last executing test programs:

6.888579347s ago: executing program 4 (id=7045):
r0 = creat(&(0x7f0000000440)='./file0\x00', 0x15)
ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'})
quotactl$Q_QUOTAON(0x0, &(0x7f00000001c0)=@filename='./file0\x00', 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r1)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r2 = inotify_init1(0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
fcntl$setown(r2, 0x8, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./mnt\x00', 0x80, &(0x7f0000000200), 0xbe, 0x251, &(0x7f0000000540)="$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")
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000280)={<r3=>r1, 0x3, 0x0, 0x5})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x8, 0x2, 0x4, 0x5, r3, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x47)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r4}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
fcntl$getownex(r2, 0x10, &(0x7f0000000140)={0x0, <r5=>0x0})
r6 = syz_open_procfs(r5, &(0x7f0000000600)='fd/4\x00')
ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r6, 0xc020660b, &(0x7f0000000180)={@id={0x2, 0x2000000, @auto="00f0ffffff0f00002fce2d54fbd909e4"}})

6.74226869s ago: executing program 4 (id=7046):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000a40)={[{@noquota}, {@noauto_da_alloc}, {@jqfmt_vfsold}, {@data_err_ignore}, {@noauto_da_alloc}, {@delalloc}, {@resuid}, {@oldalloc}, {@jqfmt_vfsv1}]}, 0xfc, 0x550, &(0x7f0000000340)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r0, &(0x7f00000006c0)=[{0x0}], 0x1, 0x100000, 0x0, 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x103042, 0x0)
pwritev2(r1, &(0x7f00000001c0)=[{&(0x7f00000008c0)="dc", 0x1}], 0x1, 0x7fff, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
ioctl$FS_IOC_RESVSP(r2, 0x40305839, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x3fffffff404})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x0)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(r3, 0x6628)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000000240)={0x2, 0x4e20, @multicast1}, 0x10)
connect$inet(r4, &(0x7f0000ccb000)={0x2, 0x4e20, @local}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000001a00)=ANY=[@ANYBLOB="18000000030000000000000026d0000095002b000000000093adff012255f674412d02000000880b5f04596a5e99fce658be2f200c699223886d8be4b50000005ab527ee3697f98125f30e6326996a3cfee33025a30b45bdcf2c69d105e5e55a1d273683623f1a5dc6e3c7e20eb7a98ecf3bd2cf898e924abe26ac296f660e69ba982fd76e00dcff7f0000ca6b78ad833488cfe4109eaf009eddcf21f5c63cde2f00150200000001000000520a0000151d010000000100bf00000000cc587424363da52001a3cdf2000000db74596fd72c002a60c1bc7dc8c38b7d2e13c50424b9dd1145d03ff45f70685c6bd9ff41c69b7de406e89dcbb7677e65a88a8407a9e7f9c0e91028b0856eb1ed9474480737a55ebb0bd701f7fb21135c6172eba7eb8a341f07e5a2d1e88b3cfc22df01e4bac9d97328fa2a82b5e8741e02056d93a433f50479387467824262852c7939db5672d07cdbe8e14abf56497e5d56dbe37551b870b2851c3f0a1a9ebfcba105a6ccdd01b0f04edb256c0200000073f6db43661bd7f0e2536ffbfe5ca31b4083145531458b7d1e341c6b351ebc5223f54d6bec93f4ef088e5d1be2515226988d664709ff03f1aa3dc7f1580ace9bf2afd28d0700000000000000d6eb372713255012e028cb2654d493a0b43bf21375709f348f5eda2967199cc936859a538100070000000000dc10e13ef227f627a40000ad1fa253d33fa74f172d3407ae4e1e347c0c6ef9dd2b6bb700000000000000000c586272c3f4d79bc36315745cb149f3cb385e6add14652003c7cdd3324f07d134d3a6c718bbd1aafe1140cff0be4c6f8df084c5e9734ae30aa9af030025f01ab03a9b1074407136bc506031f0916a39d3057d55183612b39e73ae8e6dc30356886a831836469e2051d937eb85f3f2d5ae2c1dca476b97419a3b76ed62409d004d7fbe362145d19605d760df4c5124ca325d374b371867a79b35c6617fc3327191fbf514573f0e30d1d60be2168fffc2f3dccd599a2cb77f124e22f87673675805494db821f39b50d938d5fd8c6b2a3a324c257bc9110971b749ccd74089ed6b86f81ca3ba47d8f71d290ed1b1a11f7a67125170c88c3b6a50692cc0064fc6bbd312536ac15016c85c6332226401b110da9c786eeca22debc99335587b54c13c3107008fa069af8223b38ced735c2d906551004d8dc10d88738488da01ffa4add56474573c964a270000f2f16625c0c10200000000c7a5ca60fdad159f2e44171f39638410020000004825d081f2d987f05c534187738655d7dc958f2046fa0c1619a6554b82d9c162eb61ca74f1ffdaccf0ea5f06e0fca8b27ff3983ab74fd3d560700a1fab44e77e312b3b129e000302d613916c9bcf9f0000fac73a5b6bfb27f88dba816020be760f7b45e001efada8000000000000fdaf4660402f7b3b79a433e08074ea2462974a00040000eb01352638f56dae0249d15ba8767259658878b7492cfbacde9b57cf4de00788adce638190f3570e0b4c80ef682df22201270955afb6008846557ee3bc09fda6dbb6550d597300eb82a184c96ffde5a30e5433e866665b98ca2002c804c22ff2634b7bfbf5c0d586cda5b45fd00dede1e88a4d41dee7cc76d7a23d06acb1d2d4c58faea84158bb440df2a694f4cdcaa4f65c22efffffffffffdd00000000d503d79986958115ae07b70f991430b7fb475d77b869ee02000000000000000000001ffff0ef89b2a68d2b05c995445d8a7700bcdfbec74fb2dd163e863315e84498dfb52bb93f6c9084659ce777ddac563c8596c2b1d8180289a61faa95a82bf1cfb7f2fd7252e9322abe282c33445d443a67467893b9bf0d1c8130ae6b226900000635376413c29f7c6f7b7e29b9a0c64e68328661f0c06e21f7d7dc22174ea4447a6f60edef3a4168d40200fbc71104512efe8e5d7d934aa289b4bd2b870000000000000000000007000000002000000000009b777883a02f0593dfc4cb4114b9f9cf4ad155110cc6ace2b322ac31bfa27847c799c8009a1ea5b98e525e6383ad7fd9795170e7b11e247603c2ff49a11459c7f606d729d3979676bffb3049166bb84a0f061991bd57c2566c10c282352aba05b6164ef876915a3f2491e4793e590dcc71de10da96366c1e992c0068c940dd4422c9882d3aa0f8a797b8fea6efcfb5276b7679f15559edaa977504cc0b2f777acb907ebf5fc14add71d0bca37405ded69b77ab4a3d7487fd04000000de17e1e13b93669b79556abb722d9c085b189b5fd1f30e8dc813f608830b110001732135e8e7262f290000923bfb6b41ff3792cee2fc37eee739c3e36a4bc80112968ec0d8902eced1fe552018014a463abbbf7ccd6a92a5734e3ebfca9b6e88e031f31de2183652e77c164c646a1cfd3710aa4205d8d4d4f974133ccb1e49feb42664eccd809c0ba8917eda87489e8946d5c8156197bcb66fd5606c63e3389ee9e8552381646365066ef9a36a449c96485c22ad1aa423b7b89efbc6cd54000bb0ea5f4f1e8773144fb6ac9a44d43593d77e66aa7ed7f3d4e7b211590c738888d02b2dbb0b2ba73ec72e1d8d7360a128499dd19e1e7b9b0671f4f58515b45ecb9964f3c4ddb8234391d514f8d996d8d6dd7f8fadfee2d7a0035638ce27c2936cb04b30a0eb0cde0000000000000040000000ec3c12ecee8fc3a40000000000000000e215b00ce2570b930723cbadb4033d1b8aaa2cfb3fb89e4a6e89737fd6232218a9e0c099d1eb59d60b3cca089785642f327139bc4394fb6d547a9b3c22599e780c1da7433fb47615d372e3fffe9703e37d5c87d513165278650738efcc04d27b766cf7f60066edd292f6c8a2174f391ed164bb1816819ceb3e378e776d422bc946cd9501accebeac3a5b31d8abc68ae537cd44a04e6bc21c35a7beab2610c51e593676bf635a20f597f4631b91454d182f826071f5210bd6d93173589929b23801e63c2266fde13b5a04b8d48be057c752bc415a756ea9b4d34156c4f73dd5e5924ef101a5fcdaf37c7ba2c4a9de9b000000000000000000000000000000a73b862e4b63c245616b522345587d0ee65a6902bdd0abd941e8aba37510b222ae544f395edd1b92ad53fc68f08ea00edc5e10d768836169dd296d56b306e8b75778c37571792a6c3d8b02ef378ebd59422cdd008bef6f80a80a68641ea5ed4f1126bb676098c10bf663eb3fb8c839364d28fd046dc64b35f9c3397ce6f4ad357b0000000000090000000088c7a8e2638f650a6f04a6f33a090f59414d6ebcbc687e66d600000000bd0a58ea6d36fc2cf9b9a71c137a2a22adb1006f371d4faf47285fd66fe0389afb96854bb360edcdf11b4ff6dd578bba93e949d240cde9b5836cb46032484dc19c93db7b6e5afa10547c78e76a3111557346e52566df196fd630561bb908fff4d2e19562aabd43742a26a43799f8636fa04ceb40c9e4ca1cfbbc7b949cd245a3ee118fd0d4f639444539af8766028d4ac4d4c548e290199e0dacbb4f6796b39bf32934d941ba2f88e3ebd0cf8e24f99eca86e4ca9b2cd2b54044a7fc4631572a6378a32df288785f146275c1f548e2a0c1016744e05f9de5044373d7650125027547eefe7b2d8c8871bb65395fae99d8456883705bfdfb00001854b2e5efa8aaf25827d659f592b1575281ec125de7fb91cd81d91dcb19f5cdf1e1e2b4a8a1389753a09110538689e38e07fb2dc72bd4fd11d7bc16aac5d85c6101bb722895248e463a5fb45ce0e564e90cb19d5993b471687ae4165e29cf2f58082115f5f8569896eedfd798733223e6d6584997510c374912ab798bd4af4654c01bb2c411bc36468ddd62b4eba5cfc8953526e0e5b1359797956152d0098ce47c62c3fe5a23219389622b7f65bf03527d25c3941b9cf1ffeedf6d99082bb57ea871c12213cc40900f83033bc18c529171fae324c315bc6ce358831d0230412212acfd5fc8d5cb0d028cf568e8bb40e27befe2ff01f7c6674a4d86d900633ea36641e0a781ea0ea7f2d928b8b22e2f97dd13348927375baea6863bef4acf4299096ada5cdd2a0eaafaa760a79d102d1e0c0000000000000000007926653b8d79ce16a432f124786a0bc3c5b7d196822492ae1ccf91aeac16406ad6f9cd3d96d57fceba8360ae49f73351814c9c2972f11064aaf3739d9100f9c0e4d0cb17d50c82e305ba7d62cf1cc6da26e34982a8c74dd8122cf5b5e7c34fd2712a0cef05e4d8ec7dd363219676bd9b19943185b132eb35a695e208dfa5cecdb1d6425c8879063c0f11bd64291a4209ee6dc1d9e901"], &(0x7f00002bf000)='GPL\x00', 0x4, 0xb7, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f0000000180)={r4, r5})
sendmmsg$inet(r6, &(0x7f0000001500)=[{{0x0, 0xffffffcf, &(0x7f0000000b00)=[{&(0x7f00000002c0)="89", 0x34000}, {0x0}], 0x2, &(0x7f0000000e40)=ANY=[], 0xd0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, 0x0)
open(&(0x7f0000000140)='./bus\x00', 0x143142, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
r7 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r7, 0x4c04, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, "ef359f413bb90152f7d6d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a01000000000000004faa2ad9c084a003ea00", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b900e200"})
sendfile(r1, r3, 0x0, 0x100001)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r8, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=ANY=[@ANYBLOB="e1aded77", @ANYRES64=r9, @ANYRES64=0x0], 0x30}}, 0x0)

5.812959266s ago: executing program 4 (id=7057):
openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c00000002000000572c9732ed000000000100000d0300000000000000030000000000000000000001eab4318a080300"/77], 0x0, 0x56, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newqdisc={0x3c, 0x24, 0x0, 0x0, 0x0, {}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_MEMORY={0x8, 0xa, 0xa}]}}]}, 0x3c}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010001fff752b056800080000faff8141", @ANYRES32=0x0, @ANYBLOB="67a9fde500000000280012800a00010076786c616e"], 0x3}}, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.stat\x00', 0x26e1, 0x0)
semget$private(0x0, 0x0, 0x8)
ioctl$AUTOFS_DEV_IOCTL_READY(r3, 0xc0189376, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0, {0x200}}, './file0\x00'})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000400180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
getgid()

4.823681167s ago: executing program 4 (id=7067):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f00000003c0)=@filter={'filter\x00', 0xe, 0x2, 0x250, [0x0, 0x20000100, 0x20000130, 0x20000280], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/592]}, 0x2c8)
r1 = socket$xdp(0x2c, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x406, r0)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000080)={0x1, 0x2, 0x1000, 0xa6, &(0x7f0000000440)="be28f32a69dda7210b361ea70ce06fbf93906b71b7e161fd1e8cd9614dc4982902714576d693515cb6c647d7c09ee52c7f3f52b9a2ad05c6814db10f3a31fa9e19bf85759befa1c82030121085f0e1e4746306574ae77aaf7310c31d96cdb26f6c58721eac10e72f1025c425e9d05a6d1a98c0f279816e05b1be6c0d2c6508cbe662ff00508d78ad51fcffac37a74ab1af092c24c92ed11ddd873b18dbd16047ce9fdb442dfb", 0x9e, 0x0, &(0x7f0000000500)="2eb6d9ac4dd04c6fb0bef9c8ff58d17b6481044f8a4037baf08390cecc560f23350594e7a987e9635351b737d20325d196b8ce6547aa9c60e76ec816e43d88b16da3c61aba2ac5cb94be019a90462e00dce43fe7f0f7066ac7dc76130782e1e77e1d1faff08d7282bdb8dbb2b1076f54210c659c2b57e6e58363bbf30c3f94bab204100ac43a0bf1be8585f70ca08ba4fe377ebcaecfa30f52e79339b385"})
getsockopt$TIPC_SOCK_RECVQ_DEPTH(r2, 0x10f, 0x84, &(0x7f0000000000), &(0x7f0000000040)=0x4)
syz_emit_ethernet(0x52, &(0x7f00000005c0)={@multicast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @mcast2, {[@routing={0x78, 0x0, 0x1, 0xd3}], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)

4.500811346s ago: executing program 0 (id=7072):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x200, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r1}, 0x10)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)=<r3=>0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000940)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0xf3a, 0x0)
clock_getres(0x2, &(0x7f000000ddc0))
write$binfmt_misc(r5, &(0x7f0000000240)=ANY=[], 0xfdef)
timer_settime(r3, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f00000700000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000a6210571fb7c61bd2ab87e5cf72300000000000000000000af39788b05fee69512dd73db84f5396e84ede85091"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000002200b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_team(r7, 0x8933, &(0x7f0000000180)={'team0\x00', <r8=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x6a, '\x00', r8, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
unshare(0x400)
socket$packet(0x11, 0x2, 0x300)
r9 = socket$packet(0x11, 0xa, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r10, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r10], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r11}, 0x10)
setsockopt$SO_ATTACH_FILTER(r9, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000100)=[{0x80000006}]}, 0x10)

3.655904824s ago: executing program 0 (id=7080):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000004c0)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000160a03020000000000000000020000000900020073797a30000000000900010073797a30000000002c00038008000140000000000800024000000000180003801400010073797a5f74756e00000000000000000014000000110001"], 0x80}}, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r3, &(0x7f0000000400)={&(0x7f0000000240), 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x70, r4, 0x800, 0x70bd29, 0x25dfdbfb, {}, [{@pci={{0x8}, {0x11}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}]}, 0x70}, 0x1, 0x0, 0x0, 0x20004084}, 0x404c011)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x9004}, 0x4)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b000000f3ff0000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6}, 0x10)
r7 = syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x53d, &(0x7f0000000a80)="$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")
lsetxattr$system_posix_acl(&(0x7f0000000400)='.\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000010000000000000002000000", @ANYRES32=0xee01, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=r7, @ANYBLOB="040000000000800008000000", @ANYRES32=r7, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="100000000000000020"], 0x5c, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)

