.318563][ T4118]  audit_seccomp+0x68/0x130
[   39.323171][ T4118]  __seccomp_filter+0x6fa/0x1180
[   39.328120][ T4118]  ? proc_fail_nth_write+0x12a/0x150
[   39.333512][ T4118]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   39.339143][ T4118]  ? vfs_write+0x580/0x910
[   39.343615][ T4118]  ? __fget_files+0x1d4/0x210
[   39.348380][ T4118]  __secure_computing+0x9f/0x1c0
[   39.353356][ T4118]  syscall_trace_enter+0xd1/0x1f0
[   39.358462][ T4118]  ? fpregs_assert_state_consistent+0x83/0xa0
[   39.364588][ T4118]  do_syscall_64+0xaa/0x1c0
[   39.369156][ T4118]  ? clear_bhb_loop+0x55/0xb0
[   39.373884][ T4118]  ? clear_bhb_loop+0x55/0xb0
[   39.378565][ T4118]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   39.384485][ T4118] RIP: 0033:0x7f18c391ca3c
[   39.388894][ T4118] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[   39.408581][ T4118] RSP: 002b:00007f18c2597030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   39.417035][ T4118] RAX: ffffffffffffffda RBX: 00007f18c3ad5f80 RCX: 00007f18c391ca3c
[   39.425036][ T4118] RDX: 000000000000000f RSI: 00007f18c25970a0 RDI: 0000000000000005
[   39.433004][ T4118] RBP: 00007f18c2597090 R08: 0000000000000000 R09: 0000000000000000
[   39.441061][ T4118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   39.449038][ T4118] R13: 0000000000000000 R14: 00007f18c3ad5f80 R15: 00007ffe7e85bb58
[   39.457100][ T4118]  </TASK>
[   39.470929][ T3368] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm kworker/u8:7: bg 0: block 234: padding at end of block bitmap is not set
[   39.486639][ T3368] EXT4-fs (loop3): Remounting filesystem read-only
[   39.489493][ T4116] FAULT_INJECTION: forcing a failure.
[   39.489493][ T4116] name failslab, interval 1, probability 0, space 0, times 0
[   39.506379][ T4116] CPU: 1 UID: 0 PID: 4116 Comm: syz.2.252 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   39.514546][ T3266] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.517052][ T4116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   39.536138][ T4116] Call Trace:
[   39.539417][ T4116]  <TASK>
[   39.542339][ T4116]  dump_stack_lvl+0xf2/0x150
[   39.546926][ T4116]  dump_stack+0x15/0x20
[   39.551130][ T4116]  should_fail_ex+0x223/0x230
[   39.555925][ T4116]  ? jbd2_journal_add_journal_head+0x66/0x3c0
[   39.562001][ T4116]  should_failslab+0x8f/0xb0
[   39.566606][ T4116]  kmem_cache_alloc_noprof+0x4c/0x290
[   39.572079][ T4116]  jbd2_journal_add_journal_head+0x66/0x3c0
[   39.577986][ T4116]  jbd2_journal_get_write_access+0x16f/0x240
[   39.583986][ T4116]  __ext4_journal_get_write_access+0x13d/0x3f0
[   39.590233][ T4116]  ext4_update_superblocks_fn+0x191/0xc40
[   39.595959][ T4116]  ? __pfx_set_overhead+0x10/0x10
[   39.601101][ T4116]  ext4_update_overhead+0xdc/0xf0
[   39.606148][ T4116]  ext4_resize_end+0x41/0x60
[   39.610826][ T4116]  ext4_ioctl+0x1bbb/0x2dd0
[   39.615354][ T4116]  ? ioctl_has_perm+0x286/0x2e0
[   39.620298][ T4116]  ? do_vfs_ioctl+0x1160/0x1530
[   39.625240][ T4116]  ? selinux_file_ioctl+0x2f7/0x380
[   39.630452][ T4116]  ? __fget_files+0x1d4/0x210
[   39.635369][ T4116]  ? __pfx_ext4_ioctl+0x10/0x10
[   39.640243][ T4116]  __se_sys_ioctl+0xcd/0x140
[   39.644893][ T4116]  __x64_sys_ioctl+0x43/0x50
[   39.649591][ T4116]  x64_sys_call+0x15cc/0x2d60
[   39.654297][ T4116]  do_syscall_64+0xc9/0x1c0
[   39.658848][ T4116]  ? clear_bhb_loop+0x55/0xb0
[   39.663536][ T4116]  ? clear_bhb_loop+0x55/0xb0
[   39.668279][ T4116]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   39.674235][ T4116] RIP: 0033:0x7f5489b3dff9
[   39.678652][ T4116] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   39.698276][ T4116] RSP: 002b:00007f54887b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   39.706690][ T4116] RAX: ffffffffffffffda RBX: 00007f5489cf5f80 RCX: 00007f5489b3dff9
[   39.714667][ T4116] RDX: 0000000020000180 RSI: 0000000040086610 RDI: 0000000000000005
[   39.722649][ T4116] RBP: 00007f54887b7090 R08: 0000000000000000 R09: 0000000000000000
[   39.730724][ T4116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   39.738700][ T4116] R13: 0000000000000000 R14: 00007f5489cf5f80 R15: 00007fff8c1f5908
[   39.746684][ T4116]  </TASK>
[   39.749805][ T4116] ENOMEM in journal_alloc_journal_head, retrying.
[   39.780829][ T4134] netlink: 8 bytes leftover after parsing attributes in process `syz.3.255'.
[   39.789734][ T4134] netlink: 2 bytes leftover after parsing attributes in process `syz.3.255'.
[   39.812409][ T4128] infiniband Syz1: RDMA CMA: cma_listen_on_dev, error -98
[   39.830020][ T4128] loop0: detected capacity change from 0 to 512
[   39.904011][ T4128] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   39.916616][ T4128] ext4 filesystem being mounted at /46/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   39.952984][ T4149] FAULT_INJECTION: forcing a failure.
