last executing test programs:

2m0.260075403s ago: executing program 32 (id=1576):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x4000040)

1m59.843913305s ago: executing program 33 (id=1593):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_udp_int(r0, 0x11, 0x1, &(0x7f0000000040)=0x6, 0x4)
sendmmsg$inet6(r0, &(0x7f0000000740)=[{{&(0x7f0000000100)={0xa, 0x4e21, 0x0, @empty}, 0x1c, 0x0}}], 0x300, 0x0)

1m54.908104147s ago: executing program 34 (id=1698):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_DISABLE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x5c, r1, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@TIPC_NLA_BEARER={0x48, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x5, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x2}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x10000, @remote, 0xfff}}}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)

1m50.394060818s ago: executing program 35 (id=1816):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000d00)=@delchain={0x1d8, 0x65, 0x0, 0x0, 0x0, {}, [@TCA_CHAIN={0x8}, @filter_kind_options=@f_cgroup={{0xb}, {0x1a0, 0x2, [@TCA_CGROUP_EMATCHES={0x19c, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x17c, 0x2, 0x0, 0x1, [@TCF_EM_U32={0x1c, 0x2, 0x0, 0x0, {{0x9, 0x3, 0x5}, {0x1ff, 0x81, 0x1ff, 0x5}}}, @TCF_EM_META={0x74, 0x3, 0x0, 0x0, {{0x0, 0x4, 0x3}, [@TCA_EM_META_RVALUE={0xe, 0x3, [@TCF_META_TYPE_INT=0x5, @TCF_META_TYPE_VAR="a33df9334e2d"]}, @TCA_EM_META_LVALUE={0xd, 0x2, [@TCF_META_TYPE_VAR="166dd093aa", @TCF_META_TYPE_INT=0x7]}, @TCA_EM_META_RVALUE={0x1d, 0x3, [@TCF_META_TYPE_INT=0x6, @TCF_META_TYPE_VAR="03fec46370fa", @TCF_META_TYPE_VAR="bd2b85", @TCF_META_TYPE_VAR='O', @TCF_META_TYPE_INT=0x3, @TCF_META_TYPE_VAR="f3ba6f", @TCF_META_TYPE_INT=0x7]}, @TCA_EM_META_LVALUE={0x19, 0x2, [@TCF_META_TYPE_VAR="2210c2244f264701", @TCF_META_TYPE_INT, @TCF_META_TYPE_VAR="43fefa1ddadc69f433"]}, @TCA_EM_META_HDR={0xc, 0x1, {{0x9, 0xc, 0x1}, {0x3, 0x1, 0x1}}}]}}, @TCF_EM_IPT={0x58, 0x2, 0x0, 0x0, {{0xfc01, 0x9, 0x6}, [@TCA_EM_IPT_MATCH_NAME={0xb}, @TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x2}, @TCA_EM_IPT_NFPROTO={0x5, 0x4, 0x5}, @TCA_EM_IPT_HOOK={0x8}, @TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x8}, @TCA_EM_IPT_MATCH_REVISION={0x5}, @TCA_EM_IPT_NFPROTO={0x5, 0x4, 0x5}, @TCA_EM_IPT_HOOK={0x8, 0x1, 0x2}, @TCA_EM_IPT_NFPROTO={0x5, 0x4, 0xa}]}}, @TCF_EM_META={0x90, 0x2, 0x0, 0x0, {{0x2, 0x4, 0x5}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x0, 0x10}, {0x85, 0x7, 0x1}}}, @TCA_EM_META_HDR={0xc, 0x1, {{0x5, 0x1}, {0xe597, 0x6, 0x1}}}, @TCA_EM_META_LVALUE={0x29, 0x2, [@TCF_META_TYPE_VAR="4d81eae8e9", @TCF_META_TYPE_VAR="902307e190de436032ef", @TCF_META_TYPE_VAR="a433a0dbfb6b8ad56e", @TCF_META_TYPE_VAR="7f83b4e059", @TCF_META_TYPE_INT=0x5, @TCF_META_TYPE_INT=0x7]}, @TCA_EM_META_HDR={0xc, 0x1, {{0x7, 0x4}, {0x7, 0x81}}}, @TCA_EM_META_LVALUE={0x9, 0x2, [@TCF_META_TYPE_VAR="91b3f4151d"]}, @TCA_EM_META_LVALUE={0xc, 0x2, [@TCF_META_TYPE_INT=0x6, @TCF_META_TYPE_INT=0x1]}, @TCA_EM_META_RVALUE={0x11, 0x3, [@TCF_META_TYPE_VAR="8e90fa0429b3", @TCF_META_TYPE_INT, @TCF_META_TYPE_VAR="9df729"]}, @TCA_EM_META_RVALUE={0x8, 0x3, [@TCF_META_TYPE_INT=0x6]}]}}]}, @TCA_EMATCH_TREE_LIST={0x1c, 0x2, 0x0, 0x1, [@TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0x4, 0x1, 0x401}, {0x4, 0x581, 0xa, 0x1, 0x5, 0x0, 0x2}}}]}]}]}}]}, 0x1d8}}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=@ipv6_newaddr={0x54, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {}, [@IFA_LOCAL={0x14, 0x2, @local}, @IFA_CACHEINFO={0x14, 0x6, {0x0, 0xfffff001}}, @IFA_ADDRESS={0x14, 0x1, @dev={0xfe, 0x80, '\x00', 0x42}}]}, 0x54}}, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x334}, {&(0x7f00000007c0)=""/154, 0x2c}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

1m48.728417196s ago: executing program 36 (id=1852):
socket(0x10, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0xffffffffffffff2c, &(0x7f0000000580)={&(0x7f0000000880)=ANY=[@ANYBLOB="500000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="05a00200000000002800128009000100766c616e00000000180002800c000200540a000018000000060001000100000008000500", @ANYRES32=r2], 0x50}, 0x1, 0xba01}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
write(r3, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000000d0000000000000008000f0001000000", 0x24)

1m48.188918198s ago: executing program 37 (id=1858):
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x34, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r0, 0x0, &(0x7f0000000040))
mlock(&(0x7f000021c000/0x4000)=nil, 0x4000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32, @ANYBLOB="0000000002000000b705000008000000850000000400000095"], &(0x7f0000000300)='GPL\x00', 0x8, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
accept$phonet_pipe(r0, &(0x7f0000000000), &(0x7f0000000240)=0x10)
mremap(&(0x7f00007fd000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f000021c000/0x2000)=nil)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
r1 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000100)=ANY=[@ANYBLOB="0b00000073790101000000000000000000000000000af7f4f0c55de8ca0000000000000000000000000000000000000000f3c800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a310000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ff00000000000000000000000000000020"], 0x138)
write$UHID_DESTROY(r1, &(0x7f0000000340), 0x4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
fcntl$setstatus(r2, 0x4, 0x6000)
io_setup(0x200, &(0x7f0000000140)=<r3=>0x0)
r4 = open(&(0x7f0000000100)='./bus\x00', 0x14113e, 0x39)
write$binfmt_script(r4, &(0x7f0000000080), 0x208e24b)
io_submit(r3, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0x0, 0x2, 0x1, 0x0, r2, &(0x7f0000000000), 0x4000}])

1m47.94013155s ago: executing program 38 (id=1862):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0xffffffffffffff2c, &(0x7f0000000580)={&(0x7f0000000880)=ANY=[@ANYBLOB="500000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="05a00200000000002800128009000100766c616e00000000180002800c000200540a000018000000060001000100000008000500", @ANYRES32=r3], 0x50}, 0x1, 0xba01}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480d0000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)

1m38.072208215s ago: executing program 39 (id=2076):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_CONTEXT(r0, 0x84, 0xd, 0x0, 0x0)

1m21.288838943s ago: executing program 8 (id=2731):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a00000000000000000000000000000900010073797a30000000002c000000030a00000000000000000000000000000900010073797a30000000000900030073797a30000000006c000000060a000000000000000000000000000008000b4000000000440004802c0001800a0001006c696d69740000001c0002800c00014000005300000000000c0002400000000000000000140001800b0001006c6f6f6b75700000040002800900010073797a300000"], 0xe0}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x4b0}}, 0x0)

1m21.235873273s ago: executing program 8 (id=2733):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
getpeername(0xffffffffffffffff, 0x0, &(0x7f0000000000))

1m21.120531424s ago: executing program 8 (id=2736):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELRULE={0x20, 0x8, 0xa, 0x3, 0x0, 0x0, {0x1, 0x0, 0x9}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x94}}, 0x0)

1m21.090333054s ago: executing program 8 (id=2740):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f00000000c0)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@nobarrier}, {@noblock_validity}, {@lazytime}, {@stripe={'stripe', 0x3d, 0x85d}}, {@quota}]}, 0x10, 0x433, &(0x7f0000001040)="$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")
r0 = open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000500)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, 0x0)
pwritev2(r0, &(0x7f00000006c0)=[{&(0x7f0000000440)="491064", 0x3}], 0x1, 0x100000, 0x0, 0x0)

1m20.965694575s ago: executing program 8 (id=2747):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x4002}, 0x10)
sendmsg$nl_route(r0, 0x0, 0x0)

1m20.014896309s ago: executing program 8 (id=2790):
socket(0x10, 0x3, 0x0)
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000014c0)=@raw={'raw\x00', 0x8, 0x3, 0x3d0, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x458, 0xffffffff, 0xffffffff, 0x458, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@empty, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x62}, 0x0, 0x200, 0x230, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'veth0_to_hsr\x00', {0x4, 0x8, 0x20, 0x5e1b2d47, 0xf91, 0x5, 0x4, 0x9f7, 0x18}, {0x8}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x430)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4)
r1 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev, 0x9}, 0x1c)
sendmsg(r1, &(0x7f00000000c0)={0x0, 0x9506, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0x5dc}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)

1m19.96997342s ago: executing program 40 (id=2790):
socket(0x10, 0x3, 0x0)
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000014c0)=@raw={'raw\x00', 0x8, 0x3, 0x3d0, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x458, 0xffffffff, 0xffffffff, 0x458, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@empty, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x62}, 0x0, 0x200, 0x230, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'veth0_to_hsr\x00', {0x4, 0x8, 0x20, 0x5e1b2d47, 0xf91, 0x5, 0x4, 0x9f7, 0x18}, {0x8}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x430)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4)
r1 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev, 0x9}, 0x1c)
sendmsg(r1, &(0x7f00000000c0)={0x0, 0x9506, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0x5dc}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)

1m14.101625217s ago: executing program 2 (id=3048):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x19, 0x4, 0x4, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500), 0xc)

1m14.016256207s ago: executing program 2 (id=3051):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000700)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000006c0), 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000680)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000400), 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000b80)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000b40), 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000100), 0x13f}}, 0x20)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080), 0x62}, {&(0x7f0000000100)="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", 0x682c}, {&(0x7f0000001480)="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", 0x1001}], 0x3)

1m14.001345527s ago: executing program 2 (id=3054):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="0420040000000000280012800a000100767863616e0000", @ANYRES32], 0x50}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1m13.963470017s ago: executing program 2 (id=3057):
socket(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000480, &(0x7f0000000280), 0x1, 0x76a, &(0x7f0000001b00)="$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")
creat(&(0x7f0000000100)='./bus\x00', 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000840)={0x0, 0x0, 0x0, 0xe6, 0x8005, 0x0, 0x0, 0x4, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ec09e737ff0edf110ff4117639c2eb4b78c660e648547001800000fab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef9cc093fce47d85272036dc78388e3dc177e9b496", "f28359738e229a4c66810000000000d300e6d602f1ff00000000000000000001"})
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0xffc9)

1m13.811165888s ago: executing program 2 (id=3063):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, 0x0, 0x0)

1m13.577198729s ago: executing program 2 (id=3075):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x44, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x18, 0x4, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @numgen={{0xb}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x6c}}, 0x0)

1m13.577044189s ago: executing program 41 (id=3075):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x44, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x18, 0x4, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @numgen={{0xb}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x6c}}, 0x0)

1m2.451477481s ago: executing program 1 (id=3619):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x4000014}, 0x0)

1m2.405685681s ago: executing program 1 (id=3622):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bridge0\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f0000002540), 0x0, 0x0, &(0x7f0000000140)={0x11, 0x0, r2, 0x1, 0x11, 0x6, @broadcast}, 0x14)

1m2.379432021s ago: executing program 1 (id=3624):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=@getqdisc={0x24, 0x26, 0x705, 0x70bd2b, 0x5, {0x0, 0x0, 0x0, 0x0, {0x1, 0xffe0}, {0x10, 0x8}, {0xfff2, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r0 = syz_io_uring_setup(0x24fa, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000240), &(0x7f0000000140))
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

1m2.358597061s ago: executing program 1 (id=3626):
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000080)='./file1\x00', 0x8, &(0x7f0000000840)={[{@fat=@errors_remount}, {@dots}, {@nodots}, {@fat=@dos1xfloppy}, {@dots}, {@nodots}, {@nodots}, {@fat=@quiet}, {@dots}, {@dots}, {@nodots}, {@nodots}, {@dots}, {@fat=@discard}, {@fat=@nfs}, {@dots}, {@fat=@tz_utc}, {@fat=@errors_continue}, {@nodots}, {@nodots}, {@fat=@quiet}, {@dots}]}, 0xfd, 0x1bf, &(0x7f0000000680)="$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")
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1adc51, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1adc51, 0x0)
move_mount(0xffffffffffffffff, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
r1 = open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x0)
sendfile(r1, r0, 0x0, 0x80000000)

1m2.321529361s ago: executing program 1 (id=3629):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000002200)=ANY=[@ANYBLOB="5c00000010000305000000000004000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000003c0012800e00010069703665727370616e000000280002800600020030000000"], 0x5c}}, 0x0)

1m2.088139872s ago: executing program 1 (id=3637):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f00000008c0)=@setlink={0x34, 0x10, 0x1, 0x0, 0x0, {0x7}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x10}]}]}, 0x34}}, 0x0)

1m2.072245242s ago: executing program 42 (id=3637):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f00000008c0)=@setlink={0x34, 0x10, 0x1, 0x0, 0x0, {0x7}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x10}]}]}, 0x34}}, 0x0)

59.502127574s ago: executing program 5 (id=3720):
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x50)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x2a, 0x2, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0)
io_uring_setup(0x68e0, &(0x7f0000000140)={0x0, 0xd77, 0x1, 0x1, 0x239})
socket$inet(0x2, 0x3, 0x2)
capset(&(0x7f00000004c0)={0x20080522}, &(0x7f0000000500))
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f0000000000)={r1}, 0x8)
ioctl$SIOCSIFHWADDR(r0, 0x89f0, &(0x7f0000000900)={'bridge0\x00', @random='\x00\x00\x00 \x00'})

59.409756775s ago: executing program 5 (id=3723):
r0 = syz_open_dev$usbfs(0x0, 0x205, 0x8401)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, 0x0)

59.357925995s ago: executing program 5 (id=3724):
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x6)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x20008040}, 0x4000010)
r0 = syz_io_uring_setup(0x77e8, &(0x7f0000000080)={0x0, 0xfffffffd, 0x10100}, &(0x7f0000000040)=<r1=>0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f0000000200)=ANY=[@ANYBLOB=','], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r2, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