3.116641804s ago: executing program 0 (id=7085):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xa00008, &(0x7f0000000100), 0x1, 0x7ad, &(0x7f00000007c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
r1 = open(&(0x7f0000000140)='./file1\x00', 0x141042, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
sendfile(r2, r2, 0x0, 0xc)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r3, 0x4084, 0x81, &(0x7f0000000180)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r3, 0x84, 0x15, &(0x7f00000001c0), 0x1)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @empty}], 0x1c)
sendto$inet6(r3, &(0x7f00000000c0)="e92c", 0x2, 0x0, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0x2}, 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r3, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x3, 0x10}, 0xc)
r4 = socket(0x10, 0x3, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000006000000fd0f00000700000000000000", @ANYRES32, @ANYBLOB="0000050000002000000000cb00e4194c5c000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @lsm, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x2f)
ioctl$sock_kcm_SIOCKCMCLONE(r4, 0x89e2, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="180000000200000000000001", @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10)
write$binfmt_script(r3, &(0x7f0000000300), 0x19ffe)
fallocate(r1, 0x8, 0x0, 0x10000)

2.576392443s ago: executing program 0 (id=7090):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r1}, 0x10)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r3)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r4 = inotify_init1(0x0)
fcntl$setown(r4, 0x8, 0xffffffffffffffff)
fcntl$getownex(r4, 0x10, &(0x7f0000000140))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0))
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff8500000071000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = dup(0xffffffffffffffff)
ioctl$TIOCGPTLCK(r6, 0x80045439, &(0x7f0000000040))
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r7, 0x40045431, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, "ff00f7000000000000000000af88008300"})
r8 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
ioctl$EVIOCGREP(r8, 0x80084524, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r10, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="280000000406010700000000000000000000000005000100070000"], 0x28}}, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=@newtaction={0x64, 0x30, 0x1, 0x0, 0x0, {}, [{0x50}]}, 0x64}}, 0x0)
r11 = syz_open_pts(r7, 0x141601)
write(r11, &(0x7f0000000000)="d5", 0xfffffedf)
syz_usbip_server_init(0x3)
close_range(r7, r6, 0x0)

1.808313244s ago: executing program 0 (id=7102):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x200, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r1}, 0x10)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)=<r3=>0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000940)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0xf3a, 0x0)
clock_getres(0x2, &(0x7f000000ddc0))
write$binfmt_misc(r5, &(0x7f0000000240)=ANY=[], 0xfdef)
timer_settime(r3, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f00000700000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000a6210571fb7c61bd2ab87e5cf72300000000000000000000af39788b05fee69512dd73db84f5396e84ede85091"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000002200b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_team(r7, 0x8933, &(0x7f0000000180)={'team0\x00', <r8=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x6a, '\x00', r8, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
unshare(0x400)
socket$packet(0x11, 0x2, 0x300)
r9 = socket$packet(0x11, 0xa, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r10, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r10], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
setsockopt$SO_ATTACH_FILTER(r9, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000100)=[{0x80000006}]}, 0x10)

1.703899474s ago: executing program 3 (id=7104):
r0 = socket$netlink(0x10, 0x3, 0x0)
openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x5, 0x6, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r1, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000240), 0x25, 0x4b6, &(0x7f0000000540)="$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")
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="480000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800b0001006d61637365630000180002800c0004"], 0x48}}, 0x40000)

1.324728018s ago: executing program 3 (id=7107):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000004c0)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000160a03020000000000000000020000000900020073797a30000000000900010073797a30000000002c00038008000140000000000800024000000000180003801400010073797a5f74756e00000000000000000014000000110001"], 0x80}}, 0x0)
socket$packet(0x11, 0x3, 0x300)
syz_emit_ethernet(0x26, &(0x7f0000000080)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @dev, @val={@void, {0x8100, 0x0, 0x0, 0x2}}, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x3e, 0x14, 0x0, 0x2, 0x0, 0x4, 0x0, @empty}}}}}, 0x0)

1.232994657s ago: executing program 1 (id=7109):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x99, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x1, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001900)=@newlink={0x58, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x18, 0x2, 0x0, 0x1, [@IFLA_VLAN_FLAGS={0xc, 0x2, {0x3, 0x1f}}, @IFLA_VLAN_ID={0x6}]}}}, @IFLA_LINK={0x8, 0x5, r3}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0x58}}, 0x0)

1.173499902s ago: executing program 3 (id=7111):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0)
r3 = syz_open_dev$vcsu(&(0x7f0000000180), 0x489dc314, 0x400)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r3, 0xc0189375, &(0x7f0000000200)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
write$selinux_attr(r2, &(0x7f0000000100)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)
readv(r2, &(0x7f0000000840)=[{&(0x7f00000004c0)=""/175, 0xaf}], 0x1)
r4 = socket$inet6(0x10, 0x2, 0x0)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f0000000040)=[{0x30, 0x0, 0x0, 0xfff00002}, {0x16}]}, 0x10)
sendto$inet6(r4, &(0x7f0000000580)="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", 0x112, 0x40814, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r1, 0x84, 0x1e, &(0x7f0000000000), &(0x7f00000000c0)=0x4)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r5}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
munlock(&(0x7f000064c000/0x1000)=nil, 0x1000)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_GET(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x60, 0x1, 0x9, 0x401, 0x0, 0x0, {}, [@NFCTH_TUPLE={0x4c, 0x2, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @dev}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6}]}]}, 0x60}}, 0x0)
getsockopt$inet_sctp6_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000040)={0x0, 0x3ff}, &(0x7f0000000080)=0x8)
pipe2$9p(&(0x7f0000000240)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x0)
r9 = dup(r8)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000380)='9p_protocol_dump\x00', r10}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000b40)={{r9}, &(0x7f0000000400), &(0x7f0000000940)=r0}, 0xb)
mount$9p_fd(0x20000002, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r7}, 0x2c, {'wfdno', 0x3d, r9}})
r11 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000001000"/24], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r11}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$nl_route(0x10, 0x3, 0x0)
r12 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000000)={'hsr0\x00'})
socket$igmp(0x2, 0x3, 0x2)

1.119328807s ago: executing program 1 (id=7112):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x200000, &(0x7f0000000040)={[{@noinit_itable}, {@nobh}, {@i_version}]}, 0x1, 0xb90, &(0x7f0000003380)="$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")
socket$unix(0x1, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0)
write$cgroup_int(r2, &(0x7f0000000100), 0x1001)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000880)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x22, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x44)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='ext4_discard_preallocations\x00', r3}, 0x10)
ioctl$SIOCSIFHWADDR(r2, 0x4030582b, &(0x7f0000000280)={'lo\x00', @link_local={0x1, 0x80, 0xc2, 0xc}})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe79, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080)=0x2, 0x4)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)

995.331158ms ago: executing program 3 (id=7114):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000002c0)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x3, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
statfs(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=""/4)
close(r2)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
statfs(0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./mnt\x00', 0x2200054, &(0x7f0000000080), 0x1, 0x23b, &(0x7f0000000540)="$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")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
open_by_handle_at(r3, &(0x7f0000000040)=ANY=[@ANYBLOB="08000000020000000b"], 0x60200)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sys_enter\x00'}, 0x10)
eventfd2(0xfffffff8, 0x80800)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000ac0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(0xffffffffffffffff, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f00000002c0)={0x54, r4, 0x1, 0x0, 0x0, {0x22}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}, {0xc}, {0xc}}]}, 0x54}}, 0x0)

741.637712ms ago: executing program 2 (id=7115):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000140)=ANY=[@ANYBLOB="180000000000000000000000000000008500000050000000850000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
faccessat(0xffffffffffffffff, 0x0, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, 0x0, 0x0)
close(0x3)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
r2 = add_key$fscrypt_v1(&(0x7f0000000400), &(0x7f0000000440)={'fscrypt:', @desc1}, &(0x7f0000000480)={0x0, "6035ae1e0fe721441705322225930e6c1e3e2a51a92fd796bc34d7cf6e0236805b4377f7ab1a9b01c103a4c6a7ef54e6763fd7264c39ea00c508ba6062696138"}, 0x48, 0xfffffffffffffffe)
keyctl$KEYCTL_MOVE(0x4, r2, r1, 0x0, 0x0)
keyctl$KEYCTL_MOVE(0x4, 0x0, 0x0, 0x0, 0x0)

562.160719ms ago: executing program 0 (id=7116):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r1}, 0x10)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r3)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
fcntl$setown(0xffffffffffffffff, 0x8, 0xffffffffffffffff)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000140))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0))
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = dup(0xffffffffffffffff)
ioctl$TIOCGPTLCK(r5, 0x80045439, &(0x7f0000000040))
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r6, 0x40045431, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, "ff00f7000000000000000000af88008300"})
r7 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
ioctl$EVIOCGREP(r7, 0x80084524, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_route_sched(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=@newtaction={0x14, 0x30, 0x1}, 0x14}}, 0x0)
r9 = syz_open_pts(r6, 0x141601)
write(r9, &(0x7f0000000000)="d5", 0xfffffedf)
syz_usbip_server_init(0x3)
close_range(r6, r5, 0x0)

553.835279ms ago: executing program 2 (id=7117):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x3, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x18, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180000000300000000000000010000800c90fefffcffffff4c3be4c0d9c39500000000000000"], &(0x7f00000002c0)='syzkaller\x00', 0x6, 0x0, 0x0, 0x41100, 0x14, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000340)={0x1, 0x8, 0x3, 0x3}, 0x10, 0x0, 0x0, 0x4, &(0x7f0000000380)=[r0, r0, r0, r0, r0, r0, r0], &(0x7f00000003c0)=[{0x1, 0x5, 0x10, 0x1}, {0x3, 0x2, 0xd, 0x9}, {0x3, 0x1, 0x8, 0x6}, {0x3, 0x5, 0x1, 0xa}], 0x10, 0x9, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000240)='objagg_obj_parent_assign\x00', r1, 0x0, 0x80fff}, 0x58)
r2 = syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x53d, &(0x7f0000000a80)="$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")
lsetxattr$system_posix_acl(&(0x7f0000000400)='.\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000010000000000000002000000", @ANYRES32=0xee01, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=r2, @ANYBLOB="040000000000800008000000", @ANYRES32=r2, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="100000000000000020"], 0x5c, 0x0)
setxattr$trusted_overlay_origin(&(0x7f0000000040)='./file0\x00', &(0x7f0000000180), &(0x7f0000000200), 0x2, 0x2)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$sock_SIOCADDRT(r3, 0x890b, &(0x7f0000000940)={0x0, @l2={0x1f, 0xdd62, @any, 0x8d, 0x2}, @isdn={0x22, 0x2, 0xda, 0xc, 0x1}, @rc={0x1f, @none, 0xfc}, 0x9, 0x0, 0x0, 0x0, 0x9, 0x0, 0x4, 0x5, 0xd})
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)={{0x14, 0x10, 0x1, 0x300}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x7}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x80, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x58, 0x4, 0x0, 0x1, [{0x54, 0x1, 0x0, 0x1, @target={{0xb}, @val={0x44, 0x2, 0x0, 0x1, [@NFTA_TARGET_INFO={0x2c, 0x3, "30f02fd00bd2a51c735dfabf13705dec268656565b27a8207f65236b9f02333bf8a032a7cc108483"}, @NFTA_TARGET_NAME={0x9, 0x1, 'DNAT\x00'}, @NFTA_TARGET_REV={0x8, 0x2, 0x1, 0x0, 0x1}]}}}]}]}], {0x14}}, 0xf4}, 0x1, 0x0, 0x0, 0x50}, 0x4000040)

453.702238ms ago: executing program 1 (id=7118):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007100000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$key(0xf, 0x3, 0x2)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYRES64=r0], 0x13c}, 0x1, 0x0, 0x0, 0x400d0}, 0x15)

403.243713ms ago: executing program 4 (id=7068):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
statfs(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=""/4)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
statfs(0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./mnt\x00', 0x2200054, &(0x7f0000000080), 0x1, 0x23b, &(0x7f0000000540)="$eJzs3TFoJFUcBvBvZneNuVvk1EYQVBARDYSzE2zORuFAQhARVIiI2CiJEBPsEisbC61VUtkEsTNaSppgowhWUVPERtBgYbDQYmV2EolmxeDGnSPz+8Hszuy+N/83zHxvtxkmQGtdSXItSSfJTJJekuJkg3vq5crR5sb0zkIyGDz5czFsV2/XjvtdTrKe5OEk22WRl7vJ6taz+7/uPn7/Wyu9+z7YemZ6ogd55GB/74nD9+fe/Pj6Q6tffv3jXJFr6f/luM5fMeKzbpHc9n8Uu0EU3aZHwFnMv/7RN1Xub09y7zD/vZSpT97byzdt9/Lge//U952fvrpzkmMFzt9g0Kt+A9cHQOuUSfopytkk9XpZzs7W/+G/7VwqX1lafm3mpaWVxRebnqmA89JP9h77dOqTy3/L/w+dOv/AxVXl/6n5ze+q9cNO06MBJqnK/8zzaw9E/uHCmDpjO/mH9pJ/aC/5h/aSf2gv+Yf2kn9oL/mH9pJ/aC/5h/Y6mX8AoF0GU03fgQw0pen5BwAAAAAAAAAAAAAAAAAAOG1jemfheJlUzc/fTQ4eTdIdVb8zfB5xcvPw9dIvRdXsT0XdbSzP3T3mDsb0YcN3X9/yfbP1v7ir2fpri8n6G0mudrunr7/i6Pr77279l+97L4xZYEyPPN1s/d83m61/fTf5rJp/ro6af8rcMXwfPf/0q/M3Zv1XfxtzBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEzMHwEAAP//655tMA==")
eventfd2(0xfffffff8, 0x80800)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000ac0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(0xffffffffffffffff, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f00000002c0)={0x54, r2, 0x1, 0x0, 0x0, {0x22}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}, {0xc}, {0xc}}]}, 0x54}}, 0x0)

318.337161ms ago: executing program 3 (id=7119):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
r1 = perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0xfe, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x2, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01080000000000000000020000000900020073797a2a0000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[], 0x74}}, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000040)='net/igmp\x00')
r6 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r6, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
pread64(r5, &(0x7f0000000440)=""/249, 0xf9, 0x359)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r3, 0x8010671f, &(0x7f0000000300)={&(0x7f0000000540)=""/196, 0xc4})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000000040)='cpu<00||!')