[   39.952984][ T4149] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   39.966366][ T4149] CPU: 1 UID: 0 PID: 4149 Comm: syz.1.264 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   39.977203][ T4149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   39.987365][ T4149] Call Trace:
[   39.990642][ T4149]  <TASK>
[   39.993657][ T4149]  dump_stack_lvl+0xf2/0x150
[   39.998321][ T4149]  dump_stack+0x15/0x20
[   40.003011][ T4149]  should_fail_ex+0x223/0x230
[   40.007710][ T4149]  should_fail_alloc_page+0xfd/0x110
[   40.013066][ T4149]  __alloc_pages_noprof+0x109/0x360
[   40.018284][ T4149]  alloc_pages_mpol_noprof+0xb1/0x1e0
[   40.023695][ T4149]  vma_alloc_folio_noprof+0x1a0/0x2f0
[   40.029157][ T4149]  handle_mm_fault+0xdbe/0x2a80
[   40.034023][ T4149]  exc_page_fault+0x3b9/0x650
[   40.038743][ T4149]  asm_exc_page_fault+0x26/0x30
[   40.043653][ T4149] RIP: 0033:0x7f71b37018c0
[   40.048102][ T4149] Code: 39 4f 08 72 4c 8d 4d ff 85 ed 74 33 66 0f 1f 44 00 00 48 39 f0 72 1b 4d 8b 07 49 89 c1 49 29 f1 47 0f b6 0c 08 45 84 c9 74 08 <45> 88 0c 00 49 8b 47 10 48 83 c0 01 49 89 47 10 83 e9 01 73 d3 41
[   40.067713][ T4149] RSP: 002b:00007f71b24b64a0 EFLAGS: 00010202
[   40.073905][ T4149] RAX: 000000000001c000 RBX: 00007f71b24b6540 RCX: 000000000000000a
[   40.081889][ T4149] RDX: 0000000000005c7b RSI: 0000000000003c7c RDI: 00007f71b24b65e0
[   40.089851][ T4149] RBP: 000000000000000b R08: 00007f71aa097000 R09: 0000000000000073
[   40.097846][ T4149] R10: 0000000020001682 R11: 000000000000061b R12: 0000000000003001
[   40.105883][ T4149] R13: 00007f71b38c4a40 R14: 000000000000001b R15: 00007f71b24b65e0
[   40.113871][ T4149]  </TASK>
[   40.117116][ T4149] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[   40.129935][ T4149] loop1: detected capacity change from 0 to 1024
[   40.173325][ T4149] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   40.180279][ T4153] loop2: detected capacity change from 0 to 2048
[   40.191315][ T4149] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   40.201384][ T4153] EXT4-fs: Ignoring removed mblk_io_submit option
[   40.201570][ T4149] EXT4-fs (loop1): orphan cleanup on readonly fs
[   40.240982][ T4149] EXT4-fs error (device loop1): ext4_map_blocks:705: inode #3: block 3: comm syz.1.264: lblock 3 mapped to illegal pblock 3 (length 1)
[   40.265369][ T4153] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.273860][ T4149] EXT4-fs error (device loop1): ext4_acquire_dquot:6879: comm syz.1.264: Failed to acquire dquot type 0
[   40.293989][ T4149] EXT4-fs error (device loop1): ext4_map_blocks:671: inode #3: block 3: comm syz.1.264: lblock 3 mapped to illegal pblock 3 (length 1)
[   40.313732][ T4149] EXT4-fs error (device loop1): ext4_acquire_dquot:6879: comm syz.1.264: Failed to acquire dquot type 0
[   40.331990][ T4149] EXT4-fs error (device loop1): ext4_free_blocks:6589: comm syz.1.264: Freeing blocks not in datazone - block = 0, count = 4096
[   40.346723][ T3264] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   40.353696][ T4149] EXT4-fs error (device loop1): ext4_map_blocks:671: inode #3: block 3: comm syz.1.264: lblock 3 mapped to illegal pblock 3 (length 1)
[   40.369661][ T4149] EXT4-fs error (device loop1): ext4_acquire_dquot:6879: comm syz.1.264: Failed to acquire dquot type 0
[   40.381107][ T4149] EXT4-fs (loop1): 1 orphan inode deleted
[   40.387271][ T4149] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   40.418746][ T4168] loop3: detected capacity change from 0 to 512
[   40.429343][ T4168] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   40.442403][ T4168] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   40.452644][ T3269] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.477704][ T4168] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2862: Unable to expand inode 17. Delete some EAs or run e2fsck.
[   40.518968][ T4168] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #16: comm syz.3.271: invalid indirect mapped block 4294967295 (level 0)
[   40.554735][ T4168] EXT4-fs (loop3): Remounting filesystem read-only
[   40.562561][ T4168] EXT4-fs (loop3): 1 orphan inode deleted
[   40.568333][ T4168] EXT4-fs (loop3): 1 truncate cleaned up
[   40.611078][ T4168] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.640613][ T4168] SELinux: (dev loop3, type ext4) getxattr errno 5
[   40.660640][ T4181] FAULT_INJECTION: forcing a failure.
[   40.660640][ T4181] name failslab, interval 1, probability 0, space 0, times 0
[   40.673564][ T4181] CPU: 0 UID: 0 PID: 4181 Comm: syz.1.275 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   40.684210][ T4181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   40.694440][ T4181] Call Trace:
[   40.697717][ T4181]  <TASK>
[   40.700645][ T4181]  dump_stack_lvl+0xf2/0x150
[   40.705294][ T4181]  dump_stack+0x15/0x20
[   40.709471][ T4181]  should_fail_ex+0x223/0x230
[   40.714149][ T4181]  ? get_mountpoint+0x179/0x2d0
[   40.719014][ T4181]  should_failslab+0x8f/0xb0
[   40.723606][ T4181]  __kmalloc_cache_noprof+0x4b/0x2a0
[   40.728899][ T4181]  get_mountpoint+0x179/0x2d0
[   40.733633][ T4181]  do_lock_mount+0x1e1/0x290
[   40.738325][ T4181]  do_move_mount+0x25/0x550
[   40.742951][ T4181]  ? kmem_cache_free+0xdc/0x2d0
[   40.747908][ T4181]  do_move_mount_old+0xa0/0xd0
[   40.752750][ T4181]  path_mount+0x536/0xb30
[   40.757140][ T4181]  __se_sys_mount+0x27c/0x2d0
[   40.758485][ T3998] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set
[   40.761828][ T4181]  ? fput+0x14e/0x190
[   40.777613][ T3998] EXT4-fs (loop2): Remounting filesystem read-only
[   40.780303][ T4181]  __x64_sys_mount+0x67/0x80
[   40.789048][ T4168] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.791350][ T4181]  x64_sys_call+0x203e/0x2d60
[   40.805043][ T4181]  do_syscall_64+0xc9/0x1c0
[   40.809632][ T4181]  ? clear_bhb_loop+0x55/0xb0
[   40.814330][ T4181]  ? clear_bhb_loop+0x55/0xb0
[   40.819030][ T4181]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   40.825017][ T4181] RIP: 0033:0x7f71b383dff9
[   40.829528][ T4181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   40.849181][ T4181] RSP: 002b:00007f71b24b7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   40.857659][ T4181] RAX: ffffffffffffffda RBX: 00007f71b39f5f80 RCX: 00007f71b383dff9
[   40.865688][ T4181] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000020000480
[   40.873657][ T4181] RBP: 00007f71b24b7090 R08: 0000000000000000 R09: 0000000000000000
[   40.881676][ T4181] R10: 0000000000002000 R11: 0000000000000246 R12: 0000000000000001
[   40.889640][ T4181] R13: 0000000000000000 R14: 00007f71b39f5f80 R15: 00007ffcb9ee8008
[   40.897679][ T4181]  </TASK>
[   40.921593][ T3273] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.013930][ T4190] loop1: detected capacity change from 0 to 8192
[   41.068616][ T4190] vfat: Unknown parameter '18446744073709551615ÿÿ'
[   41.149105][ T4202] netlink: 24 bytes leftover after parsing attributes in process `syz.1.283'.