59.243284055s ago: executing program 5 (id=3728):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000480, &(0x7f0000000280), 0x1, 0x76a, &(0x7f0000001b00)="$eJzs3d9rW1UcAPDvTdt17aatIOh8KghaGEvtrJuCDxMfRHAw0Ge3kGZlNm1Gk461FNwQwRdBxQdBX/bsj/nmqz9e9b/wQTamdsOJD1K5adJla9KlW5MI+XzgNOfce9Nzvjn3nnuSe0kC6FsT6Z9MxKGI+CiJGKstTyJiqJobjDixud3t9bV8mpLY2Hjzj6S6za31tXw0PCd1oFZ4MiJ+fD/icGZ7veWV1flcsVhYqpWnKgvnp8orq0fOLeTmCnOFxWPTMzNHj79w/NjexfrXL6sHr3/82rPfnPjnvSeufvhTEifiYG1dYxx7ZSImaq/JUPoS3uXVva6sx5JeN4AHkh6aA5tHeRyKsRio5loY6WbLAIBOeTciNgCAPpM4/wNAn6l/DnBrfS1fT739RKK7brwSEfs3469f39xcM1i7Zre/eh109FZy15WRJCLG96D+iYj44ru3v0pTdOg6JEAzly5HxJnxie3jf7LtnoXdeq6NbSbuKRv/oHu+T+c/Lzab/2W25j/RZP4z3OTYfRD3P/4z1/agmpbS+d/LDfe23W6Iv2Z8oFZ6pDrnG0rOnisW0rHt0YiYjKHhtDy9Qx2TN/+92Wpd4/zvz0/e+TKtP328s0Xm2uDw3c+ZzVVyDxNzoxuXI54abBZ/stX/SYv576k263j9pQ8+b7UujT+Nt562x99ZG1cinmna/3fuaEt2vD9xqro7TNV3iia+/fWz0Vb1N/Z/mtL66+8FuiHt/9Gd4x9PGu/XLO++jp+vjP3Qat3942++/+9L3qrm99WWXcxVKkvTEfuSN7YvP3rnufVyffs0/smnmx//O+3/6XvCM23GP3j9968fPP7OSuOf3VX/7z5z9fb8QKv62+v/mWpusraknfGv3QY+zGsHAAAAAAAAAAAAAAAAAAAAAAAAAO3KRMTBSDLZrXwmk81u/ob34zGaKZbKlcNnS8uLs1H9rezxGMrUv+pyrOH7UKdr34dfLx+9p/x8RDwWEZ8Oj1TL2XypONvr4AEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACg5kCL3/9P/Tbc69YBAB2zv9cNAAC6zvkfAPrP7s7/Ix1rBwDQPd7/A0D/cf4HgP7j/A8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAECHnTp5Mk0bf6+v5dPy7IWV5fnShSOzhfJ8dmE5n82Xls5n50qluWIhmy8ttPxHlzYfiqXS+ZlYXL44VSmUK1PlldXTC6Xlxcrpcwu5ucLpwlDXIgMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA9pVXVudzxWJhSUZGRmYr0zhKjPRugAIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4n/svAAD//9EyKso=")
creat(&(0x7f0000000100)='./bus\x00', 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000840)={0x0, 0x0, 0x0, 0xe6, 0x8005, 0x0, 0x0, 0x4, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ec09e737ff0edf110ff4117639c2eb4b78c660e648547001800000fab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef9cc093fce47d85272036dc78388e3dc177e9b496", "f28359738e229a4c66810000000000d300e6d602f1ff00000000000000000001"})
write$RDMA_USER_CM_CMD_CREATE_ID(r0, 0x0, 0x0)

58.758739767s ago: executing program 5 (id=3736):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xf, 0x4, 0x4, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

58.512461029s ago: executing program 5 (id=3745):
r0 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x22c01)
setreuid(0x0, 0xee00)
writev(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000600)="580000001400192340835980040d8c560a067f9e45ff8105", 0x18}], 0x1)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="02000000"])

58.512382549s ago: executing program 43 (id=3745):
r0 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x22c01)
setreuid(0x0, 0xee00)
writev(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000600)="580000001400192340835980040d8c560a067f9e45ff8105", 0x18}], 0x1)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="02000000"])

28.846058036s ago: executing program 6 (id=4548):
sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={0x0, 0x58}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000000)=@newqdisc={0x24, 0x24, 0x2, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x2}}}, 0x24}, 0x1, 0x0, 0x0, 0x4000800}, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000006c0)={0x48, 0x3, 0x8, 0x101, 0x0, 0x0, {0x5, 0x0, 0x8}, [@CTA_TIMEOUT_DATA={0x14, 0x4, 0x0, 0x1, @icmpv6=[@CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x6}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0xf}]}, @CTA_TIMEOUT_DATA={0x14, 0x4, 0x0, 0x1, @icmpv6=[@CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x7fffffff}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x2d}]}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x48}, 0x1, 0x0, 0x0, 0x801}, 0x8004)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000180)=@newlink={0x20, 0x10, 0x401}, 0x20}}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000", 0x11, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x1c}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0xbe8}, {&(0x7f00000007c0)=""/154, 0x8}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

28.788177587s ago: executing program 6 (id=4549):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000300), r0)
sendmsg$DEVLINK_CMD_RATE_DEL(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000340)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000004d0000000600a800380000000e0001006e657464657673696d0000000f0002006e657464657673696d300000"], 0x3c}}, 0x20000810)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
sendmsg$DEVLINK_CMD_RATE_GET(r0, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000700)={0xdc, r1, 0x0, 0x70bd26, 0x25dfdbfc, {}, [@DEVLINK_ATTR_PORT_INDEX={0x8}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_RATE_NODE_NAME={0xe}, @DEVLINK_ATTR_PORT_INDEX={0x8}, @DEVLINK_ATTR_PORT_INDEX={0x8}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @handle=@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x3}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @handle=@pci={{0x8}, {0x11}}]}, 0xdc}, 0x1, 0x0, 0x0, 0x815}, 0x4004010)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r3 = socket(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r3, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00', 0x20, 0x1, 0x990, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="000000000c0000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000001000000000240b182e9936299000000000000000000000000000000ffffffff010000000b00000020000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000020000000000000000000000020080000000000001404000000000000000000000a00000000000000000000000000080000000000000000000000000000b085da05d603888318a0cce400000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000fdffffffff00000000000000000000e4ff0000000000000000000000000000000000000000000000000000000000000000c06a330000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000000040000000000000000000000006fb7cd02b734bcce41ef6e95bd000000008000000000000000000000000000000000000000000000000000000000000000eeff3f000000008fc7660c490587b3ab213098a6767c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000de1f8f00000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000440a050000000000000000000000000000000000000000000000000000000000002f470e43ba7aa62a00000000000000000000000000f18a0afe993500000000000000000000000000000000000000000000000000000000000000000000000000fcffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4f016fa70c12554000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e61bf829de3481b50000000000000000000000000000000000008c7f8f1b44f000000000feffffff000000000000000000100000000000000000f4ff00000000000000000000000000e8b5520a0cd4af00000000000000000000000000000001000000000000000000000000000062f75a00627f34dd71012eed00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e0ffffff00000000000000000000000000000000000000000000001b00000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000f200000000000000000000000000000000000000000000000000000000000000fffffff900000000000000000000000000000000000000000000000000000000000000000000ff000000000000000000f2573bd04a330000000e00000000000000000000000000000000000000e9bfffff0000000000000000000000000000000000000000000000ffffffffffffffff0000000000200000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000cb33322c9c564ae5f8eef74d5aa7cc9c000000000000000000000000000000000000000000000000000000000500000000000000000000000000000000000000003f7f1c000000000000f34700000000000000000000000000000000000000000000000000000000000000dbffd4d57f898f20b15a00000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d3d2e851000000000000000000000000000000000000000000000000006f670000001100000000000000000000000000000000000000000000005080000000000000000000000000000000010000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a54cc58ff5bc83d5e4066c770000000000000000000000004000"/2448]}, 0xa08)
r4 = socket(0x10, 0x803, 0x0)
r5 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x41, &(0x7f0000000140)=0x632f, 0x4)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000880)={'vcan0\x00', <r6=>0x0})
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
fsetxattr$security_capability(0xffffffffffffffff, &(0x7f00000001c0), 0x0, 0x0, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.parent_freezing\x00', 0x275a, 0x0)
write$binfmt_script(r8, &(0x7f0000000040), 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r8, 0x0)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r7, 0x84, 0x9, 0x0, &(0x7f0000000180))
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r9}, 0x10)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000010000000900010073797a300000000048000000030a05020000000000000000010000000900030073797a320000000014000480080002400000000008000140000000000900010073797a3000000000080007006e"], 0xcc}}, 0x0)
sendmsg$can_raw(r5, &(0x7f00000004c0)={&(0x7f00000000c0)={0x1d, r6, 0x3}, 0x10, &(0x7f0000000080)={&(0x7f00000008c0)=@can={{0x0, 0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, "3c42aa1f3c3fe9a8"}, 0x10}}, 0x0)
open$dir(&(0x7f0000000380)='./file0\x00', 0x8200, 0x10)
statx(0xffffffffffffff9c, &(0x7f0000000540)='./file0\x00', 0x4000, 0x2, &(0x7f0000000580))

28.719519727s ago: executing program 6 (id=4553):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
r1 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000000)={'vxcan0\x00'})
r2 = socket$netlink(0x10, 0x3, 0x0)
unshare(0x22020600)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r3)
syz_open_procfs(0xffffffffffffffff, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mountinfo\x00')
close_range(r2, 0xffffffffffffffff, 0x0)

28.677470407s ago: executing program 6 (id=4556):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
r1 = openat$tun(0xffffffffffffff9c, 0x0, 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, 0x0)
mount$9p_unix(0x0, &(0x7f0000000600)='./bus\x00', 0x0, 0x2100001, 0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0)
r3 = dup(r2)
sendfile(r3, 0xffffffffffffffff, 0x0, 0x8000fffffffe)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x40281, 0x0)

28.557066768s ago: executing program 6 (id=4559):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2000000}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@minixdf}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLCSFUCdEjSG1I3CiKHUexU5rQQ3rmikQlTnDkD+DcE3cuCG5cygGJHxGoQeLg1YwnqZvaTdQkdhR/PtJo3ps39fe9pvNe/U3iF8DQuhoRuxExFhF3I2I6u57LjvisfST3Pdt7uLS/93ApF63W7X/l0vbkWnT8mcSV7DWLEfGj70X8NPdy3Mb2ztpitVrZzOqzzdrGbGN758ZqbXGlslJZL5cX5hfmPrn5cfnMxvpebSwrffXpH3e/9fOkW1PZlc5xnKX20AuHcRKjEfGD8wg2ACPZeMYG3RFeSz4i3o6I99PnfzpG0q8mAHCZtVrT0ZrurAMAl10+zYHl8qUsFzAV+Xyp1M7hvROT+Wq90bx+r761vtzOlc1EIX9vtVqZy3KFM1HIJfX5tPy8Xj5SvxkRb0XEL8cn0nppqV5dHuR/fABgiF05sv7/d7y9/gMAl1xx0B0AAPrO+g8Aw8f6DwDDx/oPAMOnvf5PDLobAEAfef8PAMPH+g8AQ+WHt24lR2s/+/zr5fvbW2v1+zeWK421Um1rqbRU39wordTrK+ln9tSOe71qvb4x/1FsPZj59kajOdvY3rlTq2+tN++kn+t9p1JI79rtw8gAgF7eeu/JX3LJivzpRHpEx14OhYH2DDhv+UF3ABiYkUF3ABgYu33B8DrFe3zpAbgkumzR+4Jit18QarVarfPrEnDOrn1J/h+GVUf+308Bw5CR/4fhJf8Pw6vVyp10z/846Y0AwMUmxw/0+P7/29n5d9k3B36yfPSOx+fZKwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYDvb/LWV7gU9FPl8qRbwRETNRyN1brVbmIuLNiPjzeGE8qc8PuM8AwGnl/57L9v+6Nv3h1AtN7145LI5FxM9+fftXDxabzc0/RYzl/j1+cL35OLte7n/vAYDjHazT6bnjjfyzvYdLB0c/+/OP70ZEsR1/f28s9g/jj8Zoei5GISIm/5PL6m25jtzFaew+iogvdht/LqbSHEh759Oj8ZPYb/Q1fv6F+Pm0rX1O/i6+cAZ9gWHzJJl/Puv2/OXjanru/vwX0xnq9LL5L3mppf10Dnwe/2D+G+kx/109aYyP/vD9dmni5bZHEV8ejTiIvd8x/xzEz/WI/+EJ4//1K+++36ut9ZuIa9E9fmes2WZtY7axvXNjtba4UlmprJfLC/MLc5/c/Lg8m+aoZ3uvBv/89PqbvdqS8U/2iF88ZvxfP+H4f/v/uz/+2ivif/ODbvHz8c4r4idr4jdOGH9x8vfFXm1J/OUe4z/u63/9hPGf/m3npW3DAYDBaWzvrC1Wq5VNBYWLX0j+yV6AbnQtfKdfscaie9MvPmg/00eaWq3XitVrxjiLrBtwERw+9BHxv0F3BgAAAAAAAAAAAAAA6Kofv7E06DECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABweX0eAAD//19xzyM=")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
getpeername$packet(0xffffffffffffffff, &(0x7f0000000680)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f00000006c0)=0x14)
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r4, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000940)={0xffffffffffffffff, 0x20, &(0x7f0000000900)={&(0x7f0000000740)=""/102, 0x66, <r5=>0x0, &(0x7f00000007c0)=""/199, 0xc7}}, 0x10)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000980)={0x1, <r6=>0xffffffffffffffff}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0xd, 0x7, &(0x7f00000005c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x4}, @map_idx={0x18, 0x7, 0x5, 0x0, 0xb}]}, &(0x7f0000000600)='syzkaller\x00', 0x7, 0x29, &(0x7f0000000640)=""/41, 0x41000, 0x24, '\x00', r3, @sock_ops=0x3, r4, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000700)={0x3, 0xb, 0x8}, 0x10, r5, 0xffffffffffffffff, 0x9, &(0x7f00000009c0)=[r6], &(0x7f0000000a00)=[{0x0, 0x2, 0x3, 0x8}, {0x4, 0x4, 0xa, 0xc}, {0x3, 0x4, 0x1, 0x8}, {0x0, 0x1, 0xa, 0x9}, {0x4, 0x1, 0x0, 0x7}, {0x0, 0x3, 0x0, 0xb}, {0x1, 0x4, 0x6, 0x8}, {0x4, 0x4, 0x0, 0xc}, {0x4, 0x3, 0x10, 0xa}], 0x10, 0x7fffffff, @void, @value}, 0x94)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x18, 0x16, &(0x7f0000000ac0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x120000, 0x0, 0x0, 0x0, 0x5}, [@map_idx_val={0x18, 0x3, 0x6, 0x0, 0x8, 0x0, 0x0, 0x0, 0x400}, @call={0x85, 0x0, 0x0, 0x51}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffb}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}, @initr0={0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x10000}, @alu={0x7, 0x1, 0x3, 0x0, 0x0, 0xfffffffffffffff0, 0xfffffffffffffff0}]}, &(0x7f0000000540)='GPL\x00', 0x9, 0x55, &(0x7f0000000b80)=""/85, 0x41100, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x3, 0x3}, 0x8, 0x10, &(0x7f0000000c00)={0x4, 0xc, 0x10001, 0xca0}, 0x10, 0x0, 0x0, 0x6, &(0x7f0000000c40)=[r2], &(0x7f0000000c80)=[{0x2, 0x4, 0x5, 0x6}, {0x4, 0x2, 0x3, 0x3}, {0x4, 0x3, 0xe}, {0x0, 0x5, 0xd, 0x8}, {0x3, 0x1, 0xb}, {0x5, 0x5, 0x9, 0x4}], 0x10, 0x10001, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000e80)={0x19, 0x16, &(0x7f0000000280)=@raw=[@func, @exit, @map_fd={0x18, 0x9, 0x1, 0x0, r0}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}, @func={0x85, 0x0, 0x1, 0x0, 0x1}, @jmp={0x5, 0x0, 0xd, 0x2, 0x2}, @jmp={0x5, 0x0, 0x4, 0x7, 0x2, 0xc, 0xfffffffffffffff0}, @call={0x85, 0x0, 0x0, 0xae}, @generic={0x4, 0x8, 0x0, 0x7}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xc}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}], &(0x7f0000000040)='syzkaller\x00', 0x2, 0xf6, &(0x7f0000000340)=""/246, 0x40f00, 0x20, '\x00', r3, @fallback=0x26, r2, 0x8, &(0x7f0000000200)={0x6, 0x5}, 0x8, 0x10, &(0x7f0000000500)={0x5, 0x10, 0x7fffffff, 0xfffffffa}, 0x10, 0xffffffffffffffff, r7, 0xa, 0x0, &(0x7f0000000dc0)=[{0x0, 0x4, 0x6, 0x5}, {0x0, 0x5, 0xf, 0xa}, {0x5, 0x4, 0x8, 0x7}, {0x0, 0x3, 0x2, 0x3}, {0x2, 0x1, 0x8, 0xc}, {0x5, 0x1, 0x8, 0x4}, {0x0, 0x1, 0xd, 0xa}, {0x0, 0x3, 0x2, 0x1}, {0x1, 0x5, 0x8, 0x2}, {0x3, 0x4, 0xd}], 0x10, 0x2, @void, @value}, 0x94)
write$binfmt_script(r2, &(0x7f00000004c0), 0x208e24b)