271.023275ms ago: executing program 1 (id=7120):
r0 = io_uring_setup(0xb3e, &(0x7f0000000340)) (async)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0) (async, rerun: 32)
io_setup(0x3, &(0x7f00000000c0)=<r2=>0x0) (rerun: 32)
io_submit(r2, 0x1, &(0x7f0000000200)=[&(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000000700)='9', 0x1}]) (async)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"}) (async)
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x9, 0x2a8, &(0x7f0000000500)="$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") (async)
sched_setscheduler(0x0, 0x1, 0x0) (async, rerun: 32)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async, rerun: 32)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6) (async, rerun: 64)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async, rerun: 64)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000005c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000240)=0x3) (async)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1200000004000000040000001200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/25], 0x48)
r5 = socket$inet_udp(0x2, 0x2, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) (async, rerun: 32)
socket$inet_icmp_raw(0x2, 0x3, 0x1) (async, rerun: 32)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
fchmod(0xffffffffffffffff, 0x22) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r7}, 0x10) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x4, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) (async)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000000c0)={r4, &(0x7f0000000380), &(0x7f0000000040)=@udp=r5}, 0x20) (async, rerun: 32)
recvmsg(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001640)=[{&(0x7f0000000280)=""/231, 0xe7}], 0x1}, 0x0) (async, rerun: 32)
close_range(r0, 0xffffffffffffffff, 0x0)
socket$netlink(0x10, 0x3, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xffc, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

269.634465ms ago: executing program 4 (id=7121):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r1}, 0x10)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r3)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
fcntl$setown(0xffffffffffffffff, 0x8, 0xffffffffffffffff)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000140))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0))
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = dup(0xffffffffffffffff)
ioctl$TIOCGPTLCK(r5, 0x80045439, &(0x7f0000000040))
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r6, 0x40045431, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, "ff00f7000000000000000000af88008300"})
r7 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
ioctl$EVIOCGREP(r7, 0x80084524, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_route_sched(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=@newtaction={0x64, 0x30, 0x1, 0x0, 0x0, {}, [{0x50}]}, 0x64}}, 0x0)
r9 = syz_open_pts(r6, 0x141601)
write(r9, &(0x7f0000000000), 0x0)
syz_usbip_server_init(0x3)
close_range(r6, r5, 0x0)

266.616345ms ago: executing program 2 (id=7122):
openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c00000002000000572c9732ed000000000100000d0300000000000000030000000000000000000001eab4318a080300"/77], 0x0, 0x56, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
pipe(&(0x7f00000001c0))
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newqdisc={0x3c, 0x24, 0x0, 0x0, 0x0, {}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_MEMORY={0x8, 0xa, 0xa}]}}]}, 0x3c}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010001fff752b056800080000faff8141", @ANYRES32=0x0, @ANYBLOB="67a9fde500000000280012800a00010076786c616e"], 0x3}}, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000400180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
getgid()

149.651296ms ago: executing program 1 (id=7123):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, 0x0, &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='./file1\x00', 0x0, &(0x7f0000000500)=ANY=[@ANYRES64=0x0, @ANYRES64], 0x1, 0x357, &(0x7f0000000180)="$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")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000380), 0x208e24b)

146.264747ms ago: executing program 3 (id=7124):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x99, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x1, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001900)=@newlink={0x58, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x18, 0x2, 0x0, 0x1, [@IFLA_VLAN_FLAGS={0xc, 0x2, {0x3, 0x1f}}, @IFLA_VLAN_ID={0x6}]}}}, @IFLA_LINK={0x8, 0x5, r3}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0x58}}, 0x0)

103.41575ms ago: executing program 2 (id=7125):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000)={0x0, r0}, 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYRES32=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000540), 0x4000, 0x0)

84.235502ms ago: executing program 2 (id=7126):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000140)=ANY=[@ANYBLOB="180000000000000000000000000000008500000050000000850000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
faccessat(0xffffffffffffffff, 0x0, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, 0x0, 0x0)
close(0x3)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
r2 = add_key$fscrypt_v1(&(0x7f0000000400), &(0x7f0000000440)={'fscrypt:', @desc1}, &(0x7f0000000480)={0x0, "6035ae1e0fe721441705322225930e6c1e3e2a51a92fd796bc34d7cf6e0236805b4377f7ab1a9b01c103a4c6a7ef54e6763fd7264c39ea00c508ba6062696138"}, 0x48, 0xfffffffffffffffe)
keyctl$KEYCTL_MOVE(0x4, r2, r1, 0x0, 0x0)
keyctl$KEYCTL_MOVE(0x4, 0x0, 0x0, 0x0, 0x0)

78.275123ms ago: executing program 1 (id=7127):
r0 = socket(0x10, 0x3, 0x9)
connect$netlink(r0, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x25dfdbfc}, 0xc)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_VID_CMD(r0, 0x8982, &(0x7f0000000340))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000540)={0x8}, 0x8)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
ioperm(0x0, 0x2, 0x2)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x18000, &(0x7f0000000000), 0x80, 0x62d, &(0x7f0000000c40)="$eJzs3c9rHNcdAPDvzEqyZauVXUqpTUsFPdhQvJZcU7c92e6hPhhqqA8h5GBhSY7w+geWDLZjsAw5JJBACLmG4Ev+gZBr0DXkFgKJbzkHnBCc5JAEb5jZWWuz2rU3kla78Xw+MDNv3szue98dvZ03MzuaAEprKhulEfsi4lwSMdmybCIaC6eK9R5+fft8NiRRr///qySSIq+5/qNiujsbJY3XfHwy4neV9eUu3bx1cbZWb7gTcXj50tXDSzdvHVq8NHth/sL85Zkj/zx6bPpfMx9uTZy7i+mp0//70+svv/iPhU9qh5I4HmdHX5qLtji2ylTj040sxNb8kYg4liU6fC6wnSrF3+NoRPwhJqOSzzVMxuJrA60c0Ff1SmP/VB+rA6WTxKBrAAxGsx/QPLbvx3HwMHtwIhvf6BD/SHH0vjM/Ntr1MGk5MspyI/ZsQfkrEfHj7f1vZ0N0OQ8xsgXldC3/bkT8sdP2T/L49+SRZvGnkba8LktPF+c2svr9ZxN1SFrSvf393dlEaT/3S+Jv3Q5Z/MeLaZZ/ssv7P+0Uz1TbfNnaHwCDsXqi2JFnHZFY2/9lPcNm/yfa+z/19/NrQ+37ro3ovv9Lt+Ddny7v/4102v839/c783142tYPS2Ll2zOd33K0PePzV0+92a38qZb+XzZk5Tf7gj3YdNfwwd2I/W3xv5J/9Mnj7Z906P9mq5zrsYz/fvrlqW7LNhn/ptXvRRzoePyz1ivNUm3XJ5NoXp88OnN4YbE2P90Ydyzjg49eeLdb+YOOP9v+u7rE/6Ttn+Vd7bGM987cu9RI7Vi3bOKp8adfjCVn89RYPl5rXmPJ6WKVxuTG7PLytSNPrktznXw604j/4F87t/8u8ecHH+PNr8weXH3u4sNuyza5/R/Ve1yxmyz+uQ1u/zd6LOO756//uduy9fGvnZMY32hQAAAAAAAAUFJpfg02SauP02laLS68/T52pbUrS8t/W7hy/fJcxMH895CjafNK92RjPsnmZ4rfwzbnj7TN/z0i9kbEW5XxfL56/kptbtDBAwAAAAAAAAAAAAAAAAAAwJDYXdz//6h4Htg3lTStVgddK2Db9PMBc8Bw0/6hvPL2vz3PWwOGjP0/lFfH9u9LAUpBU4fy0v6hvLR/KC/tH8pL+4fy6t7+1y252++6AAAAAABbZu9fVu+PRMTKv8fzITNWLBsdaM2AftPGobwqg64AMDCPL/C7/R9Kp6f+//fFPwfsf3WAAUg6Zeadg/qTG/9qx1cCAAAAAAAAAAAAAH1wYN/q/cT9/1BKbvuD8trY/f+Vjb8UGBqd/vW/x4FAOTjGh5Lr4STAzm4L3P8PAAAAAAAAAAAAANtmIh+StFr8DHgi0rRajfhNROyJ0WRhsTY/HRG/jYjPKqM7svmZQVcaAAAAAAAAAAAAAAAAAAAAnjFLN29dnK3V5q+1Jn5Yl/NsJ5pPPB2W+rQmIul7EWm05YxHxDDE3p/ESEtOErGSbfmteOdk838/MQyfT5EY8BcTAAAAAAAAAAAAAAAAAACUUMu9x53tf2ebawQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA22/t+f/9Sww6RgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg1+mnAAAA//+EYjvS")
r1 = open(&(0x7f0000000400)='.\x00', 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x5, 0x6, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00'}, 0x10)
getdents(r1, &(0x7f0000001fc0)=""/184, 0xb8)
creat(0x0, 0x0)

0s ago: executing program 2 (id=7128):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x20081e, &(0x7f0000000680)={[{@nodioread_nolock}]}, 0x1, 0x503, &(0x7f0000000140)="$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")
r0 = syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f00000000c0)='./file1\x00', 0x0, 0x0, 0x19, 0x0, &(0x7f0000000080))
r1 = openat(r0, &(0x7f0000000100)='./bus/file0\x00', 0x54740, 0x0)
renameat2(r1, &(0x7f00000007c0)='./file1\x00', r1, &(0x7f0000000800)='./bus/file0\x00', 0x0)

kernel console output (not intermixed with test programs):