[   41.166645][ T4204] loop3: detected capacity change from 0 to 256
[   41.184700][ T4204] FAT-fs (loop3): Directory bread(block 64) failed
[   41.193334][ T4204] FAT-fs (loop3): Directory bread(block 65) failed
[   41.200880][ T4204] FAT-fs (loop3): Directory bread(block 66) failed
[   41.213058][ T4204] FAT-fs (loop3): Directory bread(block 67) failed
[   41.220662][ T4204] FAT-fs (loop3): Directory bread(block 68) failed
[   41.228975][ T4204] FAT-fs (loop3): Directory bread(block 69) failed
[   41.236615][ T4204] FAT-fs (loop3): Directory bread(block 70) failed
[   41.243351][ T4204] FAT-fs (loop3): Directory bread(block 71) failed
[   41.250253][ T4204] FAT-fs (loop3): Directory bread(block 72) failed
[   41.257562][ T4204] FAT-fs (loop3): Directory bread(block 73) failed
[   41.271061][ T4198] syz.3.282: attempt to access beyond end of device
[   41.271061][ T4198] loop3: rw=524288, sector=1736, nr_sectors = 32 limit=256
[   41.294296][ T4206] loop1: detected capacity change from 0 to 1024
[   41.300750][ T4198] syz.3.282: attempt to access beyond end of device
[   41.300750][ T4198] loop3: rw=0, sector=1736, nr_sectors = 8 limit=256
[   41.315090][ T4206] EXT4-fs: Ignoring removed nobh option
[   41.320675][ T4206] EXT4-fs: Ignoring removed nomblk_io_submit option
[   41.340589][    C1] dccp_v4_rcv: dropped packet with invalid checksum
[   41.347559][    C1] dccp_v4_rcv: dropped packet with invalid checksum
[   41.366934][ T4206] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.388945][ T4205] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   41.468148][ T4211] loop2: detected capacity change from 0 to 2048
[   41.489644][ T4211] EXT4-fs: Ignoring removed mblk_io_submit option
[   41.526573][ T4217] loop0: detected capacity change from 0 to 512
[   41.540224][ T4211] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.556295][ T4217] EXT4-fs error (device loop0): ext4_orphan_get:1388: inode #17: comm syz.0.287: iget: bogus i_mode (0)
[   41.568172][ T4217] EXT4-fs error (device loop0): ext4_orphan_get:1393: comm syz.0.287: couldn't read orphan inode 17 (err -117)
[   41.582130][ T4217] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.605106][ T4217] 9pnet_fd: Insufficient options for proto=fd
[   41.611564][ T4217] EXT4-fs error (device loop0): ext4_readdir:261: inode #2: block 13: comm syz.0.287: path /55/file0: bad entry in directory: rec_len % 4 != 0 - offset=92, inode=0, rec_len=127, size=1024 fake=0
[   41.641744][ T3264] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.669013][ T4222] loop0: detected capacity change from 0 to 2048
[   41.678818][ T4222] EXT4-fs: Ignoring removed mblk_io_submit option
[   41.734177][ T4222] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.994638][ T3269] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.157999][ T4237] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2561 sclass=netlink_route_socket pid=4237 comm=syz.1.291
[   42.377344][   T40] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm kworker/u8:2: bg 0: block 234: padding at end of block bitmap is not set
[   42.417501][ T4248] loop3: detected capacity change from 0 to 2048
[   42.423804][   T40] EXT4-fs (loop2): Remounting filesystem read-only
[   42.475140][ T3273] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.522317][   T40] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm kworker/u8:2: bg 0: block 234: padding at end of block bitmap is not set
[   42.540784][ T4250] FAULT_INJECTION: forcing a failure.
[   42.540784][ T4250] name failslab, interval 1, probability 0, space 0, times 0
[   42.553539][ T4250] CPU: 0 UID: 0 PID: 4250 Comm: syz.2.299 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   42.564159][ T4250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   42.574207][ T4250] Call Trace:
[   42.577542][ T4250]  <TASK>
[   42.580458][ T4250]  dump_stack_lvl+0xf2/0x150
[   42.585081][ T4250]  dump_stack+0x15/0x20
[   42.589273][ T4250]  should_fail_ex+0x223/0x230
[   42.594048][ T4250]  ? security_file_alloc+0x32/0x100
[   42.595059][   T40] EXT4-fs (loop0): Remounting filesystem read-only
[   42.599354][ T4250]  should_failslab+0x8f/0xb0
[   42.599378][ T4250]  kmem_cache_alloc_noprof+0x4c/0x290
[   42.615809][ T4250]  security_file_alloc+0x32/0x100
[   42.620974][ T4250]  alloc_empty_file+0x121/0x2f0
[   42.625834][ T4250]  alloc_file_clone+0x3a/0xa0
[   42.630553][ T4250]  create_pipe_files+0x289/0x3b0
[   42.633516][ T3264] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.635493][ T4250]  __do_pipe_flags+0x46/0x190
[   42.635518][ T4250]  do_pipe2+0x64/0x130
[   42.653232][ T4250]  __x64_sys_pipe2+0x30/0x40
[   42.657830][ T4250]  x64_sys_call+0x65f/0x2d60
[   42.662432][ T4250]  do_syscall_64+0xc9/0x1c0
[   42.666938][ T4250]  ? clear_bhb_loop+0x55/0xb0
[   42.671632][ T4250]  ? clear_bhb_loop+0x55/0xb0
[   42.676313][ T4250]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   42.682271][ T4250] RIP: 0033:0x7f5489b3dff9
[   42.686685][ T4250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   42.706459][ T4250] RSP: 002b:00007f54887b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000125
[   42.714959][ T4250] RAX: ffffffffffffffda RBX: 00007f5489cf5f80 RCX: 00007f5489b3dff9
[   42.722937][ T4250] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040
[   42.730926][ T4250] RBP: 00007f54887b7090 R08: 0000000000000000 R09: 0000000000000000
[   42.739545][ T4250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   42.747564][ T4250] R13: 0000000000000000 R14: 00007f5489cf5f80 R15: 00007fff8c1f5908
[   42.755545][ T4250]  </TASK>
[   42.934808][   T29] kauditd_printk_skb: 208 callbacks suppressed
[   42.934835][   T29] audit: type=1400 audit(1727846969.263:1329): avc:  denied  { bind } for  pid=4278 comm="syz.0.306" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   42.964155][   T29] audit: type=1400 audit(1727846969.285:1330): avc:  denied  { setopt } for  pid=4278 comm="syz.0.306" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   42.986071][   T29] audit: type=1326 audit(1727846969.317:1331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4275 comm="syz.2.305" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5489b3dff9 code=0x0
[   43.051775][ T4282] syz.2.305[4282] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   43.051918][ T4282] syz.2.305[4282] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   43.063318][ T4282] syz.2.305[4282] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   43.066678][   T29] audit: type=1400 audit(1727846969.403:1332): avc:  denied  { ioctl } for  pid=4287 comm="syz.1.309" path="socket:[6311]" dev="sockfs" ino=6311 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   43.117004][ T4282] syz.2.305[4282] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   43.117368][ T4282] syz.2.305[4282] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   43.122207][ T4288] netlink: 128 bytes leftover after parsing attributes in process `syz.1.309'.