28.409407388s ago: executing program 6 (id=4560):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r0, 0xffffffffffffffff, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
syz_open_procfs(0x0, &(0x7f0000000580)='mountinfo\x00')
epoll_create1(0x0)
r1 = io_uring_setup(0x203c, &(0x7f00000000c0)={0x0, 0xd4b5, 0x2, 0x3})
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_io_uring_setup(0xb4e, &(0x7f0000000240)={0x0, 0xf92c, 0x10100, 0x12000000, 0x0, 0x0, r1}, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0xb, 0x0, {0x0, 0x0, r1}})
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000001c0))
write$UHID_CREATE2(r5, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r5, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r2, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

13.375320668s ago: executing program 44 (id=4560):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r0, 0xffffffffffffffff, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
syz_open_procfs(0x0, &(0x7f0000000580)='mountinfo\x00')
epoll_create1(0x0)
r1 = io_uring_setup(0x203c, &(0x7f00000000c0)={0x0, 0xd4b5, 0x2, 0x3})
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_io_uring_setup(0xb4e, &(0x7f0000000240)={0x0, 0xf92c, 0x10100, 0x12000000, 0x0, 0x0, r1}, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0xb, 0x0, {0x0, 0x0, r1}})
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000001c0))
write$UHID_CREATE2(r5, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r5, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r2, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

1.376732113s ago: executing program 3 (id=5039):
r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8)
recvfrom$x25(r0, &(0x7f0000000640)=""/4096, 0x1000, 0x40010000, &(0x7f0000000040), 0x12)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r1, &(0x7f00000003c0)={0xa, 0x0, 0x1000000, @mcast2, 0x5}, 0x1c)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000240)='batadv0\x00', 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
write$cgroup_int(r0, &(0x7f00000001c0)=0x8, 0x12)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{r4}, &(0x7f00000005c0), &(0x7f0000000600)}, 0x20)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01080000000000000000010000000900010073797a300000000078000000090a010400000000000000000100000008000a40000000000900020073797a30000000000900010073797a300000000008000540000000213c0011800a0001"], 0xc0}}, 0x0)

1.247085044s ago: executing program 3 (id=5044):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
unshare(0x2c060000)
unshare(0x2c020400)

1.214467195s ago: executing program 3 (id=5045):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000280)={'batadv0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r2}}, 0x24}}, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010003b1500"/19, @ANYRES32=r2, @ANYBLOB="0000000000000000280012800a000100767863616e000000180002"], 0x48}}, 0x0)

1.074146465s ago: executing program 7 (id=5049):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000400)='block_bio_remap\x00', r0}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = dup(r2)
getsockname$packet(r3, 0x0, &(0x7f0000001540))
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$PPPIOCDISCONN(r3, 0x7439)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEAUTHENTICATE(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)={0x1c, r5, 0xfc5, 0x0, 0x0, {{0x11}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x8, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r6, <r7=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r7}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file2\x00', 0x0, &(0x7f0000000240)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x80000001}}, {@debug}, {@i_version}, {@init_itable_val={'init_itable', 0x3d, 0x4}}, {@grpquota}, {@barrier}, {@dioread_nolock}]}, 0x25, 0x4b6, &(0x7f0000000540)="$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")
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021940000000c0a01030000000000000000070000000900020073797a31000000000900010073797a30000000006800038064000080080003400000000258000b80200001800a00010071756f7461"], 0x118}}, 0x0)

1.032576595s ago: executing program 3 (id=5052):
r0 = socket(0x10, 0x803, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{0x1, <r1=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000340)}, 0x20)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000580)={0x2, <r2=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0xa, 0x5, &(0x7f0000000680)=@raw=[@tail_call={{0x18, 0x2, 0x1, 0x0, r1}}], &(0x7f0000000080)='GPL\x00', 0x80020000, 0xfffffffffffffd24, &(0x7f000000cf3d)=""/195, 0x0, 0x72, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'ip6gretap0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=@newqdisc={0x120, 0x24, 0x4ee4e6a52ff56541, 0x0, 0xfffffffd, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}, {0x0, 0xe}}, [@TCA_STAB={0xfc, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x6, 0x7, 0x8, 0x0, 0x1, 0xffff1475, 0x4, 0x8}}, {0x14, 0x2, [0x61a, 0x400, 0xec0, 0xc84, 0x7, 0x3, 0x4, 0x0]}}, {{0x1c, 0x1, {0x62, 0x4, 0x7, 0x5, 0x1, 0x4, 0x1ff, 0x2}}, {0x8, 0x2, [0x7ff, 0x5]}}, {{0x1c, 0x1, {0xf2, 0x0, 0x4, 0x80000001, 0x0, 0x4, 0x3, 0x5}}, {0xe, 0x2, [0x841c, 0x81, 0x5b7e, 0xb, 0x81]}}, {{0x1c, 0x1, {0x7, 0x9, 0x9, 0xc, 0x2, 0xfff, 0x7, 0x7}}, {0x12, 0x2, [0x8, 0x4, 0x0, 0x6, 0xca, 0x10, 0x2]}}, {{0x1c, 0x1, {0x3, 0x57, 0x1844, 0x3, 0x1, 0xbb, 0x37a, 0x1}}, {0x6, 0x2, [0x4]}}, {{0x1c, 0x1, {0x8, 0x2, 0x8001, 0x1b6, 0x0, 0xbc7f9b02, 0x1, 0x2}}, {0x8, 0x2, [0xfff9, 0x9]}}]}]}, 0x120}}, 0x20008804)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
pipe2$9p(&(0x7f0000000000), 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xb, &(0x7f0000000c00)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702504000000002020207b1af8ff00000000bfa100000000000007011a00f8ffffffb702000008000000b70300000000008385000000000000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000006c0)='./binderfs2/binder0\x00', 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000100)='./file0\x00', 0xfb36b7c5edb7f4c7, 0x0, 0x1, 0x0, &(0x7f0000000000))
mount$tmpfs(0x0, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0)={[{@nr_blocks={'nr_blocks', 0x3d, [0x35]}}]})
chdir(&(0x7f0000000140)='./file0\x00')
open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
r7 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
ftruncate(r7, 0x81fd)
write$binfmt_misc(r6, &(0x7f0000000000), 0xfffffecc)

819.129026ms ago: executing program 7 (id=5060):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000a850000000f000000c50000009e00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00')
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000d00)={0x3, 0x3, &(0x7f0000000a80)=ANY=[@ANYBLOB="1850000000000008000000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140), 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'veth1_to_hsr\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=@newqdisc={0x50, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x20, 0x2, {{}, [@TCA_NETEM_LOSS={0x4, 0xd}]}}}]}, 0x50}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000300)={'veth0_to_hsr\x00', <r5=>0x0})
r6 = socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
sendmsg$nl_route(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="2000000011000100000000000000002eeed88696", @ANYRES32=r5], 0x20}}, 0x0)

668.858617ms ago: executing program 4 (id=5062):
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
unshare(0x2c060000)
unshare(0x2c020400)

619.134367ms ago: executing program 9 (id=5063):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r3=>0x0})
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x103101, 0x0)
r5 = perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x9, 0xee2d}, 0x0, 0x9, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$TIOCVHANGUP(r4, 0x5437, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000700)=ANY=[@ANYBLOB="4000000010000305000020000000000000000000", @ANYRES32=r5, @ANYRESDEC=r0, @ANYRES32=r1, @ANYBLOB="0355d143a4bc780ced0ed2a7ba4f08008970fb31c6d95d56110100", @ANYRES32=r3, @ANYBLOB], 0x40}}, 0x44)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0xa, 0xc, &(0x7f0000000cc0)=ANY=[], 0x0, 0x1, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3000, @void, @value}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
mremap(&(0x7f00004f3000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f0000703000/0x4000)=nil)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

517.080447ms ago: executing program 4 (id=5064):
sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={0x0, 0x58}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_AD_SELECT={0x5, 0x16, 0x1}]}}}]}, 0x3c}}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x0, &(0x7f0000003700)={0x77359400})

496.484508ms ago: executing program 7 (id=5065):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f00000000c0)={'batadv_slave_0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="0000000000000000140012800b0001006d61637365630000040002800800", @ANYRES32=r1], 0x48}}, 0x0)
r2 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r2, &(0x7f0000000000)='z', 0x10a7a, 0x800, 0x0, 0x4b6ae4f95a5de35b)

436.834088ms ago: executing program 0 (id=5066):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e000000850000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x9)
io_setup(0x3, &(0x7f0000000340))

436.682298ms ago: executing program 4 (id=5067):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), r1)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa)
sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES32=r2, @ANYBLOB="0000400000000002280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="2800000014002101000000000000000002200000", @ANYRES32=r2, @ANYBLOB="08000400ffffffff08000200e0"], 0x28}}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="280000001400212100000000000000000200"], 0x28}}, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@ipv4_deladdr={0x18, 0x15, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r5}}, 0x18}}, 0x0)

401.601148ms ago: executing program 0 (id=5068):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
get_robust_list(0x0, &(0x7f0000000500)=0x0, &(0x7f0000000540))

401.210588ms ago: executing program 4 (id=5069):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000a850000000f000000c50000009e00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00')
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000d00)={0x3, 0x3, &(0x7f0000000a80)=ANY=[@ANYBLOB="1850000000000008000000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140), 0x0, 0x10, 0x0, @void, @value}, 0x90)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0xfc, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xfffffffffffff840, 0x3}, 0x0, 0x1, 0x9, 0x0, 0x0, 0x1000}, 0x0, 0x3, 0xffffffffffffffff, 0x8)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'veth1_to_hsr\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=@newqdisc={0x50, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x20, 0x2, {{}, [@TCA_NETEM_LOSS={0x4, 0xd}]}}}]}, 0x50}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000300)={'veth0_to_hsr\x00', <r5=>0x0})
r6 = socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
sendmsg$nl_route(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="2000000011000100000000000000002eeed88696", @ANYRES32=r5], 0x20}}, 0x0)

360.544329ms ago: executing program 0 (id=5070):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
get_robust_list(0x0, &(0x7f0000000500)=0x0, &(0x7f0000000540))

360.140519ms ago: executing program 7 (id=5071):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe2b, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000001c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$PIO_UNIMAPCLR(r3, 0x4b68, 0x0)

336.678069ms ago: executing program 4 (id=5072):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000780)={[{@grpquota}, {@nombcache}, {@minixdf}]}, 0x1, 0x502, &(0x7f0000000fc0)="$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")
truncate(&(0x7f0000000040)='./file1\x00', 0x0)

324.401019ms ago: executing program 0 (id=5073):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x22004002, &(0x7f0000000200)={[{@jqfmt_vfsold}, {@nojournal_checksum}, {@data_err_abort}, {@errors_continue}, {@nouid32}, {@grpjquota, 0x2e}], [{@subj_type={'subj_type', 0x3d, '\xe1[]*:['}}]}, 0x81, 0x46c, &(0x7f00000004c0)="$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")
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x22, &(0x7f0000000140), 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2002, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x84}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
getdents(0xffffffffffffffff, 0x0, 0x58)

299.032098ms ago: executing program 7 (id=5074):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x10e, &(0x7f0000000280)={[{@discard}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2a}}, {@stripe={'stripe', 0x3d, 0x8}}, {@orlov}, {@dioread_nolock}]}, 0x4, 0x45b, &(0x7f00000010c0)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x34, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x4, 0x0, 0x0, 0x10001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
creat(&(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)={0x20, 0x2, 0x1, 0x401, 0x0, 0x0, {0x1, 0x0, 0x9}, [@CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x200}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40040}, 0x20000840)
perf_event_open(&(0x7f0000002180)={0x2, 0x80, 0x4f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket(0x2a, 0x2, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x113, r2, 0x0)

298.724268ms ago: executing program 9 (id=5075):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x22004002, &(0x7f0000000200)={[{@jqfmt_vfsold}, {@nojournal_checksum}, {@data_err_abort}, {@errors_continue}, {@nouid32}, {@grpjquota, 0x2e}], [{@subj_type={'subj_type', 0x3d, '\xe1[]*:['}}]}, 0x81, 0x46c, &(0x7f00000004c0)="$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")
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x22, &(0x7f0000000140), 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2002, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x84}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
getdents(0xffffffffffffffff, 0x0, 0x58)

185.461989ms ago: executing program 9 (id=5076):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20000000, &(0x7f00000001c0)={0xa, 0x4e21, 0xfaae, @loopback}, 0x1c)

160.072449ms ago: executing program 3 (id=5077):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)=@newsa={0x190, 0x10, 0x713, 0x0, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private1}, {@in6=@remote, 0x0, 0x32}, @in6=@remote, {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_crypt={0x51, 0x2, {{'ecb(cipher_null)\x00'}, 0x48, "23e9e793d6f205e8fd"}}, @algo_auth_trunc={0x4c, 0x14, {{'sha1\x00'}, 0x0, 0x2}}]}, 0x190}}, 0x0)