669 comm="syz.2.6804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fdaca1cc890 code=0x7ffc0000
[  468.625850][   T29] audit: type=1326 audit(1726856224.193:14748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9669 comm="syz.2.6804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fdaca1cdafb code=0x7ffc0000
[  468.685380][ T8256] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  468.846890][ T9712] tipc: Failed to remove unknown binding: 66,1,1/0:3665085822/3665085824
[  468.855471][ T9712] tipc: Failed to remove unknown binding: 66,1,1/0:3665085822/3665085824
[  468.873408][ T9715] loop2: detected capacity change from 0 to 164
[  468.895810][ T9715] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  468.925202][ T9720] loop0: detected capacity change from 0 to 128
[  469.010472][ T9736] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  469.010472][ T9736]    program syz.1.6821 not setting count and/or reply_len properly
[  469.100449][ T9747] syz.1.6824[9747] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  469.100537][ T9747] syz.1.6824[9747] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  469.177396][ T9714] loop4: detected capacity change from 0 to 128
[  469.205086][ T9760] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(14)
[  469.211758][ T9760] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  469.219499][ T9760] vhci_hcd vhci_hcd.0: Device attached
[  469.228033][ T9761] vhci_hcd: connection closed
[  469.234942][ T9714] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  469.254967][T17869] vhci_hcd: stop threads
[  469.259318][T17869] vhci_hcd: release socket
[  469.263764][T17869] vhci_hcd: disconnect device
[  469.285944][ T9714] ext4 filesystem being mounted at /1/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  469.399745][ T9774] loop1: detected capacity change from 0 to 512
[  469.430088][ T9774] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  469.440403][ T8893] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  469.449980][ T9774] EXT4-fs (loop1): orphan cleanup on readonly fs
[  469.457556][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  469.475369][ T9774] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.6830: bg 0: block 248: padding at end of block bitmap is not set
[  469.559305][ T9774] EXT4-fs error (device loop1): ext4_acquire_dquot:6848: comm syz.1.6830: Failed to acquire dquot type 1
[  469.585263][ T9774] EXT4-fs (loop1): 1 truncate cleaned up
[  469.620612][ T9774] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  469.728539][ T9791] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  469.728539][ T9791]    program syz.4.6834 not setting count and/or reply_len properly
[  469.798508][ T9774] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  469.978987][ T9820] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(13)
[  469.985738][ T9820] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  469.993454][ T9820] vhci_hcd vhci_hcd.0: Device attached
[  469.999330][ T9827] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  469.999330][ T9827]    program syz.3.6845 not setting count and/or reply_len properly
[  470.017173][ T9826] vhci_hcd: connection closed
[  470.047722][T17869] vhci_hcd: stop threads
[  470.056813][T17869] vhci_hcd: release socket
[  470.061280][T17869] vhci_hcd: disconnect device
[  470.077404][ T9839] loop3: detected capacity change from 0 to 164
[  470.090732][ T9839] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  470.161709][ T9818] loop4: detected capacity change from 0 to 128
[  470.171240][ T9818] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  470.184312][ T9818] ext4 filesystem being mounted at /7/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  470.246047][ T8893] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  470.252783][ T9857] siw: device registration error -23
[  470.290458][ T9862] loop4: detected capacity change from 0 to 164
[  470.309932][ T9862] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  470.360106][ T9876] loop0: detected capacity change from 0 to 1024
[  470.367397][ T9876] EXT4-fs: Ignoring removed oldalloc option
[  470.379040][ T9876] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  470.584167][ T9897] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  470.584167][ T9897]    program syz.1.6857 not setting count and/or reply_len properly
[  470.625889][ T9900] loop1: detected capacity change from 0 to 512
[  470.634269][ T9900] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities
[  470.857773][ T9910] loop2: detected capacity change from 0 to 512
[  470.880821][ T9910] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  470.894037][ T9910] ext4 filesystem being mounted at /17/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  470.909367][ T9910] EXT4-fs error (device loop2): ext4_do_update_inode:5151: inode #2: comm syz.2.6859: corrupted inode contents
[  470.923850][ T9910] EXT4-fs error (device loop2): ext4_dirty_inode:6011: inode #2: comm syz.2.6859: mark_inode_dirty error
[  470.936162][ T9910] EXT4-fs error (device loop2): ext4_do_update_inode:5151: inode #2: comm syz.2.6859: corrupted inode contents
[  470.974111][ T8256] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  471.072807][ T9923] tipc: Failed to remove unknown binding: 66,1,1/0:1668343586/1668343588
[  471.081359][ T9923] tipc: Failed to remove unknown binding: 66,1,1/0:1668343586/1668343588
[  471.138805][ T9926] loop2: detected capacity change from 0 to 512
[  471.177221][ T9926] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  471.194172][ T9926] ext4 filesystem being mounted at /20/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  471.210595][ T5443] EXT4-fs error (device loop0): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /74/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  471.240860][ T5443] EXT4-fs error (device loop0): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  471.260885][ T5443] EXT4-fs warning (device loop0): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  471.262074][ T8256] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  471.281832][ T5443] EXT4-fs error (device loop0): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /74/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  471.349643][ T5443] EXT4-fs error (device loop0): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  471.369626][ T9950] __nla_validate_parse: 4 callbacks suppressed
[  471.369644][ T9950] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6864'.
[  471.385665][ T5443] EXT4-fs warning (device loop0): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  471.397299][ T5443] EXT4-fs error (device loop0): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /74/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  471.419896][ T5443] EXT4-fs error (device loop0): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  471.453034][ T5443] EXT4-fs warning (device loop0): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  471.489365][ T9964] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6869'.
[  471.502085][ T9963] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  471.502085][ T9963]    program syz.1.6868 not setting count and/or reply_len properly
[  471.507337][ T5443] EXT4-fs error (device loop0): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /74/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  471.543282][ T9966] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(13)
[  471.549972][ T9966] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  471.557635][ T9966] vhci_hcd vhci_hcd.0: Device attached
[  471.563734][ T5443] EXT4-fs error (device loop0): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  471.583933][ T9967] vhci_hcd: connection closed
[  471.591299][T17845] vhci_hcd: stop threads
[  471.600344][T17845] vhci_hcd: release socket
[  471.604769][T17845] vhci_hcd: disconnect device
[  471.619063][ T5443] EXT4-fs warning (device loop0): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  471.633232][ T5443] EXT4-fs error (device loop0): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /74/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  471.658551][ T5443] EXT4-fs error (device loop0): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  471.686331][ T5443] EXT4-fs warning (device loop0): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  471.702406][ T5443] EXT4-fs warning (device loop0): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  471.715468][ T5443] EXT4-fs warning (device loop0): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  471.731888][ T5443] EXT4-fs warning (device loop0): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  471.750324][ T5443] EXT4-fs warning (device loop0): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  471.763034][ T5443] EXT4-fs warning (device loop0): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  471.926217][ T9982] loop1: detected capacity change from 0 to 128
[  471.943513][ T9982] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  471.956529][ T9982] ext4 filesystem being mounted at /82/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  472.012036][T17852] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  472.024268][ T5443] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  472.100924][T17852] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  472.134685][ T5714] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  472.190545][T17852] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  472.252011][T10013] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6880'.
[  472.284922][T17852] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  472.296695][T10017] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  472.296695][T10017]    program syz.1.6881 not setting count and/or reply_len properly
[  472.388970][T17852] bridge_slave_1: left allmulticast mode
[  472.394673][T17852] bridge_slave_1: left promiscuous mode
[  472.400903][T17852] bridge0: port 2(bridge_slave_1) entered disabled state
[  472.429684][T17852] bridge_slave_0: left allmulticast mode
[  472.435382][T17852] bridge_slave_0: left promiscuous mode
[  472.441124][T17852] bridge0: port 1(bridge_slave_0) entered disabled state
[  472.455605][T10048] loop2: detected capacity change from 0 to 164
[  472.470950][T10048] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  472.578096][T10069] loop3: detected capacity change from 0 to 164
[  472.585729][T10069] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  472.612462][T10073] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  472.612462][T10073]    program syz.4.6892 not setting count and/or reply_len properly
[  472.679511][T17852] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  472.695341][T17852] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  472.710099][T17852] bond0 (unregistering): Released all slaves
[  472.722898][T10082] loop4: detected capacity change from 0 to 128
[  472.763786][T10004] lo speed is unknown, defaulting to 1000
[  472.804145][T10115] tipc: Failed to remove unknown binding: 66,1,1/0:265959369/265959371
[  472.812607][T10115] tipc: Failed to remove unknown binding: 66,1,1/0:265959369/265959371
[  472.824918][T17852] hsr_slave_0: left promiscuous mode
[  472.831646][T17852] hsr_slave_1: left promiscuous mode
[  472.847901][T17852] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  472.855479][T17852] batman_adv: batadv0: Removing interface: batadv_slave_0
[  472.885481][T17852] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  472.893148][T17852] batman_adv: batadv0: Removing interface: batadv_slave_1
[  472.923467][T17852] veth1_macvtap: left promiscuous mode
[  472.929053][T17852] veth0_macvtap: left promiscuous mode
[  472.934624][T17852] veth1_vlan: left promiscuous mode
[  472.940734][T17852] veth0_vlan: left promiscuous mode
[  472.983115][T10148] tipc: Failed to remove unknown binding: 66,1,1/0:3270401842/3270401844
[  472.991671][T10148] tipc: Failed to remove unknown binding: 66,1,1/0:3270401842/3270401844
[  473.089394][T10163] loop3: detected capacity change from 0 to 128
[  473.111434][T10165] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=10165 comm=syz.4.6904
[  473.125429][T17852] team0 (unregistering): Port device team_slave_1 removed
[  473.138505][T17852] team0 (unregistering): Port device team_slave_0 removed
[  473.157898][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  473.180174][T10173] loop4: detected capacity change from 0 to 1024
[  473.190488][T10173] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  473.203553][T10173] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  473.212531][T10173] EXT4-fs (loop4): orphan cleanup on readonly fs
[  473.219915][T10173] EXT4-fs error (device loop4): ext4_free_blocks:6590: comm syz.4.6904: Freeing blocks not in datazone - block = 0, count = 4096
[  473.247978][T10173] EXT4-fs (loop4): 1 orphan inode deleted
[  473.256380][T10173] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  473.274024][T10173] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 16: comm syz.4.6904: path /23/file1: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  473.296078][T10173] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 17: comm syz.4.6904: path /23/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  473.322139][T10173] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 18: comm syz.4.6904: path /23/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  473.428915][T10191] loop1: detected capacity change from 0 to 128
[  473.437006][   T29] kauditd_printk_skb: 316 callbacks suppressed
[  473.437024][   T29] audit: type=1326 audit(1726856229.243:15063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10190 comm="syz.1.6907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  473.458859][T10159] EXT4-fs error (device loop4): ext4_search_dir:1505: inode #2: block 16: comm syz.4.6904: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  473.466839][   T29] audit: type=1326 audit(1726856229.243:15064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10190 comm="syz.1.6907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=137 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  473.466947][   T29] audit: type=1326 audit(1726856229.243:15065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10190 comm="syz.1.6907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  473.466981][   T29] audit: type=1326 audit(1726856229.253:15066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10190 comm="syz.1.6907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  473.467013][   T29] audit: type=1326 audit(1726856229.253:15067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10190 comm="syz.1.6907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  473.467092][   T29] audit: type=1326 audit(1726856229.253:15068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10190 comm="syz.1.6907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f4a6b14df33 code=0x7ffc0000
[  473.467123][   T29] audit: type=1326 audit(1726856229.253:15069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10190 comm="syz.1.6907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f4a6b14c9df code=0x7ffc0000
[  473.467154][   T29] audit: type=1326 audit(1726856229.253:15070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10190 comm="syz.1.6907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f4a6b14df87 code=0x7ffc0000
[  473.467243][   T29] audit: type=1326 audit(1726856229.263:15071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10190 comm="syz.1.6907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4a6b14c890 code=0x7ffc0000
[  473.467274][   T29] audit: type=1326 audit(1726856229.263:15072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10190 comm="syz.1.6907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4a6b14dafb code=0x7ffc0000
[  473.621714][T10004] chnl_net:caif_netlink_parms(): no params data found
[  473.656306][T10191] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  473.698319][T10173] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 19: comm syz.4.6904: path /23/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  473.703311][T10191] ext4 filesystem being mounted at /88/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  473.721939][T10173] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 20: comm syz.4.6904: path /23/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  473.783492][T10173] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 21: comm syz.4.6904: path /23/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  473.804901][ T5714] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  473.813967][T10173] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 22: comm syz.4.6904: path /23/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  473.814156][T10173] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 23: comm syz.4.6904: path /23/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  473.878373][T10004] bridge0: port 1(bridge_slave_0) entered blocking state
[  473.885527][T10004] bridge0: port 1(bridge_slave_0) entered disabled state
[  473.893199][T10004] bridge_slave_0: entered allmulticast mode
[  473.900064][T10004] bridge_slave_0: entered promiscuous mode
[  473.912516][T10004] bridge0: port 2(bridge_slave_1) entered blocking state
[  473.913224][ T8893] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  473.919917][T10004] bridge0: port 2(bridge_slave_1) entered disabled state
[  473.920377][T10004] bridge_slave_1: entered allmulticast mode
[  473.943228][T10004] bridge_slave_1: entered promiscuous mode
[  473.962346][T10348] loop4: detected capacity change from 0 to 512
[  473.978270][T10348] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  473.993729][T10348] ext4 filesystem being mounted at /24/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  474.016714][T10348] EXT4-fs error (device loop4): ext4_do_update_inode:5151: inode #2: comm syz.4.6909: corrupted inode contents
[  474.021939][T10004] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  474.051297][T10348] EXT4-fs error (device loop4): ext4_dirty_inode:6011: inode #2: comm syz.4.6909: mark_inode_dirty error
[  474.063162][T10348] EXT4-fs error (device loop4): ext4_do_update_inode:5151: inode #2: comm syz.4.6909: corrupted inode contents
[  474.087510][T10004] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  474.104501][T10384] siw: device registration error -23
[  474.124237][ T8893] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  474.142831][T10004] team0: Port device team_slave_0 added
[  474.149860][T10004] team0: Port device team_slave_1 added
[  474.185892][T10432] loop1: detected capacity change from 0 to 512
[  474.200284][T10432] EXT4-fs: Ignoring removed oldalloc option
[  474.209082][T10004] batman_adv: batadv0: Adding interface: batadv_slave_0
[  474.216089][T10004] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  474.242744][T10004] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  474.254206][T10004] batman_adv: batadv0: Adding interface: batadv_slave_1
[  474.261211][T10004] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  474.288530][T10004] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  474.340256][T10004] hsr_slave_0: entered promiscuous mode
[  474.347962][T10004] hsr_slave_1: entered promiscuous mode
[  474.352875][T10432] EXT4-fs (loop1): failed to open journal device unknown-block(0,0) -6
[  474.364376][T10004] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  474.372378][T10004] Cannot create hsr debugfs directory
[  474.392569][T10432] siw: device registration error -23
[  474.410253][T10506] loop4: detected capacity change from 0 to 128
[  474.457138][T10506] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  474.464314][T10522] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6918'.
[  474.483095][T10506] ext4 filesystem being mounted at /26/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  474.511136][T10522] netlink: 76 bytes leftover after parsing attributes in process `syz.1.6918'.
[  474.533845][ T8893] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  474.560510][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  474.583340][T10586] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(14)
[  474.589981][T10586] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  474.598361][T10586] vhci_hcd vhci_hcd.0: Device attached
[  474.607767][T10587] vhci_hcd: connection closed
[  474.608378][T17845] vhci_hcd: stop threads
[  474.617480][T17845] vhci_hcd: release socket
[  474.621920][T17845] vhci_hcd: disconnect device
[  474.888129][T10004] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  474.897692][T10004] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  474.907108][T10004] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  474.916031][T10004] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  474.962386][T10004] 8021q: adding VLAN 0 to HW filter on device bond0
[  474.979141][T10004] 8021q: adding VLAN 0 to HW filter on device team0
[  474.991056][T17869] bridge0: port 1(bridge_slave_0) entered blocking state
[  474.998196][T17869] bridge0: port 1(bridge_slave_0) entered forwarding state
[  475.024050][T10004] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  475.034685][T10004] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  475.048878][T17869] bridge0: port 2(bridge_slave_1) entered blocking state
[  475.056058][T17869] bridge0: port 2(bridge_slave_1) entered forwarding state
[  475.124603][T10004] 8021q: adding VLAN 0 to HW filter on device batadv0
[  475.244217][T10004] veth0_vlan: entered promiscuous mode
[  475.264277][T10004] veth1_vlan: entered promiscuous mode
[  475.304649][T10004] veth0_macvtap: entered promiscuous mode
[  475.316900][T10004] veth1_macvtap: entered promiscuous mode
[  475.358828][T10004] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  475.369370][T10004] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.379235][T10004] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  475.389820][T10004] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.399947][T10004] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  475.410760][T10004] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.420660][T10004] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  475.431114][T10004] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.440981][T10004] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  475.443816][T10715] siw: device registration error -23