[   43.128944][ T4282] syz.2.305[4282] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   43.139899][ T4288] netlink: 20 bytes leftover after parsing attributes in process `syz.1.309'.
[   43.154720][   T29] audit: type=1326 audit(1727846969.446:1333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4275 comm="syz.2.305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5489b3dff9 code=0x7ffc0000
[   43.192416][   T29] audit: type=1326 audit(1727846969.446:1334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4275 comm="syz.2.305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5489b3dff9 code=0x7ffc0000
[   43.215725][   T29] audit: type=1326 audit(1727846969.446:1335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4275 comm="syz.2.305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5489b3dff9 code=0x7ffc0000
[   43.239043][   T29] audit: type=1326 audit(1727846969.446:1336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4275 comm="syz.2.305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5489b3dff9 code=0x7ffc0000
[   43.262355][   T29] audit: type=1326 audit(1727846969.446:1337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4275 comm="syz.2.305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5489b3dff9 code=0x7ffc0000
[   43.285750][   T29] audit: type=1326 audit(1727846969.446:1338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4275 comm="syz.2.305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5489b3dff9 code=0x7ffc0000
[   43.362051][ T4293] loop0: detected capacity change from 0 to 512
[   43.380814][ T4293] journal_path: Lookup failure for './file0'
[   43.386916][ T4293] EXT4-fs: error: could not find journal device path
[   43.526844][ T4309] loop3: detected capacity change from 0 to 512
[   43.537894][ T4309] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e01c, mo2=0002]
[   43.546267][ T4309] System zones: 1-12
[   43.552232][ T4309] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.318: invalid indirect mapped block 8 (level 2)
[   43.577352][ T4309] EXT4-fs (loop3): 1 truncate cleaned up
[   43.583346][ T4309] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.649907][ T3266] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.700142][ T4323] FAULT_INJECTION: forcing a failure.
[   43.700142][ T4323] name failslab, interval 1, probability 0, space 0, times 0
[   43.712812][ T4323] CPU: 1 UID: 0 PID: 4323 Comm: syz.1.324 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   43.723395][ T4323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   43.733435][ T4323] Call Trace:
[   43.736698][ T4323]  <TASK>
[   43.739614][ T4323]  dump_stack_lvl+0xf2/0x150
[   43.744218][ T4323]  dump_stack+0x15/0x20
[   43.748368][ T4323]  should_fail_ex+0x223/0x230
[   43.753046][ T4323]  ? __se_sys_memfd_create+0x230/0x5c0
[   43.758606][ T4323]  should_failslab+0x8f/0xb0
[   43.763248][ T4323]  __kmalloc_noprof+0xa5/0x370
[   43.768009][ T4323]  __se_sys_memfd_create+0x230/0x5c0
[   43.773293][ T4323]  __x64_sys_memfd_create+0x31/0x40
[   43.778515][ T4323]  x64_sys_call+0x2891/0x2d60
[   43.783216][ T4323]  do_syscall_64+0xc9/0x1c0
[   43.787740][ T4323]  ? clear_bhb_loop+0x55/0xb0
[   43.792528][ T4323]  ? clear_bhb_loop+0x55/0xb0
[   43.797275][ T4323]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   43.803167][ T4323] RIP: 0033:0x7f71b383dff9
[   43.807722][ T4323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   43.827404][ T4323] RSP: 002b:00007f71b24b6d68 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   43.835807][ T4323] RAX: ffffffffffffffda RBX: 00000000000005c9 RCX: 00007f71b383dff9
[   43.843781][ T4323] RDX: 00007f71b24b6dec RSI: 0000000000000000 RDI: 00007f71b38b0b02
[   43.851776][ T4323] RBP: 0000000020000880 R08: 00007f71b24b6b07 R09: 0000000000000000
[   43.859791][ T4323] R10: 000000000000000a R11: 0000000000000202 R12: 0000000000000001
[   43.867810][ T4323] R13: 00007f71b24b6dec R14: 00007f71b24b6df0 R15: 00007ffcb9ee8008
[   43.875812][ T4323]  </TASK>
[   43.891535][ T4321] hsr_slave_0: left promiscuous mode
[   43.898299][ T4321] hsr_slave_1: left promiscuous mode
[   44.002240][ T4331] loop1: detected capacity change from 0 to 2048
[   44.224156][ T4351] netlink: 'syz.0.334': attribute type 10 has an invalid length.
[   44.231941][ T4351] netlink: 40 bytes leftover after parsing attributes in process `syz.0.334'.
[   44.242510][ T4351] veth1_macvtap: entered allmulticast mode
[   44.249431][ T4351] bridge0: port 3(veth1_macvtap) entered blocking state
[   44.256398][ T4351] bridge0: port 3(veth1_macvtap) entered disabled state
[   44.282876][ T4351] A link change request failed with some changes committed already. Interface veth1_macvtap may have been left with an inconsistent configuration, please check.