115.38766ms ago: executing program 9 (id=5078):
sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={0x0, 0x58}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_AD_SELECT={0x5, 0x16, 0x1}]}}}]}, 0x3c}}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x0, &(0x7f0000003700)={0x77359400})

115.09185ms ago: executing program 4 (id=5079):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000780)={[{@grpquota}, {@nombcache}, {@minixdf}]}, 0x1, 0x502, &(0x7f0000000fc0)="$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")
truncate(&(0x7f0000000040)='./file1\x00', 0x0)

73.3015ms ago: executing program 3 (id=5080):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x55, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2, 0x0, 0x2000100}, 0x18)
sendto$inet6(r0, &(0x7f00000002c0)="9e", 0x1a000, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

73.10094ms ago: executing program 9 (id=5081):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
get_robust_list(0x0, &(0x7f0000000500)=0x0, &(0x7f0000000540))

72.94713ms ago: executing program 0 (id=5082):
sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={0x0, 0x58}}, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000006c0)={0x48, 0x3, 0x8, 0x101, 0x0, 0x0, {0x5, 0x0, 0x8}, [@CTA_TIMEOUT_DATA={0x14, 0x4, 0x0, 0x1, @icmpv6=[@CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x6}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0xf}]}, @CTA_TIMEOUT_DATA={0x14, 0x4, 0x0, 0x1, @icmpv6=[@CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x7fffffff}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x2d}]}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x48}, 0x1, 0x0, 0x0, 0x801}, 0x8004)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b000000000000", 0x10, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x1c}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0xbe8}, {&(0x7f00000007c0)=""/154, 0x8}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

52.09785ms ago: executing program 7 (id=5083):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e000000850000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x9)
link(&(0x7f0000001240)='./file0\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1900000004000000080000000800000000000000", @ANYRES32, @ANYBLOB='\x00\b\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\n\x00\x00'], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r4}, 0x10)
io_setup(0x3, &(0x7f0000000340))
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000680), &(0x7f0000000140), 0x5}, 0x38)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r6, 0x0, 0x0, 0x20000000, &(0x7f00000001c0)={0xa, 0x4e21, 0xfaae, @loopback}, 0x1c)

127.07µs ago: executing program 9 (id=5084):
r0 = socket(0x10, 0x803, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{0x1, <r1=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000340)}, 0x20)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000580)={0x2, <r2=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0xa, 0x5, &(0x7f0000000680)=@raw=[@tail_call={{0x18, 0x2, 0x1, 0x0, r1}}], &(0x7f0000000080)='GPL\x00', 0x80020000, 0xfffffffffffffd24, &(0x7f000000cf3d)=""/195, 0x0, 0x72, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'ip6gretap0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=@newqdisc={0x120, 0x24, 0x4ee4e6a52ff56541, 0x0, 0xfffffffd, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}, {0x0, 0xe}}, [@TCA_STAB={0xfc, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x6, 0x7, 0x8, 0x0, 0x1, 0xffff1475, 0x4, 0x8}}, {0x14, 0x2, [0x61a, 0x400, 0xec0, 0xc84, 0x7, 0x3, 0x4, 0x0]}}, {{0x1c, 0x1, {0x62, 0x4, 0x7, 0x5, 0x1, 0x4, 0x1ff, 0x2}}, {0x8, 0x2, [0x7ff, 0x5]}}, {{0x1c, 0x1, {0xf2, 0x0, 0x4, 0x80000001, 0x0, 0x4, 0x3, 0x5}}, {0xe, 0x2, [0x841c, 0x81, 0x5b7e, 0xb, 0x81]}}, {{0x1c, 0x1, {0x7, 0x9, 0x9, 0xc, 0x2, 0xfff, 0x7, 0x7}}, {0x12, 0x2, [0x8, 0x4, 0x0, 0x6, 0xca, 0x10, 0x2]}}, {{0x1c, 0x1, {0x3, 0x57, 0x1844, 0x3, 0x1, 0xbb, 0x37a, 0x1}}, {0x6, 0x2, [0x4]}}, {{0x1c, 0x1, {0x8, 0x2, 0x8001, 0x1b6, 0x0, 0xbc7f9b02, 0x1, 0x2}}, {0x8, 0x2, [0xfff9, 0x9]}}]}]}, 0x120}}, 0x20008804)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
pipe2$9p(&(0x7f0000000000), 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xb, &(0x7f0000000c00)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702504000000002020207b1af8ff00000000bfa100000000000007011a00f8ffffffb702000008000000b70300000000008385000000000000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000006c0)='./binderfs2/binder0\x00', 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000100)='./file0\x00', 0xfb36b7c5edb7f4c7, 0x0, 0x1, 0x0, &(0x7f0000000000))
mount$tmpfs(0x0, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0)={[{@nr_blocks={'nr_blocks', 0x3d, [0x35]}}]})
chdir(&(0x7f0000000140)='./file0\x00')
open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
r7 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
ftruncate(r7, 0x81fd)
write$binfmt_misc(r6, &(0x7f0000000000), 0xfffffecc)

0s ago: executing program 0 (id=5085):
r0 = socket$inet(0x2, 0x200000003, 0x84)
getsockopt$inet_buf(r0, 0x0, 0x50, 0x0, &(0x7f00000000c0))

kernel console output (not intermixed with test programs):