[  475.451676][T10004] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.466902][T10004] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  475.477422][T10004] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.487307][T10004] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  475.497771][T10004] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.507723][T10004] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  475.518196][T10004] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.573421][T10004] batman_adv: batadv0: Interface activated: batadv_slave_0
[  475.584140][T10004] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  475.594693][T10004] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.604641][T10004] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  475.615114][T10004] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.624988][T10004] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  475.635515][T10004] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.645540][T10004] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  475.655991][T10004] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.665863][T10004] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  475.676458][T10004] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.686299][T10004] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  475.696758][T10004] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.705479][T10724] loop3: detected capacity change from 0 to 128
[  475.706588][T10004] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  475.706615][T10004] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.706633][T10004] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  475.706650][T10004] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.709488][T10004] batman_adv: batadv0: Interface activated: batadv_slave_1
[  475.771803][T10724] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  475.786898][T10004] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  475.795650][T10004] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  475.804432][T10004] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  475.813237][T10004] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  475.824986][T10724] ext4 filesystem being mounted at /58/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  475.940144][T10752] loop4: detected capacity change from 0 to 128
[  475.978082][T10752] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  476.045854][T10752] ext4 filesystem being mounted at /29/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  476.056748][ T6595] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  476.114186][ T8893] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  476.173662][T10733] loop1: detected capacity change from 0 to 128
[  476.182908][T10802] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  476.182908][T10802]    program syz.4.6935 not setting count and/or reply_len properly
[  476.203475][T10733] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  476.248082][T10733] ext4 filesystem being mounted at /97/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  476.273981][T10811] loop3: detected capacity change from 0 to 1024
[  476.281053][T10811] EXT4-fs: Ignoring removed oldalloc option
[  476.343612][T10816] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6936'.
[  476.354851][T10817] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(13)
[  476.361493][T10817] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  476.369184][T10817] vhci_hcd vhci_hcd.0: Device attached
[  476.376256][T10818] vhci_hcd: connection closed
[  476.376602][T10811] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  476.395680][T17863] vhci_hcd: stop threads
[  476.400037][T17863] vhci_hcd: release socket
[  476.404463][T17863] vhci_hcd: disconnect device
[  476.421658][ T5714] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  476.523026][T10835] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=10835 comm=syz.1.6941
[  476.605673][T10836] loop1: detected capacity change from 0 to 1024
[  476.615027][T10836] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  476.633119][T10836] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  476.642088][T10836] EXT4-fs (loop1): orphan cleanup on readonly fs
[  476.650028][T10836] EXT4-fs error (device loop1): ext4_free_blocks:6590: comm syz.1.6941: Freeing blocks not in datazone - block = 0, count = 4096
[  476.664509][T10836] EXT4-fs (loop1): 1 orphan inode deleted
[  476.672238][T10836] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  476.690154][T10836] EXT4-fs error (device loop1): ext4_readdir:261: inode #2: block 16: comm syz.1.6941: path /100/file1: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  476.712319][T10836] EXT4-fs error (device loop1): ext4_readdir:261: inode #2: block 17: comm syz.1.6941: path /100/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  476.736034][T10836] EXT4-fs error (device loop1): ext4_readdir:261: inode #2: block 18: comm syz.1.6941: path /100/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  476.758778][T10836] EXT4-fs error (device loop1): ext4_readdir:261: inode #2: block 19: comm syz.1.6941: path /100/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  476.784236][T10839] EXT4-fs error (device loop1): ext4_search_dir:1505: inode #2: block 16: comm syz.1.6941: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  476.806749][T10836] EXT4-fs error (device loop1): ext4_readdir:261: inode #2: block 20: comm syz.1.6941: path /100/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  476.827431][T10836] EXT4-fs error (device loop1): ext4_readdir:261: inode #2: block 21: comm syz.1.6941: path /100/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  476.848798][T10836] EXT4-fs error (device loop1): ext4_readdir:261: inode #2: block 22: comm syz.1.6941: path /100/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  476.872118][T10836] EXT4-fs error (device loop1): ext4_readdir:261: inode #2: block 23: comm syz.1.6941: path /100/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  476.965386][T10845] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=10845 comm=syz.4.6943
[  477.020833][T10841] loop0: detected capacity change from 0 to 128
[  477.038386][T10841] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  477.044408][T10855] loop4: detected capacity change from 0 to 1024
[  477.057254][T10841] ext4 filesystem being mounted at /2/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  477.061882][T10855] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  477.081217][T10855] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  477.083666][T10860] loop2: detected capacity change from 0 to 128
[  477.096651][T10855] EXT4-fs (loop4): orphan cleanup on readonly fs
[  477.103139][T10855] EXT4-fs error (device loop4): ext4_free_blocks:6590: comm syz.4.6943: Freeing blocks not in datazone - block = 0, count = 4096
[  477.127063][T10855] EXT4-fs (loop4): 1 orphan inode deleted
[  477.133517][ T6595] EXT4-fs error (device loop3): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /60/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  477.156012][T10855] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  477.162622][ T6595] EXT4-fs error (device loop3): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  477.179847][T10855] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 16: comm syz.4.6943: path /33/file1: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  477.190366][ T6595] EXT4-fs warning (device loop3): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  477.211733][T10860] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  477.219984][T10004] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  477.234697][T10855] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 17: comm syz.4.6943: path /33/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  477.240003][ T6595] EXT4-fs error (device loop3): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /60/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  477.260996][T10860] ext4 filesystem being mounted at /33/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  477.283163][ T6595] EXT4-fs error (device loop3): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  477.312328][T10855] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 18: comm syz.4.6943: path /33/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  477.313806][ T6595] EXT4-fs warning (device loop3): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  477.346314][T10865] EXT4-fs error (device loop4): ext4_search_dir:1505: inode #2: block 16: comm syz.4.6943: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  477.351151][ T6595] EXT4-fs error (device loop3): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /60/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  477.382860][T10855] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 19: comm syz.4.6943: path /33/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  477.412396][T10855] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 20: comm syz.4.6943: path /33/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  477.414166][T10867] siw: device registration error -23
[  477.441437][ T6595] EXT4-fs error (device loop3): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  477.467874][T10855] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 21: comm syz.4.6943: path /33/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  477.488851][T10855] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 22: comm syz.4.6943: path /33/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  477.492564][ T6595] EXT4-fs warning (device loop3): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  477.522188][T10855] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 23: comm syz.4.6943: path /33/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  477.529438][ T6595] EXT4-fs error (device loop3): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /60/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  477.576183][ T6595] EXT4-fs error (device loop3): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  477.576819][T10877] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  477.576819][T10877]    program syz.1.6948 not setting count and/or reply_len properly
[  477.602531][T10872] loop0: detected capacity change from 0 to 1024
[  477.631337][T10872] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  477.650210][ T6595] EXT4-fs warning (device loop3): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  477.661960][ T6595] EXT4-fs error (device loop3): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /60/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  477.675929][T10872] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  477.684938][ T6595] EXT4-fs error (device loop3): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  477.696752][T10872] EXT4-fs (loop0): orphan cleanup on readonly fs
[  477.718239][T10872] EXT4-fs error (device loop0): ext4_free_blocks:6590: comm syz.0.6949: Freeing blocks not in datazone - block = 0, count = 4096
[  477.732963][T10872] EXT4-fs (loop0): 1 orphan inode deleted
[  477.733613][ T6595] EXT4-fs warning (device loop3): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  477.752678][ T6595] EXT4-fs warning (device loop3): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  477.764573][T10872] EXT4-fs error (device loop0): ext4_readdir:261: inode #2: block 16: comm syz.0.6949: path /4/file1: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  477.767273][T10893] netlink: 132 bytes leftover after parsing attributes in process `syz.2.6947'.
[  477.795134][ T6595] EXT4-fs warning (device loop3): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  477.806659][T10872] EXT4-fs error (device loop0): ext4_readdir:261: inode #2: block 17: comm syz.0.6949: path /4/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  477.808492][T10872] EXT4-fs error (device loop0): ext4_readdir:261: inode #2: block 18: comm syz.0.6949: path /4/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  477.835533][ T6595] EXT4-fs warning (device loop3): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  477.853155][T10895] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6951'.
[  477.861257][T10872] EXT4-fs error (device loop0): ext4_readdir:261: inode #2: block 19: comm syz.0.6949: path /4/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  477.899403][ T6595] EXT4-fs warning (device loop3): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  477.914384][ T6595] EXT4-fs warning (device loop3): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  477.922877][T10872] EXT4-fs error (device loop0): ext4_readdir:261: inode #2: block 20: comm syz.0.6949: path /4/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  477.946839][T10894] EXT4-fs error (device loop0): ext4_search_dir:1505: inode #2: block 16: comm syz.0.6949: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  477.966469][T10872] EXT4-fs error (device loop0): ext4_readdir:261: inode #2: block 21: comm syz.0.6949: path /4/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  477.987789][T10872] EXT4-fs error (device loop0): ext4_readdir:261: inode #2: block 22: comm syz.0.6949: path /4/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  478.010738][T10872] EXT4-fs error (device loop0): ext4_readdir:261: inode #2: block 23: comm syz.0.6949: path /4/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  478.066336][T10911] FAULT_INJECTION: forcing a failure.
[  478.066336][T10911] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  478.079587][T10911] CPU: 1 UID: 0 PID: 10911 Comm: syz.0.6953 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  478.091521][T10911] Tainted: [W]=WARN
[  478.095319][T10911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  478.105396][T10911] Call Trace:
[  478.108690][T10911]  <TASK>
[  478.111645][T10911]  dump_stack_lvl+0xf2/0x150
[  478.116287][T10911]  dump_stack+0x15/0x20
[  478.120559][T10911]  should_fail_ex+0x229/0x230
[  478.125239][T10911]  should_fail+0xb/0x10
[  478.129392][T10911]  should_fail_usercopy+0x1a/0x20
[  478.134428][T10911]  _copy_to_user+0x1e/0xa0
[  478.138905][T10911]  simple_read_from_buffer+0xa0/0x110
[  478.144312][T10911]  proc_fail_nth_read+0xf9/0x140
[  478.149267][T10911]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  478.154830][T10911]  vfs_read+0x195/0x720
[  478.158997][T10911]  ? __rcu_read_unlock+0x4e/0x70
[  478.164012][T10911]  ? __fget_files+0x1d4/0x210
[  478.168722][T10911]  ksys_read+0xeb/0x1b0
[  478.172916][T10911]  __x64_sys_read+0x42/0x50
[  478.177430][T10911]  x64_sys_call+0x27d3/0x2d60
[  478.182158][T10911]  do_syscall_64+0xc9/0x1c0
[  478.186664][T10911]  ? clear_bhb_loop+0x55/0xb0
[  478.191412][T10911]  ? clear_bhb_loop+0x55/0xb0
[  478.196141][T10911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  478.202045][T10911] RIP: 0033:0x7f16cec2c93c
[  478.206478][T10911] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  478.226106][T10911] RSP: 002b:00007f16cd8a1030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  478.234631][T10911] RAX: ffffffffffffffda RBX: 00007f16cede5f80 RCX: 00007f16cec2c93c
[  478.242672][T10911] RDX: 000000000000000f RSI: 00007f16cd8a10a0 RDI: 0000000000000008
[  478.250647][T10911] RBP: 00007f16cd8a1090 R08: 0000000000000000 R09: 0000000000000000
[  478.258804][T10911] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  478.266801][T10911] R13: 0000000000000000 R14: 00007f16cede5f80 R15: 00007fffe47b15e8
[  478.274811][T10911]  </TASK>
[  478.295312][T10914] loop0: detected capacity change from 0 to 128
[  478.324629][T10920] loop0: detected capacity change from 0 to 1024
[  478.332197][T10920] EXT4-fs: Ignoring removed oldalloc option
[  478.460937][   T28] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  478.530119][   T28] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  478.597645][   T28] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  478.643800][T10932] lo speed is unknown, defaulting to 1000
[  478.727932][   T28] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  478.945633][T11070] tipc: Failed to remove unknown binding: 66,1,1/0:3241401038/3241401040
[  478.954244][T11070] tipc: Failed to remove unknown binding: 66,1,1/0:3241401038/3241401040
[  478.970075][   T28] bridge_slave_1: left allmulticast mode
[  478.975765][   T28] bridge_slave_1: left promiscuous mode
[  478.981565][   T28] bridge0: port 2(bridge_slave_1) entered disabled state
[  478.993658][   T28] bridge_slave_0: left allmulticast mode
[  478.999390][   T28] bridge_slave_0: left promiscuous mode
[  479.005062][   T28] bridge0: port 1(bridge_slave_0) entered disabled state
[  479.120160][   T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  479.131307][   T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  479.140755][   T29] kauditd_printk_skb: 410 callbacks suppressed
[  479.140773][   T29] audit: type=1326 audit(1726856234.973:15483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10981 comm="syz.1.6962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  479.145902][T11078] loop1: detected capacity change from 0 to 128
[  479.147130][   T29] audit: type=1326 audit(1726856234.973:15484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10981 comm="syz.1.6962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  479.147287][   T29] audit: type=1326 audit(1726856234.973:15485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10981 comm="syz.1.6962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  479.185325][T10004] EXT4-fs error (device loop0): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /7/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  479.202216][   T29] audit: type=1326 audit(1726856234.973:15486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10981 comm="syz.1.6962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=137 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  479.228871][T10004] EXT4-fs error (device loop0): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  479.246898][   T29] audit: type=1326 audit(1726856234.973:15487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10981 comm="syz.1.6962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  479.246934][   T29] audit: type=1326 audit(1726856234.973:15488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10981 comm="syz.1.6962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  479.284296][T10004] EXT4-fs warning (device loop0): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  479.290399][   T29] audit: type=1326 audit(1726856234.973:15489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10981 comm="syz.1.6962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  479.317309][T10004] EXT4-fs error (device loop0): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /7/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  479.338631][   T29] audit: type=1326 audit(1726856234.973:15490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10981 comm="syz.1.6962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  479.353589][T10004] EXT4-fs error (device loop0): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  479.373900][   T29] audit: type=1326 audit(1726856234.973:15491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10981 comm="syz.1.6962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  479.397533][T10004] EXT4-fs warning (device loop0): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  479.418496][   T29] audit: type=1326 audit(1726856234.973:15492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10981 comm="syz.1.6962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  479.437987][T10004] EXT4-fs error (device loop0): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /7/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  479.479371][T11078] ext4 filesystem being mounted at /106/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  479.524199][T10004] EXT4-fs error (device loop0): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  479.564369][T10004] EXT4-fs warning (device loop0): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  479.577790][   T28] bond0 (unregistering): Released all slaves
[  479.580839][T10004] EXT4-fs error (device loop0): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /7/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  479.605568][T10004] EXT4-fs error (device loop0): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  479.631726][T10932] chnl_net:caif_netlink_parms(): no params data found
[  479.636664][T10004] EXT4-fs warning (device loop0): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  479.654805][T10004] EXT4-fs error (device loop0): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /7/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  479.688091][T10004] EXT4-fs error (device loop0): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  479.708714][T10004] EXT4-fs warning (device loop0): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  479.721014][T10004] EXT4-fs warning (device loop0): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  479.732950][T11086] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6968'.
[  479.742662][T11086] netlink: 44 bytes leftover after parsing attributes in process `syz.4.6968'.
[  479.744848][T10004] EXT4-fs warning (device loop0): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  479.754761][T11086] bridge1: the hash_elasticity option has been deprecated and is always 16
[  479.769941][T10004] EXT4-fs warning (device loop0): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  479.800714][T10004] EXT4-fs warning (device loop0): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  479.817357][T10004] EXT4-fs warning (device loop0): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  479.842677][   T28] hsr_slave_0: left promiscuous mode