[   44.422951][ T4352] netlink: 8 bytes leftover after parsing attributes in process `syz.1.335'.
[   44.494772][ T4352] loop1: detected capacity change from 0 to 128
[   44.503916][ T4355] FAULT_INJECTION: forcing a failure.
[   44.503916][ T4355] name failslab, interval 1, probability 0, space 0, times 0
[   44.516570][ T4355] CPU: 1 UID: 0 PID: 4355 Comm: syz.0.336 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   44.527245][ T4355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   44.537304][ T4355] Call Trace:
[   44.540647][ T4355]  <TASK>
[   44.543663][ T4355]  dump_stack_lvl+0xf2/0x150
[   44.548292][ T4355]  dump_stack+0x15/0x20
[   44.552479][ T4355]  should_fail_ex+0x223/0x230
[   44.557176][ T4355]  ? __alloc_skb+0x10b/0x310
[   44.561775][ T4355]  should_failslab+0x8f/0xb0
[   44.566362][ T4355]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[   44.572186][ T4355]  __alloc_skb+0x10b/0x310
[   44.576625][ T4355]  netlink_alloc_large_skb+0xad/0xe0
[   44.581944][ T4355]  netlink_sendmsg+0x3b4/0x6e0
[   44.586707][ T4355]  ? __pfx_netlink_sendmsg+0x10/0x10
[   44.592030][ T4355]  __sock_sendmsg+0x140/0x180
[   44.596722][ T4355]  ____sys_sendmsg+0x312/0x410
[   44.601491][ T4355]  __sys_sendmsg+0x1d9/0x270
[   44.606132][ T4355]  __x64_sys_sendmsg+0x46/0x50
[   44.610954][ T4355]  x64_sys_call+0x2689/0x2d60
[   44.615783][ T4355]  do_syscall_64+0xc9/0x1c0
[   44.620298][ T4355]  ? clear_bhb_loop+0x55/0xb0
[   44.625092][ T4355]  ? clear_bhb_loop+0x55/0xb0
[   44.629892][ T4355]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.635788][ T4355] RIP: 0033:0x7f18c391dff9
[   44.640267][ T4355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.659929][ T4355] RSP: 002b:00007f18c2597038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   44.668337][ T4355] RAX: ffffffffffffffda RBX: 00007f18c3ad5f80 RCX: 00007f18c391dff9
[   44.676438][ T4355] RDX: 0000000000000000 RSI: 00000000200012c0 RDI: 0000000000000004
[   44.684402][ T4355] RBP: 00007f18c2597090 R08: 0000000000000000 R09: 0000000000000000
[   44.692461][ T4355] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   44.700436][ T4355] R13: 0000000000000000 R14: 00007f18c3ad5f80 R15: 00007ffe7e85bb58
[   44.708446][ T4355]  </TASK>
[   44.878763][ T4363] syz.2.337[4363] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   44.878810][ T4363] syz.2.337[4363] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   44.890654][ T4363] syz.2.337[4363] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   44.904293][ T4363] syz.2.337[4363] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   44.915887][ T4360] Driver unsupported XDP return value 0 on prog  (id 226) dev N/A, expect packet loss!
[   44.961692][ T4360] loop0: detected capacity change from 0 to 1024
[   45.112060][ T4377] loop0: detected capacity change from 0 to 512
[   45.142363][ T4377] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.155276][ T4377] ext4 filesystem being mounted at /67/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   45.174823][ T4377] bond1: entered promiscuous mode
[   45.179981][ T4377] bond1: entered allmulticast mode
[   45.185585][ T4377] 8021q: adding VLAN 0 to HW filter on device bond1
[   45.197130][ T4377] bond1 (unregistering): Released all slaves
[   45.249130][ T3264] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.426128][ T4397] loop0: detected capacity change from 0 to 1024
[   45.437674][ T4397] ext4: Unknown parameter 'subj_user'
[   45.518564][ T4405] loop0: detected capacity change from 0 to 128
[   45.561281][ T4408] loop0: detected capacity change from 0 to 2048
[   45.576634][ T4408] EXT4-fs: Ignoring removed mblk_io_submit option
[   45.598856][ T4408] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.617696][ T4410] netlink: 'syz.2.356': attribute type 10 has an invalid length.
[   45.645057][ T4410] team0: Failed to send port change of device netdevsim1 via netlink (err -105)
[   45.670385][ T4410] team0: Failed to send options change via netlink (err -105)
[   45.677912][ T4410] team0: Port device netdevsim1 added
[   45.939749][ T4419] loop1: detected capacity change from 0 to 512
[   45.959091][ T4419] EXT4-fs: Ignoring removed orlov option
[   45.983839][ T4419] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   46.021422][ T4419] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.039932][ T4419] ext4 filesystem being mounted at /63/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.077158][ T4390] syz.3.349 (4390) used greatest stack depth: 10352 bytes left
[   46.095660][ T4419] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.357: bg 0: block 255: padding at end of block bitmap is not set
[   46.141765][  T169] team0: Failed to send port change of device netdevsim1 via netlink (err -105)
[   46.157159][ T3269] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.169995][ T4423] bridge0: entered promiscuous mode
[   46.186777][ T4423] bridge0: left promiscuous mode
[   46.200560][ T4425] FAULT_INJECTION: forcing a failure.