] netlink: 36 bytes leftover after parsing attributes in process `syz.6.4170'.
[  283.353996][T17491] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4170'.
[  283.363071][T17491] netlink: 36 bytes leftover after parsing attributes in process `syz.6.4170'.
[  283.369431][T17493] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17493 comm=syz.0.4171
[  283.403332][T17494] loop7: detected capacity change from 0 to 2048
[  283.429821][T17500] program syz.6.4172 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  283.549895][T17525] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  283.711962][T17544] loop7: detected capacity change from 0 to 2048
[  283.837820][T17551] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17551 comm=syz.4.4185
[  284.060971][T17563] loop9: detected capacity change from 0 to 128
[  284.412999][T17618] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17618 comm=syz.7.4202
[  284.432611][T17612] loop0: detected capacity change from 0 to 1024
[  284.441279][T17612] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  284.560264][T17636] xt_hashlimit: size too large, truncated to 1048576
[  284.731756][T17652] program syz.7.4210 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  284.814252][T17665] random: crng reseeded on system resumption
[  284.943144][T17677] loop9: detected capacity change from 0 to 1024
[  284.954085][T17683] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17683 comm=syz.7.4215
[  284.970401][T17677] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  285.281795][T17719] loop7: detected capacity change from 0 to 2048
[  285.306662][T17719] EXT4-fs: inline encryption not supported
[  285.329495][T17729] program syz.4.4230 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  285.340266][T17719] EXT4-fs (loop7): Invalid log block size: 8
[  285.463065][T17742] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17742 comm=syz.4.4234
[  285.499952][T17742] netlink: 'syz.4.4234': attribute type 1 has an invalid length.
[  285.557373][T17763] program syz.7.4242 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  285.580120][T17742] 8021q: adding VLAN 0 to HW filter on device bond2
[  285.604000][T17764] vlan2: entered promiscuous mode
[  285.609134][T17764] bond2: entered promiscuous mode
[  285.614515][T17764] vlan2: entered allmulticast mode
[  285.619775][T17764] bond2: entered allmulticast mode
[  285.697191][T17771] bridge0: port 2(bridge_slave_1) entered disabled state
[  285.841657][T17791] loop0: detected capacity change from 0 to 2048
[  285.843397][T17809] loop9: detected capacity change from 0 to 128
[  285.909007][T17816] program syz.6.4257 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  285.933539][T17820] loop7: detected capacity change from 0 to 128
[  285.969447][T17820] program syz.7.4259 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  285.981052][T17829] random: crng reseeded on system resumption
[  286.139918][T17849] program syz.0.4270 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  286.219234][T17861] program syz.7.4273 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  286.238092][T17859] loop0: detected capacity change from 0 to 2048
[  286.264516][T17867] loop6: detected capacity change from 0 to 128
[  286.279640][T17867] program syz.6.4274 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  286.412415][T17879] program syz.6.4277 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  286.483174][T17892] program syz.7.4281 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  286.606648][T17907] loop6: detected capacity change from 0 to 2048
[  286.622939][T17910] loop4: detected capacity change from 0 to 2048
[  286.645908][T17917] loop7: detected capacity change from 0 to 128
[  286.683686][T17907] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[  286.684616][T17917] program syz.7.4289 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  286.709923][T17907] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[  286.770048][T17936] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17936 comm=syz.9.4293
[  286.783184][T17910] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[  286.808004][T17910] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[  286.819767][T17939] program syz.7.4295 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  286.828697][T17941] loop9: detected capacity change from 0 to 512
[  286.848996][T17941] EXT4-fs: Ignoring removed orlov option
[  286.873681][T17941] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  286.935349][T17953] loop0: detected capacity change from 0 to 256
[  286.942141][T17953] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  286.956919][T17941] EXT4-fs (loop9): orphan cleanup on readonly fs
[  286.968190][T17959] program syz.7.4305 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  286.981506][T17953] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  286.988364][T17941] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.4299: bg 0: block 248: padding at end of block bitmap is not set
[  287.015557][T17963] loop6: detected capacity change from 0 to 512
[  287.040939][T17941] __quota_error: 359 callbacks suppressed
[  287.040956][T17941] Quota error (device loop9): write_blk: dquota write failed
[  287.054292][T17941] Quota error (device loop9): qtree_write_dquot: Error -117 occurred while creating quota
[  287.064414][T17941] EXT4-fs error (device loop9): ext4_acquire_dquot:6938: comm syz.9.4299: Failed to acquire dquot type 1
[  287.080322][T17963] EXT4-fs (loop6): Cannot turn on journaled quota: type 0: error -2
[  287.090040][T17941] EXT4-fs (loop9): 1 truncate cleaned up
[  287.113164][T17963] EXT4-fs (loop6): 1 truncate cleaned up
[  287.114611][T17941] EXT4-fs: Ignoring removed orlov option
[  287.141850][T17974] loop7: detected capacity change from 0 to 2048
[  287.142541][T17941] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  287.166085][T17941] EXT4-fs (loop9): warning: mounting fs with errors, running e2fsck is recommended
[  287.186660][T17941] EXT4-fs error (device loop9): __ext4_remount:6749: comm syz.9.4299: Abort forced by user
[  287.199476][T17941] EXT4-fs (loop9): Remounting filesystem read-only
[  287.206078][T17941] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  287.217012][T17941] ext4 filesystem being remounted at /463/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  287.225409][T17986] netlink: 'syz.6.4313': attribute type 1 has an invalid length.
[  287.244842][T17986] 8021q: adding VLAN 0 to HW filter on device bond2
[  287.271401][T17990] program syz.0.4315 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  287.281532][T17974] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[  287.292813][T17974] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[  287.424937][   T29] audit: type=1326 audit(1732090603.419:26796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18012 comm="syz.9.4325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c748ce759 code=0x7ffc0000
[  287.460180][T18020] netlink: 'syz.0.4327': attribute type 1 has an invalid length.
[  287.462331][   T29] audit: type=1326 audit(1732090603.449:26797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18012 comm="syz.9.4325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f7c748ce759 code=0x7ffc0000
[  287.491677][   T29] audit: type=1326 audit(1732090603.449:26798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18012 comm="syz.9.4325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c748ce759 code=0x7ffc0000
[  287.514178][T18020] 8021q: adding VLAN 0 to HW filter on device bond1
[  287.515301][   T29] audit: type=1326 audit(1732090603.449:26799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18012 comm="syz.9.4325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c748ce759 code=0x7ffc0000
[  287.524951][T18024] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18024 comm=syz.6.4329
[  287.545659][   T29] audit: type=1326 audit(1732090603.449:26800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18012 comm="syz.9.4325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c748ce759 code=0x7ffc0000
[  287.582053][   T29] audit: type=1326 audit(1732090603.449:26801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18012 comm="syz.9.4325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c748ce759 code=0x7ffc0000
[  287.605697][   T29] audit: type=1326 audit(1732090603.449:26802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18012 comm="syz.9.4325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c748ce759 code=0x7ffc0000
[  287.629341][   T29] audit: type=1326 audit(1732090603.449:26803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18012 comm="syz.9.4325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f7c748ce759 code=0x7ffc0000
[  287.713648][T18043] loop6: detected capacity change from 0 to 128
[  287.758448][T18047] loop0: detected capacity change from 0 to 2048
[  287.773580][T18049] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18049 comm=syz.6.4339
[  287.833905][T18060] netlink: 'syz.7.4342': attribute type 1 has an invalid length.
[  287.852358][T18060] 8021q: adding VLAN 0 to HW filter on device bond1
[  287.936444][T18077] random: crng reseeded on system resumption
[  288.018334][T18084] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18084 comm=syz.0.4350
[  288.080766][T18093] loop4: detected capacity change from 0 to 128
[  288.111173][T18093] program syz.4.4351 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  288.207801][T18113] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18113 comm=syz.0.4357
[  288.223848][T18113] netlink: 'syz.0.4357': attribute type 1 has an invalid length.
[  288.238257][T18113] 8021q: adding VLAN 0 to HW filter on device bond2
[  288.425635][T18151] __nla_validate_parse: 12 callbacks suppressed
[  288.425650][T18151] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4369'.
[  288.501380][T18162] selinux_netlink_send: 1 callbacks suppressed
[  288.501454][T18162] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18162 comm=syz.0.4375
[  288.531984][T18166] random: crng reseeded on system resumption
[  288.672719][T18185] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18185 comm=syz.7.4382
[  288.685986][T18185] netlink: 'syz.7.4382': attribute type 1 has an invalid length.
[  288.710220][T18185] 8021q: adding VLAN 0 to HW filter on device bond2
[  288.753524][T18185] vlan2: entered promiscuous mode
[  288.754018][T18199] loop0: detected capacity change from 0 to 128
[  288.758644][T18185] bond2: entered promiscuous mode
[  288.770167][T18185] vlan2: entered allmulticast mode
[  288.775332][T18185] bond2: entered allmulticast mode
[  288.802966][T18199] program syz.0.4386 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  288.841588][T18208] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18208 comm=syz.7.4388
[  288.923285][T18212] random: crng reseeded on system resumption
[  289.042108][T18235] random: crng reseeded on system resumption
[  289.120773][T18245] loop9: detected capacity change from 0 to 128
[  289.133575][T18245] program syz.9.4401 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  289.278737][T18270] FAULT_INJECTION: forcing a failure.
[  289.278737][T18270] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  289.291936][T18270] CPU: 0 UID: 0 PID: 18270 Comm: syz.4.4409 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  289.299715][T18275] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4407'.
[  289.302475][T18270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  289.302488][T18270] Call Trace:
[  289.302505][T18270]  <TASK>
[  289.302511][T18270]  dump_stack_lvl+0xf2/0x150
[  289.302540][T18270]  dump_stack+0x15/0x20
[  289.302575][T18270]  should_fail_ex+0x223/0x230
[  289.302609][T18270]  should_fail+0xb/0x10
[  289.302638][T18270]  should_fail_usercopy+0x1a/0x20
[  289.314787][T18276] loop9: detected capacity change from 0 to 128
[  289.321628][T18270]  _copy_from_user+0x1e/0xb0
[  289.361626][T18270]  copy_msghdr_from_user+0x54/0x2a0
[  289.366856][T18270]  ? __fget_files+0x17c/0x1c0
[  289.371636][T18270]  __sys_sendmsg+0x13e/0x230
[  289.376266][T18270]  __x64_sys_sendmsg+0x46/0x50
[  289.381134][T18270]  x64_sys_call+0x2734/0x2dc0
[  289.385961][T18270]  do_syscall_64+0xc9/0x1c0
[  289.390495][T18270]  ? clear_bhb_loop+0x55/0xb0
[  289.395185][T18270]  ? clear_bhb_loop+0x55/0xb0
[  289.399933][T18270]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  289.405860][T18270] RIP: 0033:0x7fb23c6ce759
[  289.410285][T18270] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  289.429950][T18270] RSP: 002b:00007fb23b347038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  289.438656][T18270] RAX: ffffffffffffffda RBX: 00007fb23c885f80 RCX: 00007fb23c6ce759
[  289.446630][T18270] RDX: 0000000000000001 RSI: 00000000200002c0 RDI: 0000000000000004
[  289.454621][T18270] RBP: 00007fb23b347090 R08: 0000000000000000 R09: 0000000000000000
[  289.462599][T18270] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  289.470788][T18270] R13: 0000000000000000 R14: 00007fb23c885f80 R15: 00007ffe0786fd68
[  289.478771][T18270]  </TASK>
[  289.487543][T18275] bond3: entered promiscuous mode
[  289.492627][T18275] bond3: entered allmulticast mode
[  289.520422][T18275] 8021q: adding VLAN 0 to HW filter on device bond3
[  289.561887][T18276] program syz.9.4412 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  289.660745][T18308] loop9: detected capacity change from 0 to 128
[  289.674488][T18302] random: crng reseeded on system resumption
[  289.820768][T18329] program syz.0.4430 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  290.143959][T18375] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  290.154588][T18377] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18377 comm=syz.6.4443
[  290.169432][T18375] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  290.303352][T18393] random: crng reseeded on system resumption
[  290.380102][T18395] FAULT_INJECTION: forcing a failure.
[  290.380102][T18395] name failslab, interval 1, probability 0, space 0, times 1
[  290.392904][T18395] CPU: 0 UID: 0 PID: 18395 Comm: syz.9.4451 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  290.403412][T18395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  290.413668][T18395] Call Trace:
[  290.417035][T18395]  <TASK>
[  290.420034][T18395]  dump_stack_lvl+0xf2/0x150
[  290.424643][T18395]  dump_stack+0x15/0x20
[  290.428859][T18395]  should_fail_ex+0x223/0x230
[  290.433585][T18395]  ? getname_flags+0x81/0x3b0
[  290.438381][T18395]  should_failslab+0x8f/0xb0
[  290.443023][T18395]  kmem_cache_alloc_noprof+0x4c/0x290
[  290.448505][T18395]  getname_flags+0x81/0x3b0
[  290.453100][T18395]  getname+0x17/0x20
[  290.457016][T18395]  do_sys_openat2+0x67/0x120
[  290.461647][T18395]  __x64_sys_openat+0xf3/0x120
[  290.466501][T18395]  x64_sys_call+0x2b30/0x2dc0
[  290.471198][T18395]  do_syscall_64+0xc9/0x1c0
[  290.475770][T18395]  ? clear_bhb_loop+0x55/0xb0
[  290.480497][T18395]  ? clear_bhb_loop+0x55/0xb0
[  290.485243][T18395]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.491322][T18395] RIP: 0033:0x7f7c748cd0f0
[  290.495755][T18395] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 19 8f 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 6c 8f 02 00 8b 44
[  290.515377][T18395] RSP: 002b:00007f7c73540f60 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  290.523843][T18395] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f7c748cd0f0
[  290.531843][T18395] RDX: 0000000000000000 RSI: 00007f7c74941876 RDI: 00000000ffffff9c
[  290.539814][T18395] RBP: 00007f7c74941876 R08: 0000000000000000 R09: 0000000000000000
[  290.547787][T18395] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  290.555808][T18395] R13: 0000000000000001 R14: 00007f7c74a85f80 R15: 00007ffca782e7e8
[  290.563824][T18395]  </TASK>
[  290.608931][T18401] loop9: detected capacity change from 0 to 1024
[  290.615708][T18401] EXT4-fs: Ignoring removed orlov option
[  290.621425][T18401] EXT4-fs: Ignoring removed nomblk_io_submit option
[  290.650079][T18401] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4453'.
[  290.659010][T18401] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4453'.
[  290.668078][T18401] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4453'.
[  290.679924][T18401] netlink: 180 bytes leftover after parsing attributes in process `syz.9.4453'.
[  290.689152][T18401] netlink: 56 bytes leftover after parsing attributes in process `syz.9.4453'.
[  290.732838][T18409] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4455'.
[  290.742451][T18409] netlink: 62 bytes leftover after parsing attributes in process `syz.9.4455'.
[  290.791902][T18415] FAULT_INJECTION: forcing a failure.
[  290.791902][T18415] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  290.805091][T18415] CPU: 0 UID: 0 PID: 18415 Comm: syz.9.4458 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  290.815562][T18415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  290.825637][T18415] Call Trace:
[  290.828923][T18415]  <TASK>
[  290.831868][T18415]  dump_stack_lvl+0xf2/0x150
[  290.833920][T18421] random: crng reseeded on system resumption
[  290.836490][T18415]  dump_stack+0x15/0x20
[  290.836566][T18415]  should_fail_ex+0x223/0x230
[  290.851393][T18415]  should_fail+0xb/0x10
[  290.855648][T18415]  should_fail_usercopy+0x1a/0x20
[  290.860727][T18415]  _copy_from_user+0x1e/0xb0
[  290.865420][T18415]  inet6_ioctl+0xf2/0x190
[  290.869768][T18415]  sock_do_ioctl+0x81/0x260
[  290.874339][T18415]  sock_ioctl+0x46a/0x640
[  290.878689][T18415]  ? __pfx_sock_ioctl+0x10/0x10
[  290.883649][T18415]  __se_sys_ioctl+0xc9/0x140
[  290.888265][T18415]  __x64_sys_ioctl+0x43/0x50
[  290.892875][T18415]  x64_sys_call+0x1690/0x2dc0
[  290.897652][T18415]  do_syscall_64+0xc9/0x1c0
[  290.902177][T18415]  ? clear_bhb_loop+0x55/0xb0
[  290.906878][T18415]  ? clear_bhb_loop+0x55/0xb0
[  290.911608][T18415]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.917566][T18415] RIP: 0033:0x7f7c748ce759
[  290.922013][T18415] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  290.941795][T18415] RSP: 002b:00007f7c73541038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  290.950233][T18415] RAX: ffffffffffffffda RBX: 00007f7c74a85f80 RCX: 00007f7c748ce759
[  290.958228][T18415] RDX: 0000000020000040 RSI: 000000000000890b RDI: 0000000000000003
[  290.966281][T18415] RBP: 00007f7c73541090 R08: 0000000000000000 R09: 0000000000000000
[  290.974266][T18415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  290.982290][T18415] R13: 0000000000000000 R14: 00007f7c74a85f80 R15: 00007ffca782e7e8
[  290.990277][T18415]  </TASK>
[  291.010272][T18425] netlink: 132 bytes leftover after parsing attributes in process `syz.4.4462'.
[  291.041644][T18428] bond3: entered promiscuous mode
[  291.046874][T18428] bond3: entered allmulticast mode
[  291.052777][T18428] 8021q: adding VLAN 0 to HW filter on device bond3
[  291.090426][T18441] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18441 comm=syz.4.4469
[  291.168132][ T6388] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  291.178283][ T6388] hid-generic 0000:0000:0000.000E: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  291.211726][T18459] FAULT_INJECTION: forcing a failure.