[  479.861076][   T28] hsr_slave_1: left promiscuous mode
[  479.878209][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  479.885805][   T28] batman_adv: batadv0: Removing interface: batadv_slave_0
[  479.910046][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  479.918392][   T28] batman_adv: batadv0: Removing interface: batadv_slave_1
[  479.919037][T11143] Cannot find add_set index 0 as target
[  479.938646][   T28] veth1_macvtap: left promiscuous mode
[  479.944306][   T28] veth0_macvtap: left promiscuous mode
[  479.950544][   T28] veth1_vlan: left promiscuous mode
[  479.955857][   T28] veth0_vlan: left promiscuous mode
[  480.063739][T11166] FAULT_INJECTION: forcing a failure.
[  480.063739][T11166] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  480.077047][T11166] CPU: 1 UID: 0 PID: 11166 Comm: syz.2.6976 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  480.089060][T11166] Tainted: [W]=WARN
[  480.092879][T11166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  480.102967][T11166] Call Trace:
[  480.106262][T11166]  <TASK>
[  480.109211][T11166]  dump_stack_lvl+0xf2/0x150
[  480.114095][T11166]  dump_stack+0x15/0x20
[  480.118276][T11166]  should_fail_ex+0x229/0x230
[  480.122967][T11166]  should_fail+0xb/0x10
[  480.127184][T11166]  should_fail_usercopy+0x1a/0x20
[  480.132223][T11166]  _copy_from_user+0x1e/0xd0
[  480.136945][T11166]  do_ipv6_setsockopt+0x1ef/0x2250
[  480.142071][T11166]  ? __rcu_read_unlock+0x4e/0x70
[  480.147109][T11166]  ? avc_has_perm_noaudit+0x1cc/0x210
[  480.152513][T11166]  ? selinux_netlbl_socket_setsockopt+0xe5/0x2d0
[  480.158932][T11166]  ipv6_setsockopt+0x57/0x130
[  480.163625][T11166]  udpv6_setsockopt+0x95/0xb0
[  480.168348][T11166]  sock_common_setsockopt+0x64/0x80
[  480.173595][T11166]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  480.179508][T11166]  __sys_setsockopt+0x1cc/0x240
[  480.184380][T11166]  __x64_sys_setsockopt+0x66/0x80
[  480.189490][T11166]  x64_sys_call+0x278d/0x2d60
[  480.194273][T11166]  do_syscall_64+0xc9/0x1c0
[  480.198859][T11166]  ? clear_bhb_loop+0x55/0xb0
[  480.203715][T11166]  ? clear_bhb_loop+0x55/0xb0
[  480.208437][T11166]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  480.214427][T11166] RIP: 0033:0x7fdaca1cdef9
[  480.218849][T11166] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  480.238657][T11166] RSP: 002b:00007fdac8e47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  480.247128][T11166] RAX: ffffffffffffffda RBX: 00007fdaca385f80 RCX: 00007fdaca1cdef9
[  480.255115][T11166] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000004
[  480.263114][T11166] RBP: 00007fdac8e47090 R08: 00000000000004b8 R09: 0000000000000000
[  480.271094][T11166] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  480.279073][T11166] R13: 0000000000000000 R14: 00007fdaca385f80 R15: 00007ffcfc746738
[  480.287056][T11166]  </TASK>
[  480.315331][   T28] team0 (unregistering): Port device team_slave_1 removed
[  480.325664][   T28] team0 (unregistering): Port device team_slave_0 removed
[  480.377901][T11153] IPv6: NLM_F_CREATE should be specified when creating new route
[  480.405523][T10932] bridge0: port 1(bridge_slave_0) entered blocking state
[  480.410636][T11198] Cannot find add_set index 0 as target
[  480.412685][T10932] bridge0: port 1(bridge_slave_0) entered disabled state
[  480.425407][T10932] bridge_slave_0: entered allmulticast mode
[  480.432223][T10932] bridge_slave_0: entered promiscuous mode
[  480.439459][T10932] bridge0: port 2(bridge_slave_1) entered blocking state
[  480.446717][T10932] bridge0: port 2(bridge_slave_1) entered disabled state
[  480.454085][T10932] bridge_slave_1: entered allmulticast mode
[  480.461222][T10932] bridge_slave_1: entered promiscuous mode
[  480.482505][T10932] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  480.493275][T10932] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  480.515882][T10932] team0: Port device team_slave_0 added
[  480.522847][T10932] team0: Port device team_slave_1 added
[  480.544931][T10932] batman_adv: batadv0: Adding interface: batadv_slave_0
[  480.552068][T10932] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  480.578041][T10932] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  480.592005][T10932] batman_adv: batadv0: Adding interface: batadv_slave_1
[  480.599073][T10932] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  480.625749][T10932] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  480.670038][T10932] hsr_slave_0: entered promiscuous mode
[  480.676602][T10932] hsr_slave_1: entered promiscuous mode
[  480.682713][T10932] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  480.694524][T10932] Cannot create hsr debugfs directory
[  480.875445][   T28] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  480.908390][T11300] lo speed is unknown, defaulting to 1000
[  480.962845][T11421] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  480.962845][T11421]    program syz.1.6984 not setting count and/or reply_len properly
[  480.992846][   T28] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  481.052506][   T28] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  481.090974][T11449] loop1: detected capacity change from 0 to 128
[  481.167831][   T28] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  481.250716][T11439] loop4: detected capacity change from 0 to 128
[  481.254287][T10932] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  481.279720][T11300] chnl_net:caif_netlink_parms(): no params data found
[  481.292535][T11576] loop2: detected capacity change from 0 to 2048
[  481.304052][T11439] ext4 filesystem being mounted at /44/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  481.311674][T10932] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  481.327231][T10932] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  481.351798][T10932] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  481.359059][T11576] EXT4-fs error (device loop2): ext4_find_extent:936: inode #2: comm syz.2.6991: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  481.440293][T11620] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  481.440293][T11620]    program syz.2.6993 not setting count and/or reply_len properly
[  481.486113][   T28] bridge_slave_1: left allmulticast mode
[  481.492657][   T28] bridge_slave_1: left promiscuous mode
[  481.498494][   T28] bridge0: port 2(bridge_slave_1) entered disabled state
[  481.506650][   T28] bridge_slave_0: left allmulticast mode
[  481.512395][   T28] bridge_slave_0: left promiscuous mode
[  481.518869][   T28] bridge0: port 1(bridge_slave_0) entered disabled state
[  481.535591][T11631] loop2: detected capacity change from 0 to 1024
[  481.544403][T11631] EXT4-fs: Ignoring removed i_version option
[  481.545158][T11637] loop1: detected capacity change from 0 to 164
[  481.556460][T11631] EXT4-fs: Ignoring removed bh option
[  481.564248][T11637] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  481.573477][T11631] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  481.591575][T11640] loop4: detected capacity change from 0 to 2048
[  481.598901][T11631] EXT4-fs warning (device loop2): ext4_enable_quotas:7066: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  481.613646][T11631] EXT4-fs (loop2): mount failed
[  481.632039][T11640] EXT4-fs error (device loop4): ext4_find_extent:936: inode #2: comm syz.4.6994: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  481.676066][T11649] siw: device registration error -23
[  481.690388][   T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  481.705066][   T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  481.716549][   T28] bond0 (unregistering): Released all slaves
[  481.741021][T11658] loop2: detected capacity change from 0 to 512
[  481.784283][T11658] ext4 filesystem being mounted at /51/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  481.806123][T11300] bridge0: port 1(bridge_slave_0) entered blocking state
[  481.813333][T11300] bridge0: port 1(bridge_slave_0) entered disabled state
[  481.826385][T11658] EXT4-fs error (device loop2): ext4_do_update_inode:5151: inode #2: comm syz.2.6999: corrupted inode contents
[  481.833068][T11300] bridge_slave_0: entered allmulticast mode
[  481.850317][T11300] bridge_slave_0: entered promiscuous mode
[  481.860291][T11658] EXT4-fs error (device loop2): ext4_dirty_inode:6011: inode #2: comm syz.2.6999: mark_inode_dirty error
[  481.860598][T11700] loop4: detected capacity change from 0 to 164
[  481.874816][T11658] EXT4-fs error (device loop2): ext4_do_update_inode:5151: inode #2: comm syz.2.6999: corrupted inode contents
[  481.903146][T11700] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  481.940177][   T28] hsr_slave_0: left promiscuous mode
[  481.954902][   T28] hsr_slave_1: left promiscuous mode
[  481.961355][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  481.963845][T11713] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  481.963845][T11713]    program syz.2.7003 not setting count and/or reply_len properly
[  481.969703][   T28] batman_adv: batadv0: Removing interface: batadv_slave_0
[  481.998663][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  482.006100][   T28] batman_adv: batadv0: Removing interface: batadv_slave_1
[  482.020903][   T28] veth1_macvtap: left promiscuous mode
[  482.026464][   T28] veth0_macvtap: left promiscuous mode
[  482.032014][   T28] veth1_vlan: left promiscuous mode
[  482.037336][   T28] veth0_vlan: left promiscuous mode
[  482.133879][   T28] team0 (unregistering): Port device team_slave_1 removed
[  482.145003][   T28] team0 (unregistering): Port device team_slave_0 removed
[  482.188641][T11300] bridge0: port 2(bridge_slave_1) entered blocking state
[  482.195734][T11300] bridge0: port 2(bridge_slave_1) entered disabled state
[  482.203159][T11300] bridge_slave_1: entered allmulticast mode
[  482.210963][T11300] bridge_slave_1: entered promiscuous mode
[  482.238867][T11718] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7004'.
[  482.271216][T11300] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  482.285153][T11300] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  482.323310][T11300] team0: Port device team_slave_0 added
[  482.339081][T11300] team0: Port device team_slave_1 added
[  482.354773][T11780] loop1: detected capacity change from 0 to 1024
[  482.368722][T11780] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities
[  482.396142][T11789] loop4: detected capacity change from 0 to 512
[  482.409132][T11789] EXT4-fs: Ignoring removed oldalloc option
[  482.419616][T11300] batman_adv: batadv0: Adding interface: batadv_slave_0
[  482.425596][T11780] loop1: detected capacity change from 0 to 4096
[  482.426622][T11300] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  482.459556][T11300] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  482.477240][T10932] 8021q: adding VLAN 0 to HW filter on device bond0
[  482.498958][T11789] EXT4-fs (loop4): failed to open journal device unknown-block(0,0) -6
[  482.512652][T11300] batman_adv: batadv0: Adding interface: batadv_slave_1
[  482.519871][T11300] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  482.545810][T11300] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  482.569320][T11789] siw: device registration error -23
[  482.591600][T10932] 8021q: adding VLAN 0 to HW filter on device team0
[  482.605114][T11780] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  482.617078][T17852] bridge0: port 1(bridge_slave_0) entered blocking state
[  482.624164][T17852] bridge0: port 1(bridge_slave_0) entered forwarding state
[  482.669783][T11300] hsr_slave_0: entered promiscuous mode
[  482.678760][T11300] hsr_slave_1: entered promiscuous mode
[  482.691431][T11300] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  482.702333][T11300] Cannot create hsr debugfs directory
[  482.721818][T17852] bridge0: port 2(bridge_slave_1) entered blocking state
[  482.729108][T17852] bridge0: port 2(bridge_slave_1) entered forwarding state
[  482.769168][T10932] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  482.790731][T11902] FAULT_INJECTION: forcing a failure.
[  482.790731][T11902] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  482.804259][T11902] CPU: 1 UID: 0 PID: 11902 Comm: syz.4.7012 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  482.816261][T11902] Tainted: [W]=WARN
[  482.820091][T11902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  482.830251][T11902] Call Trace:
[  482.833598][T11902]  <TASK>
[  482.836533][T11902]  dump_stack_lvl+0xf2/0x150
[  482.841243][T11902]  dump_stack+0x15/0x20
[  482.845457][T11902]  should_fail_ex+0x229/0x230
[  482.850194][T11902]  should_fail+0xb/0x10
[  482.854374][T11902]  should_fail_usercopy+0x1a/0x20
[  482.859506][T11902]  _copy_from_user+0x1e/0xd0
[  482.864142][T11902]  copy_msghdr_from_user+0x54/0x2a0
[  482.869444][T11902]  __sys_sendmmsg+0x21e/0x500
[  482.874209][T11902]  __x64_sys_sendmmsg+0x57/0x70
[  482.879187][T11902]  x64_sys_call+0xa49/0x2d60
[  482.883790][T11902]  do_syscall_64+0xc9/0x1c0
[  482.888398][T11902]  ? clear_bhb_loop+0x55/0xb0
[  482.893183][T11902]  ? clear_bhb_loop+0x55/0xb0
[  482.897885][T11902]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  482.903956][T11902] RIP: 0033:0x7fd53d12def9
[  482.908532][T11902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  482.928370][T11902] RSP: 002b:00007fd53bda1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  482.936829][T11902] RAX: ffffffffffffffda RBX: 00007fd53d2e5f80 RCX: 00007fd53d12def9
[  482.944823][T11902] RDX: 040000000000009f RSI: 00000000200002c0 RDI: 0000000000000004
[  482.952798][T11902] RBP: 00007fd53bda1090 R08: 0000000000000000 R09: 0000000000000000
[  482.960792][T11902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  482.968889][T11902] R13: 0000000000000000 R14: 00007fd53d2e5f80 R15: 00007ffcfa876388
[  482.976970][T11902]  </TASK>
[  483.022655][T11911] FAULT_INJECTION: forcing a failure.
[  483.022655][T11911] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  483.035847][T11911] CPU: 0 UID: 0 PID: 11911 Comm: syz.4.7014 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  483.047845][T11911] Tainted: [W]=WARN
[  483.051663][T11911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  483.061815][T11911] Call Trace:
[  483.065277][T11911]  <TASK>
[  483.068206][T11911]  dump_stack_lvl+0xf2/0x150
[  483.072822][T11911]  dump_stack+0x15/0x20
[  483.077053][T11911]  should_fail_ex+0x229/0x230
[  483.081730][T11911]  should_fail+0xb/0x10
[  483.085885][T11911]  should_fail_usercopy+0x1a/0x20
[  483.090926][T11911]  _copy_from_user+0x1e/0xd0
[  483.095524][T11911]  copy_msghdr_from_user+0x54/0x2a0
[  483.100729][T11911]  do_recvmmsg+0x284/0x710
[  483.105250][T11911]  __x64_sys_recvmmsg+0xe2/0x170
[  483.110229][T11911]  x64_sys_call+0x26e3/0x2d60
[  483.114973][T11911]  do_syscall_64+0xc9/0x1c0
[  483.119500][T11911]  ? clear_bhb_loop+0x55/0xb0
[  483.124182][T11911]  ? clear_bhb_loop+0x55/0xb0
[  483.128865][T11911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  483.134834][T11911] RIP: 0033:0x7fd53d12def9
[  483.139331][T11911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  483.159078][T11911] RSP: 002b:00007fd53bda1038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  483.167492][T11911] RAX: ffffffffffffffda RBX: 00007fd53d2e5f80 RCX: 00007fd53d12def9
[  483.175494][T11911] RDX: 0000000000000001 RSI: 0000000020000bc0 RDI: 0000000000000008
[  483.183533][T11911] RBP: 00007fd53bda1090 R08: 0000000000000000 R09: 0000000000000000
[  483.192123][T11911] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  483.200098][T11911] R13: 0000000000000000 R14: 00007fd53d2e5f80 R15: 00007ffcfa876388
[  483.208495][T11911]  </TASK>
[  483.261285][T11945] siw: device registration error -23
[  483.310804][T10932] 8021q: adding VLAN 0 to HW filter on device batadv0
[  483.328089][T11972] loop2: detected capacity change from 0 to 256
[  483.375669][T11972] FAULT_INJECTION: forcing a failure.
[  483.375669][T11972] name failslab, interval 1, probability 0, space 0, times 0
[  483.388399][T11972] CPU: 1 UID: 0 PID: 11972 Comm: syz.2.7018 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  483.400377][T11972] Tainted: [W]=WARN
[  483.404198][T11972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  483.414280][T11972] Call Trace:
[  483.417575][T11972]  <TASK>
[  483.420522][T11972]  dump_stack_lvl+0xf2/0x150
[  483.425194][T11972]  dump_stack+0x15/0x20
[  483.429431][T11972]  should_fail_ex+0x229/0x230
[  483.434133][T11972]  ? alloc_pipe_info+0xb0/0x360
[  483.439023][T11972]  should_failslab+0x8f/0xb0
[  483.443649][T11972]  __kmalloc_cache_noprof+0x4b/0x2a0
[  483.448968][T11972]  ? _parse_integer+0x27/0x30
[  483.453910][T11972]  alloc_pipe_info+0xb0/0x360
[  483.458669][T11972]  splice_direct_to_actor+0x60f/0x670
[  483.464095][T11972]  ? kstrtouint_from_user+0xb0/0xe0
[  483.469309][T11972]  ? __pfx_direct_splice_actor+0x10/0x10
[  483.475007][T11972]  ? 0xffffffff81000000
[  483.479171][T11972]  ? __rcu_read_unlock+0x4e/0x70
[  483.484117][T11972]  ? avc_policy_seqno+0x15/0x20
[  483.488992][T11972]  ? selinux_file_permission+0x22a/0x360
[  483.494651][T11972]  do_splice_direct+0xd7/0x150
[  483.499490][T11972]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  483.505389][T11972]  do_sendfile+0x39b/0x970
[  483.509829][T11972]  __x64_sys_sendfile64+0x110/0x150
[  483.515152][T11972]  x64_sys_call+0xed5/0x2d60
[  483.519788][T11972]  do_syscall_64+0xc9/0x1c0
[  483.524294][T11972]  ? clear_bhb_loop+0x55/0xb0
[  483.528982][T11972]  ? clear_bhb_loop+0x55/0xb0
[  483.533695][T11972]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  483.539663][T11972] RIP: 0033:0x7fdaca1cdef9
[  483.544120][T11972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  483.563808][T11972] RSP: 002b:00007fdac8e47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  483.572225][T11972] RAX: ffffffffffffffda RBX: 00007fdaca385f80 RCX: 00007fdaca1cdef9
[  483.580208][T11972] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006
[  483.588213][T11972] RBP: 00007fdac8e47090 R08: 0000000000000000 R09: 0000000000000000
[  483.596206][T11972] R10: 000000000000e066 R11: 0000000000000246 R12: 0000000000000001
[  483.604179][T11972] R13: 0000000000000000 R14: 00007fdaca385f80 R15: 00007ffcfc746738
[  483.612254][T11972]  </TASK>
[  483.620262][T11993] 9pnet_fd: p9_fd_create_tcp (11993): problem connecting socket to 127.0.0.1
[  483.634452][T11993] loop1: detected capacity change from 0 to 256
[  483.769472][T10932] veth0_vlan: entered promiscuous mode
[  483.815698][T10932] veth1_vlan: entered promiscuous mode
[  483.842457][T10932] veth0_macvtap: entered promiscuous mode
[  483.852016][T12052] FAULT_INJECTION: forcing a failure.
[  483.852016][T12052] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  483.865250][T12052] CPU: 0 UID: 0 PID: 12052 Comm: syz.4.7025 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  483.877183][T12052] Tainted: [W]=WARN
[  483.881013][T12052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  483.891132][T12052] Call Trace:
[  483.894332][T10932] veth1_macvtap: entered promiscuous mode
[  483.894411][T12052]  <TASK>
[  483.903201][T12052]  dump_stack_lvl+0xf2/0x150
[  483.906941][T10932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  483.907822][T12052]  dump_stack+0x15/0x20
[  483.907859][T12052]  should_fail_ex+0x229/0x230
[  483.907883][T12052]  should_fail+0xb/0x10
[  483.918398][T10932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  483.922458][T12052]  should_fail_usercopy+0x1a/0x20
[  483.927138][T10932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  483.931292][T12052]  _copy_from_user+0x1e/0xd0
[  483.941208][T10932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  483.946191][T12052]  copy_msghdr_from_user+0x54/0x2a0
[  483.956614][T10932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  483.961153][T12052]  __sys_sendmsg+0x171/0x270
[  483.970979][T10932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  483.971020][T10932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  483.976211][T12052]  __x64_sys_sendmsg+0x46/0x50
[  483.986755][T10932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  483.991251][T12052]  x64_sys_call+0x2689/0x2d60
[  484.001275][T10932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  484.011642][T12052]  do_syscall_64+0xc9/0x1c0
[  484.016410][T10932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  484.026197][T12052]  ? clear_bhb_loop+0x55/0xb0
[  484.030889][T10932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  484.041358][T12052]  ? clear_bhb_loop+0x55/0xb0
[  484.041475][T12052]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  484.046121][T10932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  484.055902][T12052] RIP: 0033:0x7fd53d12def9
[  484.060622][T10932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  484.071093][T12052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  484.075761][T10932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  484.081632][T12052] RSP: 002b:00007fd53bda1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  484.081659][T12052] RAX: ffffffffffffffda RBX: 00007fd53d2e5f80 RCX: 00007fd53d12def9
[  484.152688][T12052] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000003
[  484.160826][T12052] RBP: 00007fd53bda1090 R08: 0000000000000000 R09: 0000000000000000
[  484.168958][T12052] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  484.176934][T12052] R13: 0000000000000000 R14: 00007fd53d2e5f80 R15: 00007ffcfa876388
[  484.184937][T12052]  </TASK>
[  484.196011][T10932] batman_adv: batadv0: Interface activated: batadv_slave_0
[  484.238851][T12061] FAULT_INJECTION: forcing a failure.
[  484.238851][T12061] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  484.252736][T12061] CPU: 0 UID: 0 PID: 12061 Comm: syz.4.7028 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  484.264696][T12061] Tainted: [W]=WARN
[  484.268501][T12061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  484.278648][T12061] Call Trace:
[  484.282016][T12061]  <TASK>
[  484.284941][T12061]  dump_stack_lvl+0xf2/0x150
[  484.289674][T12061]  dump_stack+0x15/0x20
[  484.294038][T12061]  should_fail_ex+0x229/0x230
[  484.298772][T12061]  should_fail+0xb/0x10