[   46.200560][ T4425] name failslab, interval 1, probability 0, space 0, times 0
[   46.213271][ T4425] CPU: 1 UID: 0 PID: 4425 Comm: syz.1.359 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   46.223939][ T4425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   46.234073][ T4425] Call Trace:
[   46.237351][ T4425]  <TASK>
[   46.240276][ T4425]  dump_stack_lvl+0xf2/0x150
[   46.244959][ T4425]  dump_stack+0x15/0x20
[   46.249161][ T4425]  should_fail_ex+0x223/0x230
[   46.253848][ T4425]  ? __vmalloc_node_range_noprof+0x41f/0xec0
[   46.259879][ T4425]  should_failslab+0x8f/0xb0
[   46.264516][ T4425]  __kmalloc_node_noprof+0xa8/0x380
[   46.269761][ T4425]  __vmalloc_node_range_noprof+0x41f/0xec0
[   46.275589][ T4425]  ? do_replace+0x19c/0x2d0
[   46.280111][ T4425]  __vmalloc_noprof+0x5e/0x70
[   46.284857][ T4425]  ? do_replace+0x19c/0x2d0
[   46.289358][ T4425]  do_replace+0x19c/0x2d0
[   46.293694][ T4425]  do_ebt_set_ctl+0x1bd/0xb80
[   46.298396][ T4425]  ? _parse_integer_limit+0x167/0x180
[   46.303961][ T4425]  ? _parse_integer+0x27/0x30
[   46.308639][ T4425]  ? kstrtoull+0x110/0x140
[   46.313128][ T4425]  ? tcp_release_cb+0xfe/0x380
[   46.317924][ T4425]  ? _raw_spin_unlock_bh+0x36/0x40
[   46.323043][ T4425]  ? release_sock+0x117/0x150
[   46.327781][ T4425]  ? sockopt_release_sock+0x42/0x50
[   46.333111][ T4425]  ? do_ip_setsockopt+0x1fcf/0x2340
[   46.338336][ T4425]  nf_setsockopt+0x195/0x1b0
[   46.342997][ T4425]  ip_setsockopt+0xea/0x100
[   46.347568][ T4425]  tcp_setsockopt+0x93/0xb0
[   46.352134][ T4425]  sock_common_setsockopt+0x64/0x80
[   46.357340][ T4425]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   46.360592][ T4410] syz.2.356 (4410) used greatest stack depth: 10192 bytes left
[   46.363329][ T4425]  __sys_setsockopt+0x1cc/0x240
[   46.375723][ T4425]  __x64_sys_setsockopt+0x66/0x80
[   46.380772][ T4425]  x64_sys_call+0x278d/0x2d60
[   46.385484][ T4425]  do_syscall_64+0xc9/0x1c0
[   46.389996][ T4425]  ? clear_bhb_loop+0x55/0xb0
[   46.394935][ T4425]  ? clear_bhb_loop+0x55/0xb0
[   46.399679][ T4425]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.405613][ T4425] RIP: 0033:0x7f71b383dff9
[   46.410023][ T4425] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.429680][ T4425] RSP: 002b:00007f71b24b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   46.438092][ T4425] RAX: ffffffffffffffda RBX: 00007f71b39f5f80 RCX: 00007f71b383dff9
[   46.446058][ T4425] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000007
[   46.454022][ T4425] RBP: 00007f71b24b7090 R08: 00000000000001e8 R09: 0000000000000000
[   46.462016][ T4425] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000001
[   46.470127][ T4425] R13: 0000000000000000 R14: 00007f71b39f5f80 R15: 00007ffcb9ee8008
[   46.478126][ T4425]  </TASK>
[   46.481209][ T4425] syz.1.359: vmalloc error: size 4096, failed to allocated page array size 8, mode:0x400cc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0
[   46.498268][ T4425] CPU: 1 UID: 0 PID: 4425 Comm: syz.1.359 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   46.509008][ T4425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   46.519084][ T4425] Call Trace:
[   46.522354][ T4425]  <TASK>
[   46.525294][ T4425]  dump_stack_lvl+0xf2/0x150
[   46.529947][ T4425]  dump_stack+0x15/0x20
[   46.534095][ T4425]  warn_alloc+0x145/0x1b0
[   46.538445][ T4425]  ? dump_stack+0x15/0x20
[   46.542785][ T4425]  ? should_fail_ex+0x198/0x230
[   46.547641][ T4425]  __vmalloc_node_range_noprof+0x4b6/0xec0
[   46.553492][ T4425]  ? do_replace+0x19c/0x2d0
[   46.558049][ T4425]  __vmalloc_noprof+0x5e/0x70
[   46.562852][ T4425]  ? do_replace+0x19c/0x2d0
[   46.567393][ T4425]  do_replace+0x19c/0x2d0
[   46.571795][ T4425]  do_ebt_set_ctl+0x1bd/0xb80
[   46.576589][ T4425]  ? _parse_integer_limit+0x167/0x180
[   46.582052][ T4425]  ? _parse_integer+0x27/0x30
[   46.586772][ T4425]  ? kstrtoull+0x110/0x140
[   46.591249][ T4425]  ? tcp_release_cb+0xfe/0x380
[   46.596021][ T4425]  ? _raw_spin_unlock_bh+0x36/0x40
[   46.601257][ T4425]  ? release_sock+0x117/0x150
[   46.606063][ T4425]  ? sockopt_release_sock+0x42/0x50
[   46.611265][ T4425]  ? do_ip_setsockopt+0x1fcf/0x2340
[   46.616458][ T4425]  nf_setsockopt+0x195/0x1b0
[   46.621067][ T4425]  ip_setsockopt+0xea/0x100
[   46.625588][ T4425]  tcp_setsockopt+0x93/0xb0
[   46.630085][ T4425]  sock_common_setsockopt+0x64/0x80
[   46.635305][ T4425]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   46.641196][ T4425]  __sys_setsockopt+0x1cc/0x240
[   46.646050][ T4425]  __x64_sys_setsockopt+0x66/0x80
[   46.651073][ T4425]  x64_sys_call+0x278d/0x2d60
[   46.655744][ T4425]  do_syscall_64+0xc9/0x1c0
[   46.660253][ T4425]  ? clear_bhb_loop+0x55/0xb0
[   46.664937][ T4425]  ? clear_bhb_loop+0x55/0xb0
[   46.669670][ T4425]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.675647][ T4425] RIP: 0033:0x7f71b383dff9
[   46.680117][ T4425] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.699727][ T4425] RSP: 002b:00007f71b24b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   46.708209][ T4425] RAX: ffffffffffffffda RBX: 00007f71b39f5f80 RCX: 00007f71b383dff9
[   46.716187][ T4425] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000007
[   46.724210][ T4425] RBP: 00007f71b24b7090 R08: 00000000000001e8 R09: 0000000000000000
[   46.732175][ T4425] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000001
[   46.740176][ T4425] R13: 0000000000000000 R14: 00007f71b39f5f80 R15: 00007ffcb9ee8008
[   46.748189][ T4425]  </TASK>
[   46.751666][ T4425] Mem-Info:
[   46.754842][ T4425] active_anon:10660 inactive_anon:3 isolated_anon:0
[   46.754842][ T4425]  active_file:7301 inactive_file:1928 isolated_file:0
[   46.754842][ T4425]  unevictable:0 dirty:2706 writeback:0
[   46.754842][ T4425]  slab_reclaimable:2652 slab_unreclaimable:13395
[   46.754842][ T4425]  mapped:20755 shmem:504 pagetables:705
[   46.754842][ T4425]  sec_pagetables:0 bounce:0
[   46.754842][ T4425]  kernel_misc_reclaimable:0
[   46.754842][ T4425]  free:1910282 free_pcp:9082 free_cma:0
[   46.799787][ T4425] Node 0 active_anon:42640kB inactive_anon:12kB active_file:29204kB inactive_file:7712kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:83020kB dirty:10824kB writeback:0kB shmem:2016kB writeback_tmp:0kB kernel_stack:2832kB pagetables:2820kB sec_pagetables:0kB all_unreclaimable? no
[   46.827825][ T4425] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[   46.854832][ T4425] lowmem_reserve[]: 0 2866 7844 0
[   46.860087][ T4425] Node 0 DMA32 free:2950276kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953908kB mlocked:0kB bounce:0kB free_pcp:3632kB local_pcp:3532kB free_cma:0kB