[  291.211726][T18459] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  291.224945][T18459] CPU: 0 UID: 0 PID: 18459 Comm: syz.0.4477 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  291.235402][T18459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  291.245489][T18459] Call Trace:
[  291.248785][T18459]  <TASK>
[  291.251770][T18459]  dump_stack_lvl+0xf2/0x150
[  291.256390][T18459]  dump_stack+0x15/0x20
[  291.260588][T18459]  should_fail_ex+0x223/0x230
[  291.265407][T18459]  should_fail+0xb/0x10
[  291.269600][T18459]  should_fail_usercopy+0x1a/0x20
[  291.274652][T18459]  _copy_from_user+0x1e/0xb0
[  291.279357][T18459]  get_timespec64+0x49/0x140
[  291.284070][T18459]  __se_sys_ppoll+0x76/0x1f0
[  291.288767][T18459]  __x64_sys_ppoll+0x67/0x80
[  291.293428][T18459]  x64_sys_call+0x2acc/0x2dc0
[  291.293770][T18467] random: crng reseeded on system resumption
[  291.298164][T18459]  do_syscall_64+0xc9/0x1c0
[  291.298198][T18459]  ? clear_bhb_loop+0x55/0xb0
[  291.313371][T18459]  ? clear_bhb_loop+0x55/0xb0
[  291.318061][T18459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  291.323968][T18459] RIP: 0033:0x7f648e27e759
[  291.328401][T18459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  291.348120][T18459] RSP: 002b:00007f648cef7038 EFLAGS: 00000246 ORIG_RAX: 000000000000010f
[  291.356615][T18459] RAX: ffffffffffffffda RBX: 00007f648e435f80 RCX: 00007f648e27e759
[  291.364597][T18459] RDX: 0000000020000300 RSI: 0000000000000001 RDI: 00000000200002c0
[  291.372641][T18459] RBP: 00007f648cef7090 R08: 0000000000000000 R09: 0000000000000000
[  291.380657][T18459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  291.388647][T18459] R13: 0000000000000000 R14: 00007f648e435f80 R15: 00007fff4c0ebcf8
[  291.396726][T18459]  </TASK>
[  291.424730][T18475] loop9: detected capacity change from 0 to 128
[  291.476308][    T8] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  291.485069][    T8] hid-generic 0000:0000:0000.000F: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  291.542403][T18480] capability: warning: `syz.0.4486' uses 32-bit capabilities (legacy support in use)
[  291.644864][T18499] sctp: [Deprecated]: syz.0.4494 (pid 18499) Use of int in maxseg socket option.
[  291.644864][T18499] Use struct sctp_assoc_value instead
[  291.717263][T18507] loop9: detected capacity change from 0 to 128
[  291.848347][T18520] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18520 comm=syz.7.4504
[  291.938068][T18534] loop9: detected capacity change from 0 to 512
[  291.951133][T18536] FAULT_INJECTION: forcing a failure.
[  291.951133][T18536] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  291.956787][T18534] EXT4-fs (loop9): Cannot turn on journaled quota: type 1: error -2
[  291.964377][T18536] CPU: 1 UID: 0 PID: 18536 Comm: syz.0.4507 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  291.973947][T18534] EXT4-fs warning (device loop9): ext4_block_to_path:107: block 3279945729 > max in inode 13
[  291.982669][T18536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  291.982688][T18536] Call Trace:
[  291.982696][T18536]  <TASK>
[  291.982705][T18536]  dump_stack_lvl+0xf2/0x150
[  291.994949][T18534] EXT4-fs warning (device loop9): ext4_block_to_path:107: block 3279945730 > max in inode 13
[  292.002942][T18536]  dump_stack+0x15/0x20
[  292.009776][T18534] EXT4-fs (loop9): 1 truncate cleaned up
[  292.013750][T18536]  should_fail_ex+0x223/0x230
[  292.038650][T18536]  should_fail+0xb/0x10
[  292.042863][T18536]  should_fail_usercopy+0x1a/0x20
[  292.047984][T18536]  _copy_from_user+0x1e/0xb0
[  292.052661][T18536]  copy_msghdr_from_user+0x54/0x2a0
[  292.057891][T18536]  ? __fget_files+0x17c/0x1c0
[  292.062659][T18536]  __sys_sendmsg+0x13e/0x230
[  292.067283][T18536]  __x64_sys_sendmsg+0x46/0x50
[  292.072079][T18536]  x64_sys_call+0x2734/0x2dc0
[  292.077152][T18536]  do_syscall_64+0xc9/0x1c0
[  292.081747][T18536]  ? clear_bhb_loop+0x55/0xb0
[  292.086453][T18536]  ? clear_bhb_loop+0x55/0xb0
[  292.091153][T18536]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  292.097070][T18536] RIP: 0033:0x7f648e27e759
[  292.101524][T18536] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  292.121317][T18536] RSP: 002b:00007f648ced6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  292.129746][T18536] RAX: ffffffffffffffda RBX: 00007f648e436058 RCX: 00007f648e27e759
[  292.137905][T18536] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000004
[  292.145936][T18536] RBP: 00007f648ced6090 R08: 0000000000000000 R09: 0000000000000000
[  292.153924][T18536] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  292.161927][T18536] R13: 0000000000000000 R14: 00007f648e436058 R15: 00007fff4c0ebcf8
[  292.169974][T18536]  </TASK>
[  292.266964][T18560] bond4: entered promiscuous mode
[  292.272058][T18560] bond4: entered allmulticast mode
[  292.277580][T18560] 8021q: adding VLAN 0 to HW filter on device bond4
[  292.742959][T18567] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18567 comm=syz.0.4516
[  292.757455][T18569] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  292.856512][   T29] kauditd_printk_skb: 172 callbacks suppressed
[  292.856531][   T29] audit: type=1326 audit(1732090608.859:26976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18583 comm="syz.7.4523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c319ae759 code=0x7ffc0000
[  292.857141][T18584] syz.7.4523[18584] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  292.862836][   T29] audit: type=1326 audit(1732090608.859:26977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18583 comm="syz.7.4523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c319ae759 code=0x7ffc0000
[  292.889181][T18584] syz.7.4523[18584] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  292.897721][   T29] audit: type=1326 audit(1732090608.859:26978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18583 comm="syz.7.4523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=35 compat=0 ip=0x7f6c319ae759 code=0x7ffc0000
[  292.924994][T18584] syz.7.4523[18584] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  292.932893][   T29] audit: type=1326 audit(1732090608.859:26979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18583 comm="syz.7.4523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c319ae759 code=0x7ffc0000
[  292.991738][   T29] audit: type=1326 audit(1732090608.859:26980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18583 comm="syz.7.4523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6c319ae759 code=0x7ffc0000
[  293.038507][T18590] random: crng reseeded on system resumption
[  293.074436][   T29] audit: type=1326 audit(1732090608.959:26981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18583 comm="syz.7.4523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c319ae759 code=0x7ffc0000
[  293.098157][   T29] audit: type=1326 audit(1732090608.959:26982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18583 comm="syz.7.4523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c319ae759 code=0x7ffc0000
[  293.121858][   T29] audit: type=1326 audit(1732090608.969:26983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18583 comm="syz.7.4523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6c319ae759 code=0x7ffc0000
[  293.145518][   T29] audit: type=1326 audit(1732090608.969:26984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18583 comm="syz.7.4523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c319ae759 code=0x7ffc0000
[  293.169198][   T29] audit: type=1326 audit(1732090608.989:26985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18583 comm="syz.7.4523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c319ae759 code=0x7ffc0000
[  293.210676][T18602] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  293.212544][T18604] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18604 comm=syz.4.4531
[  293.243657][T18607] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18607 comm=syz.7.4529
[  293.305579][T18618] FAULT_INJECTION: forcing a failure.
[  293.305579][T18618] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  293.318742][T18618] CPU: 1 UID: 0 PID: 18618 Comm: syz.7.4537 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  293.329110][T18620] vcan0: tx drop: invalid da for name 0x0000000000000002
[  293.329169][T18618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  293.346351][T18618] Call Trace:
[  293.349658][T18618]  <TASK>
[  293.352606][T18618]  dump_stack_lvl+0xf2/0x150
[  293.357312][T18618]  dump_stack+0x15/0x20
[  293.361525][T18618]  should_fail_ex+0x223/0x230
[  293.366238][T18618]  should_fail+0xb/0x10
[  293.368247][T18621] bond3: entered promiscuous mode
[  293.370415][T18618]  should_fail_usercopy+0x1a/0x20
[  293.375503][T18621] bond3: entered allmulticast mode
[  293.380713][T18618]  _copy_from_user+0x1e/0xb0
[  293.380742][T18618]  copy_msghdr_from_user+0x54/0x2a0
[  293.380774][T18618]  ? __fget_files+0x17c/0x1c0
[  293.388034][T18621] 8021q: adding VLAN 0 to HW filter on device bond3
[  293.390535][T18618]  __sys_sendmsg+0x13e/0x230
[  293.411650][T18618]  __x64_sys_sendmsg+0x46/0x50
[  293.416500][T18618]  x64_sys_call+0x2734/0x2dc0
[  293.421267][T18618]  do_syscall_64+0xc9/0x1c0
[  293.425802][T18618]  ? clear_bhb_loop+0x55/0xb0
[  293.430509][T18618]  ? clear_bhb_loop+0x55/0xb0
[  293.435264][T18618]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.441297][T18618] RIP: 0033:0x7f6c319ae759
[  293.445790][T18618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  293.465511][T18618] RSP: 002b:00007f6c30627038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  293.474016][T18618] RAX: ffffffffffffffda RBX: 00007f6c31b65f80 RCX: 00007f6c319ae759
[  293.482008][T18618] RDX: 0000000000000000 RSI: 0000000020000840 RDI: 0000000000000005
[  293.490009][T18618] RBP: 00007f6c30627090 R08: 0000000000000000 R09: 0000000000000000
[  293.498015][T18618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  293.506001][T18618] R13: 0000000000000000 R14: 00007f6c31b65f80 R15: 00007ffdf82cca08
[  293.514093][T18618]  </TASK>
[  293.554478][T18629] random: crng reseeded on system resumption
[  293.576633][T18631] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[  293.617413][T18635] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18635 comm=syz.6.4544
[  293.641720][T18633] loop9: detected capacity change from 0 to 512
[  293.680546][T18633] EXT4-fs mount: 34 callbacks suppressed
[  293.680567][T18633] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  293.698949][T18633] ext4 filesystem being mounted at /529/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  293.715155][T18646] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18646 comm=syz.0.4547
[  293.772998][ T5268] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  293.781452][ T5268] hid-generic 0000:0000:0000.0010: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  293.821840][ T8896] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.864818][T18661] random: crng reseeded on system resumption
[  293.974347][T18670] loop6: detected capacity change from 0 to 512
[  293.997787][T18670] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  293.999034][T18655] loop0: detected capacity change from 0 to 256
[  294.010687][T18670] ext4 filesystem being mounted at /577/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  294.034672][T18655] FAT-fs (loop0): Directory bread(block 64) failed
[  294.043574][T18663] __nla_validate_parse: 6 callbacks suppressed
[  294.043591][T18663] netlink: 16 bytes leftover after parsing attributes in process `syz.7.4557'.
[  294.053781][T18655] FAT-fs (loop0): Directory bread(block 65) failed
[  294.065565][T18655] FAT-fs (loop0): Directory bread(block 66) failed
[  294.072567][T18655] FAT-fs (loop0): Directory bread(block 67) failed
[  294.079304][T18655] FAT-fs (loop0): Directory bread(block 68) failed
[  294.086022][T18655] FAT-fs (loop0): Directory bread(block 69) failed
[  294.092591][T18655] FAT-fs (loop0): Directory bread(block 70) failed
[  294.099158][T18655] FAT-fs (loop0): Directory bread(block 71) failed
[  294.110321][T18655] FAT-fs (loop0): Directory bread(block 72) failed
[  294.115593][ T7918] EXT4-fs error (device loop6): ext4_readdir:261: inode #12: block 32: comm syz-executor: path /577/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  294.118253][T18655] FAT-fs (loop0): Directory bread(block 73) failed
[  294.223016][T18684] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18684 comm=syz.4.4562
[  294.263286][T18655] +}[@: attempt to access beyond end of device
[  294.263286][T18655] loop0: rw=2051, sector=6440, nr_sectors = 32 limit=256
[  294.338652][T18688] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4564'.
[  294.347724][T18688] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  294.355298][T18688] batman_adv: batadv0: Removing interface: batadv_slave_0
[  294.372621][T18688] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  294.380120][T18688] batman_adv: batadv0: Removing interface: batadv_slave_1
[  294.421494][   T11] kworker/u8:0: attempt to access beyond end of device
[  294.421494][   T11] loop0: rw=1, sector=1224, nr_sectors = 608 limit=256
[  294.440915][   T11] kworker/u8:0: attempt to access beyond end of device
[  294.440915][   T11] loop0: rw=1, sector=1864, nr_sectors = 4576 limit=256
[  294.546939][    T8] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  294.554751][    T8] hid-generic 0000:0000:0000.0011: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  294.617872][T18703] random: crng reseeded on system resumption
[  294.713628][T18709] loop7: detected capacity change from 0 to 128
[  294.731329][T18709] program syz.7.4570 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  294.860668][T18725] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4572'.
[  294.915691][T18725] bond3: entered promiscuous mode
[  294.920817][T18725] bond3: entered allmulticast mode
[  294.950385][T18725] 8021q: adding VLAN 0 to HW filter on device bond3
[  295.081098][T18743] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4577'.
[  295.204880][T18762] random: crng reseeded on system resumption
[  295.213187][T18765] loop4: detected capacity change from 0 to 128
[  295.326711][T18769] netlink: 32 bytes leftover after parsing attributes in process `syz.9.4586'.
[  295.416893][T18773] netem: change failed
[  295.432827][T18773] veth0_to_hsr: entered promiscuous mode
[  295.489955][T18773] hsr_slave_0 (unregistering): left promiscuous mode
[  295.511586][T18777] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4588'.
[  295.571051][T18773] sd 0:0:1:0: device reset
[  295.661758][T18799] loop7: detected capacity change from 0 to 128
[  295.757220][T18810] loop7: detected capacity change from 0 to 1024
[  295.764049][T18816] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4599'.
[  295.775049][T18808] netlink: 32 bytes leftover after parsing attributes in process `syz.9.4600'.
[  295.785087][T18810] EXT4-fs: Ignoring removed nomblk_io_submit option
[  295.833249][T18810] EXT4-fs (loop7): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  295.894325][T18810] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  295.934738][T18810] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  295.983775][T18810] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  296.027355][T15336] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  296.043343][T18839] loop9: detected capacity change from 0 to 512
[  296.077200][T18843] FAULT_INJECTION: forcing a failure.
[  296.077200][T18843] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  296.090377][T18843] CPU: 1 UID: 0 PID: 18843 Comm: syz.7.4606 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  296.091617][T18839] EXT4-fs: Ignoring removed orlov option
[  296.100903][T18843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  296.100922][T18843] Call Trace:
[  296.100931][T18843]  <TASK>
[  296.100940][T18843]  dump_stack_lvl+0xf2/0x150
[  296.108295][T18839] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  296.116645][T18843]  dump_stack+0x15/0x20
[  296.116690][T18843]  should_fail_ex+0x223/0x230
[  296.122213][T18839] EXT4-fs (loop9): 1 orphan inode deleted
[  296.122903][T18843]  should_fail+0xb/0x10
[  296.127552][T18839] EXT4-fs (loop9): 1 truncate cleaned up
[  296.137286][T18843]  should_fail_usercopy+0x1a/0x20
[  296.137319][T18843]  _copy_from_user+0x1e/0xb0
[  296.143781][T18839] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  296.146121][T18843]  copy_msghdr_from_user+0x54/0x2a0
[  296.146157][T18843]  ? __fget_files+0x17c/0x1c0
[  296.193229][T18843]  __sys_sendmsg+0x13e/0x230
[  296.197853][T18843]  __x64_sys_sendmsg+0x46/0x50
[  296.202659][T18843]  x64_sys_call+0x2734/0x2dc0
[  296.207377][T18843]  do_syscall_64+0xc9/0x1c0
[  296.212010][T18843]  ? clear_bhb_loop+0x55/0xb0
[  296.216812][T18843]  ? clear_bhb_loop+0x55/0xb0
[  296.221498][T18843]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  296.227459][T18843] RIP: 0033:0x7f6c319ae759
[  296.231876][T18843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  296.251490][T18843] RSP: 002b:00007f6c30627038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  296.259930][T18843] RAX: ffffffffffffffda RBX: 00007f6c31b65f80 RCX: 00007f6c319ae759
[  296.267921][T18843] RDX: 0000000000000000 RSI: 0000000020005c40 RDI: 0000000000000003
[  296.275899][T18843] RBP: 00007f6c30627090 R08: 0000000000000000 R09: 0000000000000000
[  296.283945][T18843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  296.291922][T18843] R13: 0000000000000000 R14: 00007f6c31b65f80 R15: 00007ffdf82cca08
[  296.299911][T18843]  </TASK>
[  296.308426][T18839] syz.9.4605 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  296.325289][T18839] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  296.379242][ T8896] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  296.412656][T18857] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4607'.
[  296.416975][T18858] loop9: detected capacity change from 0 to 128
[  296.459212][T18857] bond4: entered promiscuous mode
[  296.464302][T18857] bond4: entered allmulticast mode
[  296.470991][T18857] 8021q: adding VLAN 0 to HW filter on device bond4
[  296.537989][T18868] loop9: detected capacity change from 0 to 128
[  296.674599][T18876] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4613'.
[  296.997178][T18887] loop4: detected capacity change from 0 to 512
[  297.014879][T18887] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.4616: corrupted in-inode xattr: invalid ea_ino
[  297.051398][T18887] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.4616: couldn't read orphan inode 15 (err -117)
[  297.123490][ T1039] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  297.134552][ T1039] hid-generic 0000:0000:0000.0012: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  297.189132][T18900] random: crng reseeded on system resumption
[  297.288909][T18887] EXT4-fs (loop4): mounted filesystem 00000007-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  297.302562][T18887] EXT4-fs error (device loop4): ext4_lookup:1813: inode #13: comm syz.4.4616: iget: bad extended attribute block 7177
[  297.362200][T12268] EXT4-fs (loop4): unmounting filesystem 00000007-0000-0000-0000-000000000000.
[  297.578446][T18928] loop4: detected capacity change from 0 to 128
[  297.642381][T18932] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18932 comm=syz.9.4627