[  484.302936][T12061]  should_fail_usercopy+0x1a/0x20
[  484.308089][T12061]  _copy_from_user+0x1e/0xd0
[  484.312762][T12061]  do_ipv6_setsockopt+0x1ef/0x2250
[  484.317876][T12061]  ? __rcu_read_unlock+0x4e/0x70
[  484.322822][T12061]  ? avc_has_perm_noaudit+0x1cc/0x210
[  484.328208][T12061]  ? selinux_netlbl_socket_setsockopt+0xe5/0x2d0
[  484.334548][T12061]  ipv6_setsockopt+0x57/0x130
[  484.339260][T12061]  udpv6_setsockopt+0x95/0xb0
[  484.343945][T12061]  sock_common_setsockopt+0x64/0x80
[  484.349232][T12061]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  484.355131][T12061]  __sys_setsockopt+0x1cc/0x240
[  484.360167][T12061]  __x64_sys_setsockopt+0x66/0x80
[  484.365325][T12061]  x64_sys_call+0x278d/0x2d60
[  484.370078][T12061]  do_syscall_64+0xc9/0x1c0
[  484.374590][T12061]  ? clear_bhb_loop+0x55/0xb0
[  484.379316][T12061]  ? clear_bhb_loop+0x55/0xb0
[  484.384067][T12061]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  484.389979][T12061] RIP: 0033:0x7fd53d12def9
[  484.394396][T12061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  484.414130][T12061] RSP: 002b:00007fd53bda1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  484.422820][T12061] RAX: ffffffffffffffda RBX: 00007fd53d2e5f80 RCX: 00007fd53d12def9
[  484.430835][T12061] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000009
[  484.438831][T12061] RBP: 00007fd53bda1090 R08: 00000000000004b8 R09: 0000000000000000
[  484.446810][T12061] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  484.454786][T12061] R13: 0000000000000000 R14: 00007fd53d2e5f80 R15: 00007ffcfa876388
[  484.462923][T12061]  </TASK>
[  484.473247][T10932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  484.483782][T10932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  484.493700][T10932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  484.504997][T10932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  484.507785][T12065] loop2: detected capacity change from 0 to 512
[  484.514929][T10932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  484.532355][T10932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  484.542312][T10932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  484.552835][T10932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  484.563294][T10932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  484.573800][T10932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  484.583654][T10932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  484.594683][T10932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  484.604529][T10932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  484.615133][T10932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  484.627674][T10932] batman_adv: batadv0: Interface activated: batadv_slave_1
[  484.630247][T12065] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  484.650378][T10932] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  484.659677][T10932] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  484.665080][T12075] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7030'.
[  484.668544][T10932] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  484.686977][T10932] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  484.748662][T11300] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  484.767475][T12065] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  484.792754][T12065] EXT4-fs (loop2): 1 truncate cleaned up
[  484.799401][T11300] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  484.809721][T11300] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  484.848394][T11300] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  484.901043][   T29] kauditd_printk_skb: 194 callbacks suppressed
[  484.901062][   T29] audit: type=1326 audit(1726856240.733:15686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12111 comm="syz.1.7033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  484.939222][T11300] 8021q: adding VLAN 0 to HW filter on device bond0
[  484.951978][T12122] loop3: detected capacity change from 0 to 128
[  484.958634][T12124] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  484.958634][T12124]    program syz.2.7034 not setting count and/or reply_len properly
[  484.966468][   T29] audit: type=1326 audit(1726856240.733:15687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12111 comm="syz.1.7033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  484.989224][T11300] 8021q: adding VLAN 0 to HW filter on device team0
[  484.999224][   T29] audit: type=1326 audit(1726856240.733:15688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12111 comm="syz.1.7033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  485.024650][T17848] bridge0: port 1(bridge_slave_0) entered blocking state
[  485.029558][   T29] audit: type=1326 audit(1726856240.733:15689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12111 comm="syz.1.7033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  485.036552][T17848] bridge0: port 1(bridge_slave_0) entered forwarding state
[  485.067614][   T29] audit: type=1326 audit(1726856240.733:15690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12111 comm="syz.1.7033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  485.075149][T11300] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  485.091258][   T29] audit: type=1326 audit(1726856240.733:15691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12111 comm="syz.1.7033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  485.102344][T11300] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  485.125198][   T29] audit: type=1326 audit(1726856240.733:15692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12111 comm="syz.1.7033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  485.125232][   T29] audit: type=1326 audit(1726856240.733:15693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12111 comm="syz.1.7033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  485.154773][T17848] bridge0: port 2(bridge_slave_1) entered blocking state
[  485.159153][   T29] audit: type=1326 audit(1726856240.733:15694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12111 comm="syz.1.7033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  485.159183][   T29] audit: type=1326 audit(1726856240.733:15695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12111 comm="syz.1.7033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a6b14def9 code=0x7ffc0000
[  485.183011][T17848] bridge0: port 2(bridge_slave_1) entered forwarding state
[  485.289803][T12122] ext4 filesystem being mounted at /0/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  485.303304][T12135] loop4: detected capacity change from 0 to 512
[  485.370969][T12150] loop1: detected capacity change from 0 to 128
[  485.400944][T11300] 8021q: adding VLAN 0 to HW filter on device batadv0
[  485.410198][T12145] loop2: detected capacity change from 0 to 128
[  485.419188][T12135] ext4 filesystem being mounted at /61/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  485.555488][T12192] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(13)
[  485.562264][T12192] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  485.570878][T12192] vhci_hcd vhci_hcd.0: Device attached
[  485.584998][T12194] FAULT_INJECTION: forcing a failure.
[  485.584998][T12194] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  485.590460][T12193] vhci_hcd: connection closed
[  485.598153][T12194] CPU: 1 UID: 0 PID: 12194 Comm: syz.1.7043 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  485.598196][T12194] Tainted: [W]=WARN
[  485.598206][T12194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  485.598220][T12194] Call Trace:
[  485.598228][T12194]  <TASK>
[  485.598237][T12194]  dump_stack_lvl+0xf2/0x150
[  485.598298][T12194]  dump_stack+0x15/0x20
[  485.598345][T12194]  should_fail_ex+0x229/0x230
[  485.598375][T12194]  should_fail+0xb/0x10
[  485.598398][T12194]  should_fail_usercopy+0x1a/0x20
[  485.598428][T12194]  _copy_from_user+0x1e/0xd0
[  485.598558][T12194]  do_sock_getsockopt+0xd3/0x260
[  485.598600][T12194]  __sys_getsockopt+0x18e/0x200
[  485.598637][T12194]  __x64_sys_getsockopt+0x66/0x80
[  485.598727][T12194]  x64_sys_call+0x11cd/0x2d60
[  485.598761][T12194]  do_syscall_64+0xc9/0x1c0
[  485.598783][T12194]  ? clear_bhb_loop+0x55/0xb0
[  485.662837][T17852] vhci_hcd: stop threads
[  485.662851][T17852] vhci_hcd: release socket
[  485.667764][T12194]  ? clear_bhb_loop+0x55/0xb0
[  485.667813][T12194]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  485.667925][T12194] RIP: 0033:0x7f4a6b14def9
[  485.672772][T17852] vhci_hcd: disconnect device
[  485.691451][T12209] loop4: detected capacity change from 0 to 128
[  485.691637][T12194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  485.746151][T12194] RSP: 002b:00007f4a69dc1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  485.754626][T12194] RAX: ffffffffffffffda RBX: 00007f4a6b305f80 RCX: 00007f4a6b14def9
[  485.762609][T12194] RDX: 000000000000006f RSI: 0000000000000084 RDI: 0000000000000006
[  485.770643][T12194] RBP: 00007f4a69dc1090 R08: 0000000020000100 R09: 0000000000000000
[  485.778630][T12194] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000001
[  485.786671][T12194] R13: 0000000000000000 R14: 00007f4a6b305f80 R15: 00007ffe9e8a4af8
[  485.794926][T12194]  </TASK>
[  485.832708][T12216] loop1: detected capacity change from 0 to 128
[  485.901154][T12232] loop4: detected capacity change from 0 to 1024
[  485.918393][T11300] veth0_vlan: entered promiscuous mode
[  485.927786][T11300] veth1_vlan: entered promiscuous mode
[  485.944248][T11300] veth0_macvtap: entered promiscuous mode
[  485.952052][T11300] veth1_macvtap: entered promiscuous mode
[  485.963668][T11300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  485.966905][T12232] EXT4-fs: Ignoring removed oldalloc option
[  485.974151][T11300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  485.990618][T11300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  486.001129][T11300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.011154][T11300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  486.022455][T11300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.032516][T11300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  486.043013][T11300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.053716][T11300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  486.064186][T11300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.074250][T11300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  486.085378][T11300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.095302][T11300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  486.105864][T11300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.116382][T11300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  486.126879][T11300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.138475][T11300] batman_adv: batadv0: Interface activated: batadv_slave_0
[  486.149247][T11300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  486.159760][T11300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.170380][T11300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  486.180847][T11300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.190847][T11300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  486.202002][T11300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.211887][T11300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  486.222391][T11300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.233089][T11300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  486.243556][T11300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.253414][T11300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  486.264669][T11300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.274528][T11300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  486.285175][T11300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.295759][T11300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  486.306340][T11300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.318150][T11300] batman_adv: batadv0: Interface activated: batadv_slave_1
[  486.351758][T12265] FAULT_INJECTION: forcing a failure.
[  486.351758][T12265] name failslab, interval 1, probability 0, space 0, times 0
[  486.355519][T12262] siw: device registration error -23
[  486.364557][T12265] CPU: 0 UID: 0 PID: 12265 Comm: syz.2.7051 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  486.381772][T12265] Tainted: [W]=WARN
[  486.385644][T12265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  486.395735][T12265] Call Trace:
[  486.399037][T12265]  <TASK>
[  486.401978][T12265]  dump_stack_lvl+0xf2/0x150
[  486.406596][T12265]  dump_stack+0x15/0x20
[  486.410775][T12265]  should_fail_ex+0x229/0x230
[  486.415478][T12265]  ? dup_fd+0x4c/0x6c0
[  486.419595][T12265]  should_failslab+0x8f/0xb0
[  486.424270][T12265]  kmem_cache_alloc_noprof+0x4c/0x290
[  486.429718][T12265]  dup_fd+0x4c/0x6c0
[  486.433732][T12265]  ? _raw_spin_unlock+0x26/0x50
[  486.438614][T12265]  ksys_unshare+0x353/0x720
[  486.443151][T12265]  __x64_sys_unshare+0x1f/0x30
[  486.448029][T12265]  x64_sys_call+0x2c8d/0x2d60
[  486.452797][T12265]  do_syscall_64+0xc9/0x1c0
[  486.457331][T12265]  ? clear_bhb_loop+0x55/0xb0
[  486.462049][T12265]  ? clear_bhb_loop+0x55/0xb0
[  486.466799][T12265]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  486.472707][T12265] RIP: 0033:0x7fdaca1cdef9
[  486.477128][T12265] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  486.496927][T12265] RSP: 002b:00007fdac8e47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  486.505397][T12265] RAX: ffffffffffffffda RBX: 00007fdaca385f80 RCX: 00007fdaca1cdef9
[  486.513374][T12265] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000064000600
[  486.521350][T12265] RBP: 00007fdac8e47090 R08: 0000000000000000 R09: 0000000000000000
[  486.529516][T12265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  486.537502][T12265] R13: 0000000000000000 R14: 00007fdaca385f80 R15: 00007ffcfc746738
[  486.545575][T12265]  </TASK>
[  486.555568][T11300] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  486.564519][T11300] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  486.573363][T11300] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  486.582164][T11300] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  486.632658][T12272] loop2: detected capacity change from 0 to 128
[  486.667794][T12279] loop1: detected capacity change from 0 to 128
[  486.700245][T12279] ext4 filesystem being mounted at /130/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  486.733945][ T8893] EXT4-fs error (device loop4): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /64/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  486.763096][ T8893] EXT4-fs error (device loop4): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  486.816273][T12297] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6979'.
[  486.831839][ T8893] EXT4-fs warning (device loop4): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  486.843822][T12297] netlink: 76 bytes leftover after parsing attributes in process `syz.0.6979'.
[  486.856473][ T8893] EXT4-fs error (device loop4): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /64/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  486.892020][ T8893] EXT4-fs error (device loop4): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  486.914527][ T8893] EXT4-fs warning (device loop4): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  486.929249][ T8893] EXT4-fs error (device loop4): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /64/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  486.964481][T12305] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(14)
[  486.964764][ T8893] EXT4-fs error (device loop4): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  486.971161][T12305] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  486.971234][T12305] vhci_hcd vhci_hcd.0: Device attached
[  487.017112][ T8893] EXT4-fs warning (device loop4): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  487.038938][ T8893] EXT4-fs error (device loop4): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /64/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  487.063650][T12306] vhci_hcd: connection closed
[  487.063951][T17863] vhci_hcd: stop threads
[  487.072955][T17863] vhci_hcd: release socket
[  487.075138][T12310] loop3: detected capacity change from 0 to 128
[  487.077434][T17863] vhci_hcd: disconnect device
[  487.107556][ T8893] EXT4-fs error (device loop4): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  487.139889][ T8893] EXT4-fs warning (device loop4): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  487.156202][ T8893] EXT4-fs error (device loop4): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /64/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  487.178834][ T8893] EXT4-fs error (device loop4): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  487.184926][T12311] loop1: detected capacity change from 0 to 128
[  487.207160][T11989] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  487.214587][T11989] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  487.222079][T11989] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  487.229537][T11989] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  487.237048][T11989] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  487.244456][T11989] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  487.245221][ T8893] EXT4-fs warning (device loop4): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  487.251969][T11989] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  487.251998][T11989] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  487.278377][T11989] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  487.285883][T11989] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  487.293309][T11989] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  487.294973][ T8893] EXT4-fs warning (device loop4): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  487.303901][T12324] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  487.323975][T12324] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  487.333078][T12311] ext4 filesystem being mounted at /131/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  487.352741][ T8893] EXT4-fs warning (device loop4): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  487.367903][T11989] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  487.386747][ T8893] EXT4-fs warning (device loop4): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  487.433974][ T8893] EXT4-fs warning (device loop4): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  487.457354][ T8893] EXT4-fs warning (device loop4): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[  487.728755][T17852] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  487.798116][T12359] loop0: detected capacity change from 0 to 128
[  487.814648][T12359] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (39871!=39978)
[  487.838192][T17852] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  487.860396][T12359] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:406: inode #11: comm syz.0.7069: No space for directory leaf checksum. Please run e2fsck -D.
[  487.876650][T12359] EXT4-fs error (device loop0): __ext4_find_entry:1652: inode #11: comm syz.0.7069: checksumming directory block 0
[  487.931117][T12359] EXT4-fs error (device loop0): __ext4_find_entry:1652: inode #2: comm syz.0.7069: checksumming directory block 0
[  487.964805][T17852] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  488.117406][T17852] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  488.133429][T12387] tipc: Failed to remove unknown binding: 66,1,1/0:3692524914/3692524916
[  488.141947][T12387] tipc: Failed to remove unknown binding: 66,1,1/0:3692524914/3692524916
[  488.178309][T12361] lo speed is unknown, defaulting to 1000
[  488.317249][T17852] bridge_slave_1: left allmulticast mode
[  488.322979][T17852] bridge_slave_1: left promiscuous mode
[  488.328818][T17852] bridge0: port 2(bridge_slave_1) entered disabled state
[  488.334607][T12503] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7076'.
[  488.346219][T17852] bridge_slave_0: left allmulticast mode
[  488.351965][T17852] bridge_slave_0: left promiscuous mode
[  488.357953][T17852] bridge0: port 1(bridge_slave_0) entered disabled state
[  488.496504][T12506] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(14)
[  488.503316][T12506] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  488.510969][T12506] vhci_hcd vhci_hcd.0: Device attached
[  488.516490][T12505] loop3: detected capacity change from 0 to 128
[  488.527587][T12507] vhci_hcd: connection closed
[  488.529274][   T11] vhci_hcd: stop threads
[  488.538926][   T11] vhci_hcd: release socket
[  488.543353][   T11] vhci_hcd: disconnect device
[  488.552783][T12505] ext4 filesystem being mounted at /13/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  488.572663][T17852] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  488.583564][T17852] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  488.596718][T17852] bond0 (unregistering): Released all slaves
[  488.615225][T12503] netlink: 76 bytes leftover after parsing attributes in process `syz.1.7076'.
[  488.652108][T12361] chnl_net:caif_netlink_parms(): no params data found
[  488.683067][T17852] hsr_slave_0: left promiscuous mode
[  488.689424][T17852] hsr_slave_1: left promiscuous mode
[  488.695486][T17852] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  488.703021][T17852] batman_adv: batadv0: Removing interface: batadv_slave_0
[  488.726555][T13498] unregister_netdevice: waiting for vcan0 to become free. Usage count = 2
[  488.738673][T17852] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  488.746157][T17852] batman_adv: batadv0: Removing interface: batadv_slave_1
[  488.780421][T17852] veth1_macvtap: left promiscuous mode
[  488.785960][T17852] veth0_macvtap: left promiscuous mode
[  488.791699][T17852] veth1_vlan: left promiscuous mode
[  488.797155][T17852] veth0_vlan: left promiscuous mode
[  488.866335][T12529] loop3: detected capacity change from 0 to 128