[   46.888898][ T4425] lowmem_reserve[]: 0 0 4978 0
[   46.893700][ T4425] Node 0 Normal free:4675492kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:42640kB inactive_anon:12kB active_file:29204kB inactive_file:7712kB unevictable:0kB writepending:10824kB present:5242880kB managed:5098208kB mlocked:0kB bounce:0kB free_pcp:32700kB local_pcp:20740kB free_cma:0kB
[   46.898592][  T169] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm kworker/u8:5: bg 0: block 234: padding at end of block bitmap is not set
[   46.924079][ T4425] lowmem_reserve[]: 0 0 0 0
[   46.924105][ T4425] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[   46.955822][ T4425] Node 0 DMA32: 3*4kB (M) 1*8kB (M) 1*16kB (M) 3*32kB (M) 2*64kB (M) 3*128kB (M) 2*256kB (M) 2*512kB (M) 3*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950276kB
[   46.972069][ T4425] Node 0 Normal: 129*4kB (UE) 32*8kB (UM) 33*16kB (UE) 98*32kB (UM) 70*64kB (UME) 7*128kB (UM) 7*256kB (UM) 3*512kB (UM) 11*1024kB (UME) 9*2048kB (U) 1131*4096kB (UM) = 4675412kB
[   46.990236][ T4425] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[   46.999604][ T4425] 9747 total pagecache pages
[   47.004181][ T4425] 3 pages in swap cache
[   47.008465][ T4425] Free swap  = 124732kB
[   47.012612][ T4425] Total swap = 124996kB
[   47.016764][ T4425] 2097051 pages RAM
[   47.020700][ T4425] 0 pages HighMem/MovableOnly
[   47.025371][ T4425] 80182 pages reserved
[   47.035474][  T169] EXT4-fs (loop0): Remounting filesystem read-only
[   47.131454][ T4439] loop1: detected capacity change from 0 to 256
[   47.146309][ T3264] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.159725][ T4439] /dev/loop1: Can't open blockdev
[   47.195362][ T4443] loop1: detected capacity change from 0 to 128
[   47.214139][ T4443] FAT-fs (loop1): Directory bread(block 4049) failed
[   47.224160][ T4443] FAT-fs (loop1): Directory bread(block 4050) failed
[   47.236883][ T4443] FAT-fs (loop1): Directory bread(block 4051) failed
[   47.246064][ T4443] FAT-fs (loop1): Directory bread(block 4052) failed
[   47.252935][ T4443] FAT-fs (loop1): Directory bread(block 4053) failed
[   47.259986][ T4443] FAT-fs (loop1): Directory bread(block 4054) failed
[   47.266866][ T4443] FAT-fs (loop1): Directory bread(block 4055) failed
[   47.273693][ T4443] FAT-fs (loop1): Directory bread(block 4056) failed
[   47.281610][ T4439] FAT-fs (loop1): Directory bread(block 4049) failed
[   47.288417][ T4439] FAT-fs (loop1): Directory bread(block 4050) failed
[   47.302073][   T40] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.339335][ T4461] loop0: detected capacity change from 0 to 2048
[   47.371301][ T4461] EXT4-fs: Ignoring removed mblk_io_submit option
[   47.405564][ T4471] loop3: detected capacity change from 0 to 128
[   47.414045][   T40] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.424867][ T4471] vfat: Unknown parameter '0xffffffffffffffff00000000000000000000003'
[   47.434315][ T4461] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.490542][ T4432] chnl_net:caif_netlink_parms(): no params data found
[   47.523995][   T40] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.602005][   T40] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.653448][ T4432] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.660549][ T4432] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.670275][ T4432] bridge_slave_0: entered allmulticast mode
[   47.676747][ T4432] bridge_slave_0: entered promiscuous mode
[   47.683836][ T4432] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.690910][ T4432] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.691118][ T4484] loop1: detected capacity change from 0 to 4096
[   47.698131][ T4432] bridge_slave_1: entered allmulticast mode
[   47.710809][ T4432] bridge_slave_1: entered promiscuous mode
[   47.730738][ T3257] ==================================================================
[   47.738844][ T3257] BUG: KCSAN: data-race in generic_fillattr / simple_rename_timestamp
[   47.747030][ T3257] 
[   47.749354][ T3257] write to 0xffff8881033203dc of 4 bytes by task 3254 on cpu 1:
[   47.756982][ T3257]  simple_rename_timestamp+0x50/0xd0
[   47.762273][ T3257]  shmem_rename2+0x284/0x2c0
[   47.766854][ T3257]  vfs_rename+0x875/0x9c0
[   47.771179][ T3257]  do_renameat2+0x732/0xa60
[   47.775754][ T3257]  __x64_sys_rename+0x58/0x70
[   47.780417][ T3257]  x64_sys_call+0x1a84/0x2d60
[   47.785087][ T3257]  do_syscall_64+0xc9/0x1c0
[   47.789577][ T3257]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   47.795466][ T3257] 
[   47.797795][ T3257] read to 0xffff8881033203dc of 4 bytes by task 3257 on cpu 0:
[   47.805414][ T3257]  generic_fillattr+0x1a6/0x2f0
[   47.810255][ T3257]  shmem_getattr+0x17b/0x200
[   47.814830][ T3257]  vfs_getattr+0x19b/0x1e0
[   47.819239][ T3257]  vfs_statx+0x134/0x2f0
[   47.823553][ T3257]  vfs_fstatat+0xec/0x110
[   47.827871][ T3257]  __se_sys_newfstatat+0x58/0x260
[   47.832885][ T3257]  __x64_sys_newfstatat+0x55/0x70
[   47.837903][ T3257]  x64_sys_call+0x141f/0x2d60
[   47.842655][ T3257]  do_syscall_64+0xc9/0x1c0
[   47.847142][ T3257]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   47.853029][ T3257] 
[   47.855339][ T3257] value changed: 0x175ec007 -> 0x1802762f
[   47.861036][ T3257] 
[   47.863353][ T3257] Reported by Kernel Concurrency Sanitizer on:
[   47.869654][ T3257] CPU: 0 UID: 0 PID: 3257 Comm: udevd Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   47.879880][ T3257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   47.890014][ T3257] ==================================================================
[   47.899875][   T29] kauditd_printk_skb: 235 callbacks suppressed
[   47.899888][   T29] audit: type=1400 audit(1727846974.585:1574): avc:  denied  { read } for  pid=3005 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1
[   47.937374][   T40] bridge_slave_1: left allmulticast mode
[   47.943094][   T40] bridge_slave_1: left promiscuous mode
[   47.948710][   T40] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.975507][   T40] bridge_slave_0: left allmulticast mode
[   47.981391][   T40] bridge_slave_0: left promiscuous mode
[   47.987173][   T40] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.007201][ T4484] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.068508][   T29] audit: type=1400 audit(1727846974.756:1575): avc:  denied  { read write } for  pid=4483 comm="syz.1.375" name="file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   48.144030][ T3269] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.163457][ T1404] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm kworker/u8:6: bg 0: block 234: padding at end of block bitmap is not set