[  297.982533][T18948] random: crng reseeded on system resumption
[  298.877545][T18986] loop0: detected capacity change from 0 to 256
[  298.959776][T18986] FAT-fs (loop0): Directory bread(block 64) failed
[  299.002014][T18986] FAT-fs (loop0): Directory bread(block 65) failed
[  299.060229][T18986] FAT-fs (loop0): Directory bread(block 66) failed
[  299.118481][T18986] FAT-fs (loop0): Directory bread(block 67) failed
[  299.125168][T18986] FAT-fs (loop0): Directory bread(block 68) failed
[  299.199532][T19059] __nla_validate_parse: 2 callbacks suppressed
[  299.199548][T19059] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4639'.
[  299.219467][T18986] FAT-fs (loop0): Directory bread(block 69) failed
[  299.245780][T19059] netlink: 40 bytes leftover after parsing attributes in process `syz.7.4639'.
[  299.259409][T18986] FAT-fs (loop0): Directory bread(block 70) failed
[  299.274068][T19056] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4641'.
[  299.307225][T18986] FAT-fs (loop0): Directory bread(block 71) failed
[  299.313792][T18986] FAT-fs (loop0): Directory bread(block 72) failed
[  299.325564][T19064] random: crng reseeded on system resumption
[  299.410648][T19065] batman_adv: batadv0: Adding interface: netdevsim0
[  299.417321][T19065] batman_adv: batadv0: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  299.450180][T18986] FAT-fs (loop0): Directory bread(block 73) failed
[  299.506432][T19065] batman_adv: batadv0: Interface activated: netdevsim0
[  299.524225][T19068] netlink: 32 bytes leftover after parsing attributes in process `syz.7.4643'.
[  299.724710][T19078] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  299.813707][   T50] kworker/u8:3: attempt to access beyond end of device
[  299.813707][   T50] loop0: rw=1, sector=1224, nr_sectors = 608 limit=256
[  299.882466][   T50] kworker/u8:3: attempt to access beyond end of device
[  299.882466][   T50] loop0: rw=1, sector=1864, nr_sectors = 2312 limit=256
[  299.960927][   T50] kworker/u8:3: attempt to access beyond end of device
[  299.960927][   T50] loop0: rw=1, sector=4176, nr_sectors = 2016 limit=256
[  300.007667][   T29] kauditd_printk_skb: 240 callbacks suppressed
[  300.007686][   T29] audit: type=1400 audit(1732090616.009:27226): avc:  denied  { cpu } for  pid=19097 comm="syz.9.4650" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  300.043202][T19098] ref_ctr increment failed for inode: 0xb71 offset: 0x0 ref_ctr_offset: 0x82 of mm: 0xffff88810ab11a40
[  300.103193][T19097] uprobe: syz.9.4650:19097 failed to unregister, leaking uprobe
[  300.194762][T19103] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4648'.
[  300.217495][   T29] audit: type=1400 audit(1732090616.209:27227): avc:  denied  { create } for  pid=19104 comm="syz.7.4651" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  300.373094][T19103] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4648'.
[  300.399130][T19122] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4653'.
[  300.430828][T19122] netlink: 40 bytes leftover after parsing attributes in process `syz.9.4653'.
[  300.522506][T19130] random: crng reseeded on system resumption
[  300.704143][T19135] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  300.762227][T19103] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4648'.
[  301.013105][T19149] loop4: detected capacity change from 0 to 512
[  301.086719][T19149] EXT4-fs: Ignoring removed nobh option
[  301.136754][   T29] audit: type=1326 audit(1732090617.129:27228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19157 comm="syz.7.4664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c319ae759 code=0x7ffc0000
[  301.181081][T19158] loop7: detected capacity change from 0 to 512
[  301.206885][T19149] EXT4-fs (loop4): mounted filesystem 00800000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  301.257382][T19158] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  301.276348][T19149] ext4 filesystem being mounted at /362/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  301.287042][   T29] audit: type=1326 audit(1732090617.169:27229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19157 comm="syz.7.4664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6c319ae759 code=0x7ffc0000
[  301.310697][   T29] audit: type=1326 audit(1732090617.169:27230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19157 comm="syz.7.4664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c319ae759 code=0x7ffc0000
[  301.334337][   T29] audit: type=1326 audit(1732090617.169:27231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19157 comm="syz.7.4664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c319ae759 code=0x7ffc0000
[  301.357905][   T29] audit: type=1326 audit(1732090617.169:27232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19157 comm="syz.7.4664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6c319ae759 code=0x7ffc0000
[  301.381484][   T29] audit: type=1326 audit(1732090617.169:27233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19157 comm="syz.7.4664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c319ae759 code=0x7ffc0000
[  301.405051][   T29] audit: type=1326 audit(1732090617.169:27234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19157 comm="syz.7.4664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c319ae759 code=0x7ffc0000
[  301.428707][   T29] audit: type=1326 audit(1732090617.169:27235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19157 comm="syz.7.4664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6c319ae759 code=0x7ffc0000
[  301.457676][T19137] loop9: detected capacity change from 0 to 256
[  301.468829][T19158] ext4 filesystem being mounted at /160/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  301.537055][T19170] ieee802154 phy0 wpan0: encryption failed: -22
[  301.558872][T19137] FAT-fs (loop9): Directory bread(block 64) failed
[  301.578673][T19137] FAT-fs (loop9): Directory bread(block 65) failed
[  301.589712][T19137] FAT-fs (loop9): Directory bread(block 66) failed
[  301.603802][T19137] FAT-fs (loop9): Directory bread(block 67) failed
[  301.610810][T12268] EXT4-fs (loop4): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[  301.625074][T15336] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  301.637532][T19137] FAT-fs (loop9): Directory bread(block 68) failed
[  301.644072][T19137] FAT-fs (loop9): Directory bread(block 69) failed
[  301.654160][T19137] FAT-fs (loop9): Directory bread(block 70) failed
[  301.671112][T19137] FAT-fs (loop9): Directory bread(block 71) failed
[  301.677891][T19137] FAT-fs (loop9): Directory bread(block 72) failed
[  301.694636][T19137] FAT-fs (loop9): Directory bread(block 73) failed
[  301.789833][T19180] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4666'.
[  301.798802][T19180] batman_adv: batadv0: Interface deactivated: netdevsim0
[  301.805957][T19180] batman_adv: batadv0: Removing interface: netdevsim0
[  301.991443][T19193] random: crng reseeded on system resumption
[  302.096157][ T2150] kworker/u8:7: attempt to access beyond end of device
[  302.096157][ T2150] loop9: rw=1, sector=1224, nr_sectors = 608 limit=256
[  302.128863][ T2150] kworker/u8:7: attempt to access beyond end of device
[  302.128863][ T2150] loop9: rw=1, sector=1864, nr_sectors = 2704 limit=256
[  302.177833][ T2150] kworker/u8:7: attempt to access beyond end of device
[  302.177833][ T2150] loop9: rw=1, sector=4568, nr_sectors = 2168 limit=256
[  302.286542][T19204] batman_adv: batadv0: Adding interface: netdevsim0
[  302.293205][T19204] batman_adv: batadv0: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  302.327141][T19203] loop0: detected capacity change from 0 to 512
[  302.334586][T19206] devtmpfs: Bad value for 'defcontext'
[  302.347936][T19203] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  302.368197][T19203] ext4 filesystem being mounted at /196/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  302.379529][T19204] batman_adv: batadv0: Interface activated: netdevsim0
[  302.459687][T14927] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  302.472955][T19210] loop4: detected capacity change from 0 to 512
[  302.508805][T19210] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  302.554814][T19219] batman_adv: batadv0: Interface deactivated: netdevsim0
[  302.562092][T19219] batman_adv: batadv0: Removing interface: netdevsim0
[  302.579263][T19210] ext4 filesystem being mounted at /366/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  302.655056][T19225] ieee802154 phy0 wpan0: encryption failed: -22
[  302.694902][T12268] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  302.778275][T19230] random: crng reseeded on system resumption
[  302.969176][T19239] loop9: detected capacity change from 0 to 512
[  303.027561][T19239] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  303.058165][T19239] ext4 filesystem being mounted at /576/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  303.069570][T19224] loop7: detected capacity change from 0 to 256
[  303.105929][T19224] FAT-fs (loop7): Directory bread(block 64) failed
[  303.112573][T19224] FAT-fs (loop7): Directory bread(block 65) failed
[  303.141351][T19224] FAT-fs (loop7): Directory bread(block 66) failed
[  303.153705][ T8896] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  303.172483][T19224] FAT-fs (loop7): Directory bread(block 67) failed
[  303.203472][T19224] FAT-fs (loop7): Directory bread(block 68) failed
[  303.223317][T19249] netem: change failed
[  303.237286][T19224] FAT-fs (loop7): Directory bread(block 69) failed
[  303.286288][T19249] hsr_slave_0 (unregistering): left promiscuous mode
[  303.297992][T19224] FAT-fs (loop7): Directory bread(block 70) failed
[  303.324674][T19224] FAT-fs (loop7): Directory bread(block 71) failed
[  303.346027][T19224] FAT-fs (loop7): Directory bread(block 72) failed
[  303.360243][T19224] FAT-fs (loop7): Directory bread(block 73) failed
[  303.604658][T19268] loop9: detected capacity change from 0 to 2048
[  303.638049][T19268] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  303.702852][T19274] random: crng reseeded on system resumption
[  303.829756][T19278] loop0: detected capacity change from 0 to 512
[  303.838467][  T120] kworker/u8:4: attempt to access beyond end of device
[  303.838467][  T120] loop7: rw=1, sector=1224, nr_sectors = 608 limit=256
[  303.866374][  T120] kworker/u8:4: attempt to access beyond end of device
[  303.866374][  T120] loop7: rw=1, sector=1864, nr_sectors = 3904 limit=256
[  303.885112][T19278] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  303.905747][  T120] kworker/u8:4: attempt to access beyond end of device
[  303.905747][  T120] loop7: rw=1, sector=5768, nr_sectors = 2152 limit=256
[  303.921854][T19278] ext4 filesystem being mounted at /210/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  303.953643][  T120] kworker/u8:4: attempt to access beyond end of device
[  303.953643][  T120] loop7: rw=1, sector=7920, nr_sectors = 2672 limit=256
[  303.987718][T14927] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  304.130116][T19291] FAULT_INJECTION: forcing a failure.
[  304.130116][T19291] name failslab, interval 1, probability 0, space 0, times 0
[  304.142848][T19291] CPU: 0 UID: 0 PID: 19291 Comm: syz.0.4709 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  304.153288][T19291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  304.163377][T19291] Call Trace:
[  304.166797][T19291]  <TASK>
[  304.169873][T19291]  dump_stack_lvl+0xf2/0x150
[  304.174499][T19291]  dump_stack+0x15/0x20
[  304.178684][T19291]  should_fail_ex+0x223/0x230
[  304.183395][T19291]  ? audit_log_start+0x34c/0x6b0
[  304.188543][T19291]  should_failslab+0x8f/0xb0
[  304.193162][T19291]  kmem_cache_alloc_noprof+0x4c/0x290
[  304.198781][T19291]  audit_log_start+0x34c/0x6b0
[  304.203774][T19291]  audit_seccomp+0x4b/0x130
[  304.208290][T19291]  __seccomp_filter+0x6fa/0x1180
[  304.213305][T19291]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  304.218980][T19291]  ? vfs_write+0x596/0x920
[  304.223426][T19291]  ? __schedule+0x6fa/0x930
[  304.228042][T19291]  __secure_computing+0x9f/0x1c0
[  304.233080][T19291]  syscall_trace_enter+0xd1/0x1f0
[  304.238348][T19291]  do_syscall_64+0xaa/0x1c0
[  304.242940][T19291]  ? clear_bhb_loop+0x55/0xb0
[  304.247700][T19291]  ? clear_bhb_loop+0x55/0xb0
[  304.252391][T19291]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.258399][T19291] RIP: 0033:0x7f648e27e759
[  304.262902][T19291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  304.282616][T19291] RSP: 002b:00007f648cef7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000067
[  304.291073][T19291] RAX: ffffffffffffffda RBX: 00007f648e435f80 RCX: 00007f648e27e759
[  304.299133][T19291] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  304.307197][T19291] RBP: 00007f648cef7090 R08: 0000000000000000 R09: 0000000000000000
[  304.315223][T19291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  304.323317][T19291] R13: 0000000000000000 R14: 00007f648e435f80 R15: 00007fff4c0ebcf8
[  304.331333][T19291]  </TASK>
[  304.337189][T19292] __nla_validate_parse: 7 callbacks suppressed
[  304.337257][T19292] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4708'.
[  304.432219][ T8896] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  304.497314][T19302] FAULT_INJECTION: forcing a failure.
[  304.497314][T19302] name failslab, interval 1, probability 0, space 0, times 0
[  304.510121][T19302] CPU: 0 UID: 0 PID: 19302 Comm: syz.7.4713 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  304.520595][T19302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  304.530667][T19302] Call Trace:
[  304.534003][T19302]  <TASK>
[  304.536954][T19302]  dump_stack_lvl+0xf2/0x150
[  304.541637][T19302]  dump_stack+0x15/0x20
[  304.545826][T19302]  should_fail_ex+0x223/0x230
[  304.550532][T19302]  ? audit_log_start+0x34c/0x6b0
[  304.555583][T19302]  should_failslab+0x8f/0xb0
[  304.560224][T19302]  kmem_cache_alloc_noprof+0x4c/0x290
[  304.565608][T19302]  audit_log_start+0x34c/0x6b0
[  304.570435][T19302]  audit_seccomp+0x4b/0x130
[  304.574965][T19302]  __seccomp_filter+0x6fa/0x1180
[  304.579976][T19302]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  304.585628][T19302]  ? vfs_write+0x596/0x920
[  304.590056][T19302]  ? __schedule+0x6fa/0x930
[  304.594678][T19302]  __secure_computing+0x9f/0x1c0
[  304.599680][T19302]  syscall_trace_enter+0xd1/0x1f0
[  304.604766][T19302]  do_syscall_64+0xaa/0x1c0
[  304.609307][T19302]  ? clear_bhb_loop+0x55/0xb0
[  304.614000][T19302]  ? clear_bhb_loop+0x55/0xb0
[  304.618768][T19302]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.624688][T19302] RIP: 0033:0x7f6c319ae759
[  304.629187][T19302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  304.648807][T19302] RSP: 002b:00007f6c30627038 EFLAGS: 00000246 ORIG_RAX: 000000000000011b
[  304.657269][T19302] RAX: ffffffffffffffda RBX: 00007f6c31b65f80 RCX: 00007f6c319ae759
[  304.665458][T19302] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  304.673438][T19302] RBP: 00007f6c30627090 R08: 0000000000000000 R09: 0000000000000000
[  304.681417][T19302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  304.689490][T19302] R13: 0000000000000000 R14: 00007f6c31b65f80 R15: 00007ffdf82cca08
[  304.697545][T19302]  </TASK>
[  304.769661][T19306] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19306 comm=syz.9.4715
[  304.789086][T19306] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4715'.
[  304.807966][T19308] random: crng reseeded on system resumption
[  305.029043][   T29] kauditd_printk_skb: 507 callbacks suppressed
[  305.029061][   T29] audit: type=1326 audit(1732090621.029:27739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19321 comm="syz.0.4722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  305.062940][   T29] audit: type=1326 audit(1732090621.029:27740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19321 comm="syz.0.4722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  305.086705][   T29] audit: type=1326 audit(1732090621.029:27741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19321 comm="syz.0.4722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  305.110516][   T29] audit: type=1326 audit(1732090621.029:27742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19321 comm="syz.0.4722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  305.134230][   T29] audit: type=1326 audit(1732090621.029:27743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19321 comm="syz.0.4722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  305.158075][   T29] audit: type=1326 audit(1732090621.029:27744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19321 comm="syz.0.4722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  305.181695][   T29] audit: type=1326 audit(1732090621.029:27745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19321 comm="syz.0.4722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  305.205364][   T29] audit: type=1326 audit(1732090621.029:27746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19321 comm="syz.0.4722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  305.228949][   T29] audit: type=1326 audit(1732090621.029:27747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19321 comm="syz.0.4722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  305.252581][   T29] audit: type=1326 audit(1732090621.029:27748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19321 comm="syz.0.4722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  305.328440][T19326] pim6reg1: entered promiscuous mode
[  305.333833][T19326] pim6reg1: entered allmulticast mode
[  305.347480][T19333] FAULT_INJECTION: forcing a failure.
[  305.347480][T19333] name failslab, interval 1, probability 0, space 0, times 0
[  305.360241][T19333] CPU: 0 UID: 0 PID: 19333 Comm: syz.7.4726 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  305.360275][T19333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  305.360292][T19333] Call Trace:
[  305.360303][T19333]  <TASK>
[  305.360317][T19333]  dump_stack_lvl+0xf2/0x150
[  305.360355][T19333]  dump_stack+0x15/0x20
[  305.360423][T19333]  should_fail_ex+0x223/0x230
[  305.360470][T19333]  ? audit_log_start+0x34c/0x6b0
[  305.360506][T19333]  should_failslab+0x8f/0xb0
[  305.360552][T19333]  kmem_cache_alloc_noprof+0x4c/0x290
[  305.360583][T19333]  audit_log_start+0x34c/0x6b0
[  305.360688][T19333]  audit_seccomp+0x4b/0x130
[  305.360726][T19333]  __seccomp_filter+0x6fa/0x1180
[  305.360762][T19333]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  305.360799][T19333]  ? vfs_write+0x596/0x920
[  305.360822][T19333]  ? __schedule+0x6fa/0x930
[  305.360862][T19333]  __secure_computing+0x9f/0x1c0
[  305.360922][T19333]  syscall_trace_enter+0xd1/0x1f0
[  305.454950][T19333]  do_syscall_64+0xaa/0x1c0
[  305.454995][T19333]  ? clear_bhb_loop+0x55/0xb0
[  305.455022][T19333]  ? clear_bhb_loop+0x55/0xb0
[  305.455047][T19333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  305.474969][T19333] RIP: 0033:0x7f6c319ae759
[  305.479458][T19333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  305.499237][T19333] RSP: 002b:00007f6c30627038 EFLAGS: 00000246 ORIG_RAX: 000000000000014c
[  305.507706][T19333] RAX: ffffffffffffffda RBX: 00007f6c31b65f80 RCX: 00007f6c319ae759
[  305.515695][T19333] RDX: 0000000000000400 RSI: 0000000000000000 RDI: ffffffffffffff9c