[  488.932524][T12536] loop3: detected capacity change from 0 to 512
[  488.970296][T12536] ext4 filesystem being mounted at /16/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  488.987488][T12539] loop0: detected capacity change from 0 to 512
[  488.994344][T12536] EXT4-fs error (device loop3): ext4_do_update_inode:5151: inode #2: comm syz.3.7079: corrupted inode contents
[  489.009268][T17852] team0 (unregistering): Port device team_slave_1 removed
[  489.026667][T17852] team0 (unregistering): Port device team_slave_0 removed
[  489.035843][T12536] EXT4-fs error (device loop3): ext4_dirty_inode:6011: inode #2: comm syz.3.7079: mark_inode_dirty error
[  489.039457][T12539] ext4 filesystem being mounted at /4/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  489.080758][T12536] EXT4-fs error (device loop3): ext4_do_update_inode:5151: inode #2: comm syz.3.7079: corrupted inode contents
[  489.093979][T12547] EXT4-fs error (device loop3): ext4_add_entry:2435: inode #2: comm syz.3.7079: Directory hole found for htree leaf block 0
[  489.141164][T12539] EXT4-fs error (device loop0): ext4_do_update_inode:5151: inode #2: comm syz.0.7080: corrupted inode contents
[  489.218023][T12539] EXT4-fs error (device loop0): ext4_dirty_inode:6011: inode #2: comm syz.0.7080: mark_inode_dirty error
[  489.300489][T12361] bridge0: port 1(bridge_slave_0) entered blocking state
[  489.307651][T12361] bridge0: port 1(bridge_slave_0) entered disabled state
[  489.328857][T12539] EXT4-fs error (device loop0): ext4_do_update_inode:5151: inode #2: comm syz.0.7080: corrupted inode contents
[  489.348255][T12361] bridge_slave_0: entered allmulticast mode
[  489.356207][T12580] EXT4-fs error (device loop0): ext4_add_entry:2435: inode #2: comm syz.0.7080: Directory hole found for htree leaf block 0
[  489.380256][T12361] bridge_slave_0: entered promiscuous mode
[  489.393716][T12361] bridge0: port 2(bridge_slave_1) entered blocking state
[  489.400925][T12361] bridge0: port 2(bridge_slave_1) entered disabled state
[  489.429293][T12361] bridge_slave_1: entered allmulticast mode
[  489.447175][T12361] bridge_slave_1: entered promiscuous mode
[  489.511265][T12651] siw: device registration error -23
[  489.524267][T12361] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  489.535510][T12632] loop0: detected capacity change from 0 to 2048
[  489.561800][T12361] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  489.602339][T12632] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  489.622208][T12632] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 33 with error 28
[  489.634692][T12632] EXT4-fs (loop0): This should not happen!! Data will be lost
[  489.634692][T12632] 
[  489.644401][T12632] EXT4-fs (loop0): Total free blocks count 0
[  489.650549][T12632] EXT4-fs (loop0): Free/Dirty block details
[  489.656520][T12632] EXT4-fs (loop0): free_blocks=66060288
[  489.662210][T12632] EXT4-fs (loop0): dirty_blocks=64
[  489.667503][T12632] EXT4-fs (loop0): Block reservation details
[  489.673552][T12632] EXT4-fs (loop0): i_reserved_data_blocks=4
[  489.689025][T12361] team0: Port device team_slave_0 added
[  489.695962][T12632] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  489.708471][T12632] EXT4-fs (loop0): This should not happen!! Data will be lost
[  489.708471][T12632] 
[  489.729215][T12361] team0: Port device team_slave_1 added
[  489.816573][T12361] batman_adv: batadv0: Adding interface: batadv_slave_0
[  489.823550][T12361] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  489.849532][T12361] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  489.912472][T12361] batman_adv: batadv0: Adding interface: batadv_slave_1
[  489.920212][T12361] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  489.946192][T12361] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  489.995125][T12361] hsr_slave_0: entered promiscuous mode
[  490.005339][T12361] hsr_slave_1: entered promiscuous mode
[  490.011627][T12361] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  490.022895][T12361] Cannot create hsr debugfs directory
[  490.061272][T12793] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7090'.
[  490.092118][T12793] netlink: 76 bytes leftover after parsing attributes in process `syz.0.7090'.
[  490.184588][T12853] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(14)
[  490.191241][T12853] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  490.199025][T12853] vhci_hcd vhci_hcd.0: Device attached
[  490.218148][T12854] vhci_hcd: connection closed
[  490.218365][T17852] vhci_hcd: stop threads
[  490.227559][T17852] vhci_hcd: release socket
[  490.232000][T17852] vhci_hcd: disconnect device
[  490.470368][T12904] tipc: Failed to remove unknown binding: 66,1,1/0:3445469122/3445469124
[  490.478877][T12904] tipc: Failed to remove unknown binding: 66,1,1/0:3445469122/3445469124
[  490.514194][T12361] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  490.525167][T12361] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  490.534967][T12361] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  490.545029][T12361] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  490.597819][T12935] loop2: detected capacity change from 0 to 128
[  490.629242][T12944] loop1: detected capacity change from 0 to 128
[  490.687284][T12361] 8021q: adding VLAN 0 to HW filter on device bond0
[  490.703668][T12361] 8021q: adding VLAN 0 to HW filter on device team0
[  490.719789][   T28] bridge0: port 1(bridge_slave_0) entered blocking state
[  490.726902][   T28] bridge0: port 1(bridge_slave_0) entered forwarding state
[  490.756130][   T29] kauditd_printk_skb: 446 callbacks suppressed
[  490.756147][   T29] audit: type=1326 audit(1726856246.583:16142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12955 comm="syz.2.7101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaca1cdef9 code=0x7ffc0000
[  490.777923][   T28] bridge0: port 2(bridge_slave_1) entered blocking state
[  490.786801][   T29] audit: type=1326 audit(1726856246.583:16143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12955 comm="syz.2.7101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaca1cdef9 code=0x7ffc0000
[  490.793067][   T28] bridge0: port 2(bridge_slave_1) entered forwarding state
[  490.824781][   T29] audit: type=1326 audit(1726856246.583:16144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12955 comm="syz.2.7101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fdaca1cdef9 code=0x7ffc0000
[  490.848881][T12956] loop2: detected capacity change from 0 to 512
[  490.855330][   T29] audit: type=1326 audit(1726856246.583:16145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12955 comm="syz.2.7101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaca1cdef9 code=0x7ffc0000
[  490.879883][   T29] audit: type=1326 audit(1726856246.583:16146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12955 comm="syz.2.7101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaca1cdef9 code=0x7ffc0000
[  490.895349][T12361] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  490.903770][   T29] audit: type=1326 audit(1726856246.623:16147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12955 comm="syz.2.7101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fdaca1cdef9 code=0x7ffc0000
[  490.914029][T12361] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  490.949576][   T29] audit: type=1326 audit(1726856246.623:16148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12955 comm="syz.2.7101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaca1cdef9 code=0x7ffc0000
[  490.974307][   T29] audit: type=1326 audit(1726856246.623:16149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12955 comm="syz.2.7101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaca1cdef9 code=0x7ffc0000
[  490.998892][   T29] audit: type=1326 audit(1726856246.623:16150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12955 comm="syz.2.7101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fdaca1cdef9 code=0x7ffc0000
[  491.022530][   T29] audit: type=1326 audit(1726856246.653:16151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12955 comm="syz.2.7101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaca1cdef9 code=0x7ffc0000
[  491.074455][T12956] EXT4-fs mount: 42 callbacks suppressed
[  491.074544][T12956] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  491.092896][T12956] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  491.117559][T12974] loop3: detected capacity change from 0 to 512
[  491.120523][T12361] 8021q: adding VLAN 0 to HW filter on device batadv0
[  491.141170][T12974] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  491.170400][T12974] ext4 filesystem being mounted at /25/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  491.184277][T12974] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7104'.
[  491.205952][T12956] EXT4-fs error (device loop2): ext4_do_update_inode:5151: inode #2: comm syz.2.7101: corrupted inode contents
[  491.227759][T12956] EXT4-fs error (device loop2): ext4_dirty_inode:6011: inode #2: comm syz.2.7101: mark_inode_dirty error
[  491.242345][T10932] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  491.250933][T12956] EXT4-fs error (device loop2): ext4_do_update_inode:5151: inode #2: comm syz.2.7101: corrupted inode contents
[  491.265227][T13009] EXT4-fs error (device loop2): ext4_add_entry:2435: inode #2: comm syz.2.7101: Directory hole found for htree leaf block 0
[  491.356691][T13723] unregister_netdevice: waiting for vcan0 to become free. Usage count = 2
[  491.368969][ T8256] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  491.431174][T13043] loop2: detected capacity change from 0 to 128
[  491.454709][T13047] netlink: 'syz.3.7111': attribute type 1 has an invalid length.
[  491.462560][T13047] netlink: 'syz.3.7111': attribute type 2 has an invalid length.
[  491.509913][T12361] veth0_vlan: entered promiscuous mode
[  491.524429][T13050] loop1: detected capacity change from 0 to 4096
[  491.535262][T12361] veth1_vlan: entered promiscuous mode
[  491.538631][T13050] EXT4-fs: Ignoring removed nobh option
[  491.546829][T13050] EXT4-fs: Ignoring removed i_version option
[  491.557824][T12361] veth0_macvtap: entered promiscuous mode
[  491.575459][T12361] veth1_macvtap: entered promiscuous mode
[  491.587677][T12361] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  491.598177][T12361] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  491.608031][T12361] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  491.619193][T12361] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  491.629124][T12361] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  491.639658][T12361] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  491.650275][T12361] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  491.660736][T12361] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  491.661187][T13050] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  491.670750][T12361] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  491.670768][T12361] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  491.670783][T12361] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  491.715547][T12361] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  491.725407][T12361] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  491.735965][T12361] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  491.746629][T12361] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  491.757114][T12361] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  491.767842][T12361] batman_adv: batadv0: Interface activated: batadv_slave_0
[  491.781517][T12361] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  491.792126][T12361] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  491.801986][T12361] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  491.813105][T12361] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  491.822963][T12361] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  491.833786][T12361] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  491.844351][T12361] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  491.854796][T12361] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  491.864642][T12361] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  491.865735][T13067] loop3: detected capacity change from 0 to 128
[  491.875925][T12361] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  491.891475][T12361] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  491.902629][T12361] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  491.912561][T12361] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  491.920390][T13067] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  491.923032][T12361] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  491.945499][T12361] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  491.947855][T13067] ext4 filesystem being mounted at /28/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  491.955955][T12361] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  491.978775][T12361] batman_adv: batadv0: Interface activated: batadv_slave_1
[  492.020294][T13079] loop2: detected capacity change from 0 to 512
[  492.033888][T12361] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  492.042841][T12361] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  492.051566][T12361] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  492.061042][T12361] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  492.074426][ T5714] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  492.085863][T13079] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  492.098571][T13079] ext4 filesystem being mounted at /74/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  492.112559][T13079] EXT4-fs error (device loop2): ext4_do_update_inode:5151: inode #2: comm syz.2.7117: corrupted inode contents
[  492.125664][T13077] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(13)
[  492.132468][T13077] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  492.140133][T13077] vhci_hcd vhci_hcd.0: Device attached
[  492.174223][T13096] loop4: detected capacity change from 0 to 128
[  492.176934][T13079] EXT4-fs error (device loop2): ext4_dirty_inode:6011: inode #2: comm syz.2.7117: mark_inode_dirty error
[  492.202623][T13096] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  492.217328][T13079] EXT4-fs error (device loop2): ext4_do_update_inode:5151: inode #2: comm syz.2.7117: corrupted inode contents
[  492.229310][T13087] vhci_hcd: connection closed
[  492.232130][   T28] vhci_hcd: stop threads
[  492.241869][   T28] vhci_hcd: release socket
[  492.246297][   T28] vhci_hcd: disconnect device
[  492.246806][T13096] ext4 filesystem being mounted at /0/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  492.261047][T13079] x_tables: (null)_tables: DNAT target: only valid in nat table, not syz0
[  492.277408][T10932] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  492.302422][T12361] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  492.313462][ T8256] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  492.327254][T13110] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7119'.
[  492.337808][T13110] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7119'.
[  492.359620][T13118] netlink: 76 bytes leftover after parsing attributes in process `syz.4.7121'.
[  492.381333][T13118] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(13)
[  492.387968][T13118] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  492.395702][T13118] vhci_hcd vhci_hcd.0: Device attached
[  492.403505][T13124] loop1: detected capacity change from 0 to 128
[  492.415482][T13126] vhci_hcd: connection closed
[  492.423246][T17852] vhci_hcd: stop threads
[  492.432473][T17852] vhci_hcd: release socket
[  492.436983][T17852] vhci_hcd: disconnect device
[  492.504737][T13147] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=13147 comm=syz.1.7127
[  492.526131][T13150] loop2: detected capacity change from 0 to 512
[  492.540790][T13150] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  492.553901][T13150] ext4 filesystem being mounted at /78/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  492.564739][    C1] ==================================================================
[  492.572872][    C1] BUG: KCSAN: data-race in virtqueue_disable_cb / virtqueue_disable_cb
[  492.581175][    C1] 
[  492.583501][    C1] read to 0xffff888101f5e978 of 2 bytes by task 3252 on cpu 0:
[  492.591133][    C1]  virtqueue_disable_cb+0x63/0x180
[  492.596273][    C1]  start_xmit+0x14b/0x1260
[  492.600697][    C1]  dev_hard_start_xmit+0x119/0x3f0
[  492.605819][    C1]  sch_direct_xmit+0x1a9/0x580
[  492.610593][    C1]  __dev_queue_xmit+0xf46/0x1fe0
[  492.615546][    C1]  ip_finish_output2+0x73d/0x8b0
[  492.620500][    C1]  ip_finish_output+0x11a/0x2a0
[  492.625364][    C1]  ip_output+0xab/0x170
[  492.629559][    C1]  __ip_queue_xmit+0xbcc/0xbf0
[  492.634338][    C1]  ip_queue_xmit+0x38/0x50
[  492.638854][    C1]  __tcp_transmit_skb+0x15b0/0x1970
[  492.644061][    C1]  tcp_write_xmit+0x1410/0x3220
[  492.648918][    C1]  __tcp_push_pending_frames+0x6a/0x1a0
[  492.654477][    C1]  tcp_push+0x320/0x340
[  492.658674][    C1]  tcp_sendmsg_locked+0x21ff/0x2700
[  492.663891][    C1]  tcp_sendmsg+0x30/0x50
[  492.668185][    C1]  inet_sendmsg+0x77/0xd0
[  492.672525][    C1]  __sock_sendmsg+0x102/0x180
[  492.677230][    C1]  sock_write_iter+0x15e/0x1a0
[  492.682001][    C1]  vfs_write+0x76a/0x910
[  492.686253][    C1]  ksys_write+0xeb/0x1b0
[  492.690505][    C1]  __x64_sys_write+0x42/0x50
[  492.695105][    C1]  x64_sys_call+0x27dd/0x2d60
[  492.699809][    C1]  do_syscall_64+0xc9/0x1c0
[  492.704324][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  492.710253][    C1] 
[  492.712611][    C1] write to 0xffff888101f5e978 of 2 bytes by interrupt on cpu 1:
[  492.720251][    C1]  virtqueue_disable_cb+0x85/0x180
[  492.725383][    C1]  skb_xmit_done+0x5f/0x140
[  492.729907][    C1]  vring_interrupt+0x157/0x180
[  492.734684][    C1]  __handle_irq_event_percpu+0x95/0x490
[  492.740250][    C1]  handle_irq_event+0x64/0xf0
[  492.744943][    C1]  handle_edge_irq+0x16d/0x5b0
[  492.749721][    C1]  __common_interrupt+0x58/0xe0
[  492.754600][    C1]  common_interrupt+0x7c/0x90
[  492.759297][    C1]  asm_common_interrupt+0x26/0x40
[  492.764334][    C1]  kcsan_setup_watchpoint+0x404/0x410
[  492.769730][    C1]  wq_worker_running+0x49/0x130
[  492.774672][    C1]  schedule_timeout+0xca/0x2c0
[  492.779453][    C1]  msleep+0x4b/0x70
[  492.783267][    C1]  hub_port_debounce+0x18b/0x210
[  492.788309][    C1]  hub_event+0x14ce/0x2910
[  492.792729][    C1]  process_scheduled_works+0x483/0x9a0
[  492.798291][    C1]  worker_thread+0x51d/0x6f0
[  492.802895][    C1]  kthread+0x1d1/0x210
[  492.807167][    C1]  ret_from_fork+0x4b/0x60
[  492.811592][    C1]  ret_from_fork_asm+0x1a/0x30
[  492.816372][    C1] 
[  492.818696][    C1] value changed: 0x0000 -> 0x0001
[  492.823718][    C1] 
[  492.826060][    C1] Reported by Kernel Concurrency Sanitizer on:
[  492.832242][    C1] CPU: 1 UID: 0 PID: 11989 Comm: kworker/1:10 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  492.844317][    C1] Tainted: [W]=WARN
[  492.848127][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  492.858187][    C1] Workqueue: usb_hub_wq hub_event
[  492.863307][    C1] ==================================================================
[  492.874632][T13150] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #15: comm syz.2.7128: corrupted xattr block 33: invalid ea_ino
[  492.885045][T13157] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7129'.
[  492.890261][T13150] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[  492.907090][T13157] netlink: 76 bytes leftover after parsing attributes in process `syz.3.7129'.
[  492.919263][ T8256] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  492.924542][T13154] loop1: detected capacity change from 0 to 1024
[  492.938613][T13154] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  492.952220][T13154] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  492.960450][T13154] EXT4-fs (loop1): orphan cleanup on readonly fs
[  492.967230][T13154] EXT4-fs error (device loop1): ext4_free_blocks:6590: comm syz.1.7127: Freeing blocks not in datazone - block = 0, count = 4096
[  492.968351][T13164] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(14)
[  492.981087][T13154] EXT4-fs (loop1): 1 orphan inode deleted
[  492.987277][T13164] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  492.988119][T13164] vhci_hcd vhci_hcd.0: Device attached
[  492.995810][T13154] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  493.013176][T13165] vhci_hcd: connection closed
[  493.020213][   T28] vhci_hcd: stop threads
[  493.028040][T13154] EXT4-fs error (device loop1): ext4_readdir:261: inode #2: block 16: comm syz.1.7127: path /155/file1: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  493.029282][   T28] vhci_hcd: release socket
[  493.053915][   T28] vhci_hcd: disconnect device
[  493.059162][T13154] EXT4-fs error (device loop1): ext4_readdir:261: inode #2: block 17: comm syz.1.7127: path /155/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  493.080383][T13154] EXT4-fs error (device loop1): ext4_readdir:261: inode #2: block 18: comm syz.1.7127: path /155/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  493.101325][T13154] EXT4-fs error (device loop1): ext4_readdir:261: inode #2: block 19: comm syz.1.7127: path /155/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  493.122703][T13154] EXT4-fs error (device loop1): ext4_readdir:261: inode #2: block 20: comm syz.1.7127: path /155/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  493.143525][T13154] EXT4-fs error (device loop1): ext4_readdir:261: inode #2: block 21: comm syz.1.7127: path /155/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  493.164423][T13154] EXT4-fs error (device loop1): ext4_readdir:261: inode #2: block 22: comm syz.1.7127: path /155/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  493.185844][T13154] EXT4-fs error (device loop1): ext4_readdir:261: inode #2: block 23: comm syz.1.7127: path /155/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  493.346161][ T5714] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.