[   48.186388][   T29] audit: type=1400 audit(1727846974.789:1576): avc:  denied  { open } for  pid=4483 comm="syz.1.375" path="/70/file0/file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   48.209431][   T29] audit: type=1400 audit(1727846974.810:1577): avc:  denied  { write } for  pid=4483 comm="syz.1.375" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   48.209811][ T1404] EXT4-fs (loop0): Remounting filesystem read-only
[   48.260160][   T40] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   48.273695][ T3264] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.292713][   T40] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   48.304486][   T40] bond0 (unregistering): Released all slaves
[   48.314417][ T4432] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   48.330415][ T4432] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   48.350357][   T40] hsr_slave_0: left promiscuous mode
[   48.351279][   T29] audit: type=1400 audit(1727846975.068:1578): avc:  denied  { search } for  pid=3005 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   48.379582][   T40] hsr_slave_1: left promiscuous mode
[   48.385233][   T29] audit: type=1400 audit(1727846975.100:1579): avc:  denied  { read } for  pid=3005 comm="dhcpcd" name="n25" dev="tmpfs" ino=2545 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   48.406969][   T29] audit: type=1400 audit(1727846975.100:1580): avc:  denied  { open } for  pid=3005 comm="dhcpcd" path="/run/udev/data/n25" dev="tmpfs" ino=2545 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   48.430015][   T29] audit: type=1400 audit(1727846975.100:1581): avc:  denied  { getattr } for  pid=3005 comm="dhcpcd" path="/run/udev/data/n25" dev="tmpfs" ino=2545 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   48.453507][   T40] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   48.460992][   T40] batman_adv: batadv0: Removing interface: batadv_slave_0
[   48.469555][   T40] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   48.477042][   T40] batman_adv: batadv0: Removing interface: batadv_slave_1
[   48.485827][   T40] veth1_macvtap: left promiscuous mode
[   48.491339][   T40] veth0_macvtap: left promiscuous mode
[   48.496943][   T40] veth1_vlan: left promiscuous mode
[   48.502287][   T40] veth0_vlan: left promiscuous mode
[   48.571900][   T40] team0 (unregistering): Port device team_slave_1 removed
[   48.581561][   T40] team0 (unregistering): Port device team_slave_0 removed
[   48.619899][ T4432] team0: Port device team_slave_0 added
[   48.626478][ T4432] team0: Port device team_slave_1 added
[   48.644509][ T4432] batman_adv: batadv0: Adding interface: batadv_slave_0
[   48.651495][ T4432] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   48.677692][ T4432] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   48.689199][   T29] audit: type=1400 audit(1727846975.389:1582): avc:  denied  { read } for  pid=4491 comm="dhcpcd-run-hook" name="resolv.conf" dev="tmpfs" ino=343 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   48.712221][   T29] audit: type=1400 audit(1727846975.389:1583): avc:  denied  { open } for  pid=4491 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=343 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   48.734172][ T4432] batman_adv: batadv0: Adding interface: batadv_slave_1
[   48.744145][ T4432] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   48.770137][ T4432] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   48.796513][ T4432] hsr_slave_0: entered promiscuous mode
[   48.802606][ T4432] hsr_slave_1: entered promiscuous mode
[   48.808469][ T4432] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   48.816072][ T4432] Cannot create hsr debugfs directory
[   49.177488][ T4432] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   49.186930][ T4432] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   49.199537][ T4432] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   49.208519][ T4432] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   49.260214][ T4432] 8021q: adding VLAN 0 to HW filter on device bond0
[   49.276505][ T4432] 8021q: adding VLAN 0 to HW filter on device team0
[   49.286196][  T169] bridge0: port 1(bridge_slave_0) entered blocking state
[   49.293347][  T169] bridge0: port 1(bridge_slave_0) entered forwarding state
[   49.312581][ T4432] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   49.322973][ T4432] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   49.336834][  T169] bridge0: port 2(bridge_slave_1) entered blocking state
[   49.343930][  T169] bridge0: port 2(bridge_slave_1) entered forwarding state
[   49.401835][ T4432] 8021q: adding VLAN 0 to HW filter on device batadv0
[   49.508896][ T4432] veth0_vlan: entered promiscuous mode
[   49.517133][ T4432] veth1_vlan: entered promiscuous mode
[   49.530615][ T4432] veth0_macvtap: entered promiscuous mode
[   49.538355][ T4432] veth1_macvtap: entered promiscuous mode
[   49.547726][ T4432] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   49.558748][ T4432] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.568773][ T4432] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   49.579278][ T4432] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.589164][ T4432] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   49.600206][ T4432] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.610032][ T4432] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   49.620525][ T4432] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.631144][ T4432] batman_adv: batadv0: Interface activated: batadv_slave_0
[   49.641216][ T4432] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   49.651745][ T4432] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.661684][ T4432] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   49.672170][ T4432] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.681997][ T4432] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   49.692662][ T4432] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.702563][ T4432] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   49.713324][ T4432] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.724367][ T4432] batman_adv: batadv0: Interface activated: batadv_slave_1
[   49.734094][ T4432] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   49.742880][ T4432] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   49.751680][ T4432] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   49.760563][ T4432] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   52.078014][    C1] Dead loop on virtual device ipvlan1, fix it urgently!