[  305.523679][T19333] RBP: 00007f6c30627090 R08: 0000000020000340 R09: 0000000000000000
[  305.531661][T19333] R10: 0000000000000800 R11: 0000000000000246 R12: 0000000000000001
[  305.539642][T19333] R13: 0000000000000000 R14: 00007f6c31b65f80 R15: 00007ffdf82cca08
[  305.547664][T19333]  </TASK>
[  305.600352][T19336] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4727'.
[  305.614180][T19340] random: crng reseeded on system resumption
[  305.700245][T19343] loop7: detected capacity change from 0 to 512
[  305.767930][T19343] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  305.785355][T19343] ext4 filesystem being mounted at /170/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  305.811941][T19343] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  305.870170][T19355] netlink: 32 bytes leftover after parsing attributes in process `syz.4.4735'.
[  305.883529][T19343] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 33 with error 28
[  305.896002][T19343] EXT4-fs (loop7): This should not happen!! Data will be lost
[  305.896002][T19343] 
[  305.905777][T19343] EXT4-fs (loop7): Total free blocks count 0
[  305.911761][T19343] EXT4-fs (loop7): Free/Dirty block details
[  305.917714][T19343] EXT4-fs (loop7): free_blocks=65280
[  305.923240][T19343] EXT4-fs (loop7): dirty_blocks=33
[  305.928425][T19343] EXT4-fs (loop7): Block reservation details
[  305.934448][T19343] EXT4-fs (loop7): i_reserved_data_blocks=33
[  305.968095][T19343] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=19343 comm=syz.7.4729
[  306.080913][T19363] loop0: detected capacity change from 0 to 512
[  306.101070][T19363] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  306.113826][T19363] ext4 filesystem being mounted at /217/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  306.154517][T19367] loop4: detected capacity change from 0 to 512
[  306.170528][T14927] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  306.212227][T19367] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  306.224889][T19367] ext4 filesystem being mounted at /377/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  306.269597][T12268] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  306.280861][T19373] random: crng reseeded on system resumption
[  306.410632][T19375] loop4: detected capacity change from 0 to 512
[  306.428354][T19375] EXT4-fs: Ignoring removed i_version option
[  306.461853][T19375] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a856c018, mo2=0002]
[  306.478052][T19375] System zones: 0-2, 18-18, 34-35
[  306.484016][T19375] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  306.505333][T19375] ext4 filesystem being mounted at /378/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  306.520064][T19375] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4740'.
[  306.529181][T19375] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4740'.
[  306.538273][T19375] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4740'.
[  306.572068][T15336] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  306.590156][T19375] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4740'.
[  306.599303][T19375] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4740'.
[  306.608332][T19375] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4740'.
[  306.680145][T12268] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  306.717288][T19388] loop0: detected capacity change from 0 to 1024
[  306.725947][T19388] EXT4-fs: Ignoring removed i_version option
[  306.731986][T19388] EXT4-fs: Ignoring removed orlov option
[  306.737732][T19388] EXT4-fs: Ignoring removed nomblk_io_submit option
[  306.753897][T19388] EXT4-fs: Mount option(s) incompatible with ext2
[  306.796711][T19391] netem: change failed
[  306.923977][T19399] random: crng reseeded on system resumption
[  307.074541][T19403] 0�X���: renamed from caif0
[  307.081098][T19403] 0�X���: entered allmulticast mode
[  307.086434][T19403] A link change request failed with some changes committed already. Interface 
60�X��� may have been left with an inconsistent configuration, please check.
[  307.161999][T19405] loop0: detected capacity change from 0 to 512
[  307.191726][T19405] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  307.204396][T19405] ext4 filesystem being mounted at /230/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  307.229111][T14927] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  307.333930][T19409] loop9: detected capacity change from 0 to 128
[  307.417705][T19417] 9pnet_virtio: no channels available for device 127.0.0.1
[  307.456698][T19426] loop4: detected capacity change from 0 to 512
[  307.499239][T19426] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  307.518398][T19426] ext4 filesystem being mounted at /380/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  307.577115][T12268] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  307.806980][T19451] random: crng reseeded on system resumption
[  307.931898][T19457] netdevsim netdevsim9: loading /lib/firmware/. failed with error -22
[  307.940191][T19457] netdevsim netdevsim9: Direct firmware load for . failed with error -22
[  307.970082][T19463] loop4: detected capacity change from 0 to 512
[  307.995754][T19463] EXT4-fs: Ignoring removed orlov option
[  308.009602][T19463] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  308.041876][T19463] EXT4-fs (loop4): 1 orphan inode deleted
[  308.047729][T19463] EXT4-fs (loop4): 1 truncate cleaned up
[  308.070646][T19463] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  308.122106][T19463] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  308.313744][T19489] 9pnet_virtio: no channels available for device 127.0.0.1
[  308.345098][T19493] random: crng reseeded on system resumption
[  308.448069][T19495] netem: change failed
[  308.459886][T19497] loop9: detected capacity change from 0 to 128
[  308.516178][T19495] hsr_slave_0 (unregistering): left promiscuous mode
[  309.174399][T12268] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  309.199921][T19527] loop9: detected capacity change from 0 to 512
[  309.260296][ T8400] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  309.277943][T19527] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  309.290547][T19527] ext4 filesystem being mounted at /600/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  309.336971][ T8896] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  309.419077][T19560] __nla_validate_parse: 15 callbacks suppressed
[  309.419096][T19560] netlink: 16 bytes leftover after parsing attributes in process `syz.9.4800'.
[  309.421765][T19555] netlink: 40 bytes leftover after parsing attributes in process `syz.0.4798'.
[  309.425499][T19560] netlink: 16 bytes leftover after parsing attributes in process `syz.9.4800'.
[  309.452590][T19560] netlink: 16 bytes leftover after parsing attributes in process `syz.9.4800'.
[  309.553169][T19573] loop0: detected capacity change from 0 to 128
[  309.583068][T19574] netlink: 32 bytes leftover after parsing attributes in process `syz.4.4808'.
[  309.605426][T19531] chnl_net:caif_netlink_parms(): no params data found
[  309.670103][T19585] netlink: 16 bytes leftover after parsing attributes in process `syz.9.4809'.
[  309.679287][T19585] netlink: 16 bytes leftover after parsing attributes in process `syz.9.4809'.
[  309.688295][T19585] netlink: 16 bytes leftover after parsing attributes in process `syz.9.4809'.
[  309.702055][T19531] bridge0: port 1(bridge_slave_0) entered blocking state
[  309.709289][T19531] bridge0: port 1(bridge_slave_0) entered disabled state
[  309.724379][T19531] bridge_slave_0: entered allmulticast mode
[  309.731125][T19531] bridge_slave_0: entered promiscuous mode
[  309.738192][T19531] bridge0: port 2(bridge_slave_1) entered blocking state
[  309.745363][T19531] bridge0: port 2(bridge_slave_1) entered disabled state
[  309.752799][T19531] bridge_slave_1: entered allmulticast mode
[  309.759538][T19531] bridge_slave_1: entered promiscuous mode
[  309.798516][T19531] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  309.810769][T19531] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  309.833868][T19531] team0: Port device team_slave_0 added
[  309.841234][T19588] netlink: 40 bytes leftover after parsing attributes in process `syz.4.4811'.
[  309.887459][T19531] team0: Port device team_slave_1 added
[  309.910688][T19531] batman_adv: batadv0: Adding interface: batadv_slave_0
[  309.917759][T19531] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  309.943789][T19531] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  309.973083][T19531] batman_adv: batadv0: Adding interface: batadv_slave_1
[  309.980214][T19531] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  310.006253][T19531] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  310.061345][T19531] hsr_slave_0: entered promiscuous mode
[  310.068014][T19531] hsr_slave_1: entered promiscuous mode
[  310.085531][T19531] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  310.093237][T19531] Cannot create hsr debugfs directory
[  310.101863][   T29] kauditd_printk_skb: 797 callbacks suppressed
[  310.101880][   T29] audit: type=1326 audit(1732090626.109:28544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19599 comm="syz.0.4816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  310.135299][   T29] audit: type=1326 audit(1732090626.139:28545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19599 comm="syz.0.4816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  310.158946][   T29] audit: type=1326 audit(1732090626.139:28546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19599 comm="syz.0.4816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  310.182705][   T29] audit: type=1326 audit(1732090626.139:28547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19599 comm="syz.0.4816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  310.208454][   T29] audit: type=1326 audit(1732090626.139:28548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19599 comm="syz.0.4816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  310.232257][   T29] audit: type=1326 audit(1732090626.139:28549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19599 comm="syz.0.4816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  310.256091][   T29] audit: type=1326 audit(1732090626.139:28550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19599 comm="syz.0.4816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  310.256651][T19591] loop4: detected capacity change from 0 to 256
[  310.279881][   T29] audit: type=1326 audit(1732090626.139:28551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19599 comm="syz.0.4816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  310.310064][   T29] audit: type=1326 audit(1732090626.159:28552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19599 comm="syz.0.4816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  310.329122][T19591] FAT-fs (loop4): Directory bread(block 64) failed
[  310.333702][   T29] audit: type=1326 audit(1732090626.159:28553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19599 comm="syz.0.4816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  310.340357][T19591] FAT-fs (loop4): Directory bread(block 65) failed
[  310.372601][T19591] FAT-fs (loop4): Directory bread(block 66) failed
[  310.379191][T19591] FAT-fs (loop4): Directory bread(block 67) failed
[  310.385862][T19591] FAT-fs (loop4): Directory bread(block 68) failed
[  310.392460][T19591] FAT-fs (loop4): Directory bread(block 69) failed
[  310.407832][T19591] FAT-fs (loop4): Directory bread(block 70) failed
[  310.414385][T19591] FAT-fs (loop4): Directory bread(block 71) failed
[  310.421101][T19591] FAT-fs (loop4): Directory bread(block 72) failed
[  310.427752][T19591] FAT-fs (loop4): Directory bread(block 73) failed
[  310.553836][T19614] netlink: 32 bytes leftover after parsing attributes in process `syz.9.4820'.
[  310.625584][T19618] pim6reg1: entered promiscuous mode
[  310.631073][T19618] pim6reg1: entered allmulticast mode
[  310.661074][T19626] 9pnet_virtio: no channels available for device 127.0.0.1
[  310.673337][ T2051] kworker/u8:6: attempt to access beyond end of device
[  310.673337][ T2051] loop4: rw=1, sector=1224, nr_sectors = 608 limit=256
[  310.708225][ T2051] kworker/u8:6: attempt to access beyond end of device
[  310.708225][ T2051] loop4: rw=1, sector=1864, nr_sectors = 2504 limit=256
[  310.747398][ T2051] kworker/u8:6: attempt to access beyond end of device
[  310.747398][ T2051] loop4: rw=1, sector=4368, nr_sectors = 224 limit=256
[  310.787896][T19638] loop7: detected capacity change from 0 to 256
[  310.890828][T19531] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  310.911453][T19531] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  310.921099][T19531] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  310.932460][T19531] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  311.081263][T19531] 8021q: adding VLAN 0 to HW filter on device bond0
[  311.098385][T19680] loop4: detected capacity change from 0 to 128
[  311.136783][T19531] 8021q: adding VLAN 0 to HW filter on device team0
[  311.180888][   T28] bridge0: port 1(bridge_slave_0) entered blocking state
[  311.188069][   T28] bridge0: port 1(bridge_slave_0) entered forwarding state
[  311.199529][   T28] bridge0: port 2(bridge_slave_1) entered blocking state
[  311.206629][   T28] bridge0: port 2(bridge_slave_1) entered forwarding state
[  311.337922][T19531] 8021q: adding VLAN 0 to HW filter on device batadv0
[  311.489751][T19531] veth0_vlan: entered promiscuous mode
[  311.516276][T19531] veth1_vlan: entered promiscuous mode
[  311.555149][T19531] veth0_macvtap: entered promiscuous mode
[  311.570382][T19531] veth1_macvtap: entered promiscuous mode
[  311.592797][T19728] dvmrp0: entered allmulticast mode
[  311.598920][T19728] dvmrp0: left allmulticast mode
[  311.612083][T19531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  311.622685][T19531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  311.632727][T19531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  311.643412][T19531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  311.656089][T19531] batman_adv: batadv0: Interface activated: batadv_slave_0
[  311.664726][T19531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  311.675330][T19531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  311.685156][T19531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  311.695661][T19531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  311.707140][T19531] batman_adv: batadv0: Interface activated: batadv_slave_1
[  311.722222][T19531] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  311.731041][T19531] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  311.739880][T19531] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  311.748681][T19531] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  311.792941][T19742] loop7: detected capacity change from 0 to 128
[  311.899792][T19751] batman_adv: batadv0: Adding interface: netdevsim0
[  311.906618][T19751] batman_adv: batadv0: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  311.920318][T19755] loop3: detected capacity change from 0 to 512
[  311.938258][T19751] batman_adv: batadv0: Interface activated: netdevsim0
[  312.030439][T19755] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  312.050921][T19766] 1�X���: renamed from 
60�X���
[  312.095671][T19755] ext4 filesystem being mounted at /0/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  312.145707][T19766] A link change request failed with some changes committed already. Interface 
61�X��� may have been left with an inconsistent configuration, please check.
[  312.202017][T19786] loop0: detected capacity change from 0 to 512
[  312.217657][T19786] EXT4-fs: Ignoring removed orlov option
[  312.223689][T19786] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  312.237976][T19531] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  312.292175][T19786] EXT4-fs (loop0): 1 orphan inode deleted
[  312.298037][T19786] EXT4-fs (loop0): 1 truncate cleaned up
[  312.337067][T19786] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  312.359992][ T2150] netdevsim netdevsim9 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  312.370410][ T2150] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  312.382554][T19786] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  312.446270][ T2150] netdevsim netdevsim9 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  312.456675][ T2150] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  312.497308][T19809] loop3: detected capacity change from 0 to 2048
[  312.531256][T14927] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  312.560392][ T2150] bond0: (slave netdevsim1): Releasing backup interface
[  312.567395][T19809] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  312.592670][T19809] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  312.609704][T19809] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 1 with error 28
[  312.622729][T19809] EXT4-fs (loop3): This should not happen!! Data will be lost
[  312.622729][T19809] 
[  312.632473][T19809] EXT4-fs (loop3): Total free blocks count 0
[  312.638514][T19809] EXT4-fs (loop3): Free/Dirty block details
[  312.644553][T19809] EXT4-fs (loop3): free_blocks=2415919104
[  312.651028][T19809] EXT4-fs (loop3): dirty_blocks=16
[  312.656306][T19809] EXT4-fs (loop3): Block reservation details
[  312.662368][T19809] EXT4-fs (loop3): i_reserved_data_blocks=1
[  312.672027][ T2150] netdevsim netdevsim9 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  312.682542][ T2150] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  312.722574][ T8068] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  312.741442][ T2150] netdevsim netdevsim9 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  312.752581][ T2150] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  312.823217][T19779] chnl_net:caif_netlink_parms(): no params data found
[  312.986648][T19855] 0�X���: renamed from 
61�X���
[  313.006571][T19855] A link change request failed with some changes committed already. Interface 
60�X��� may have been left with an inconsistent configuration, please check.
[  313.137250][T19883] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19883 comm=syz.7.4868
[  313.169955][ T2150] bond6: left allmulticast mode
[  313.174909][ T2150] bond6: left promiscuous mode
[  313.186780][ T2150] bond1 (unregistering): (slave ip6gretap1): Releasing active interface
[  313.242391][T19895] loop4: detected capacity change from 0 to 128
[  313.268392][ T2150] bond0 (unregistering): Released all slaves
[  313.281488][ T2150] bond1 (unregistering): Released all slaves
[  313.290943][ T2150] bond2 (unregistering): Released all slaves
[  313.301468][ T2150] bond3 (unregistering): Released all slaves
[  313.312550][ T2150] bond4 (unregistering): Released all slaves
[  313.322571][ T2150] bond5 (unregistering): Released all slaves
[  313.334418][ T2150] bond6 (unregistering): Released all slaves
[  313.344301][T19779] bridge0: port 1(bridge_slave_0) entered blocking state
[  313.351463][T19779] bridge0: port 1(bridge_slave_0) entered disabled state
[  313.362756][T19779] bridge_slave_0: entered allmulticast mode
[  313.369421][T19779] bridge_slave_0: entered promiscuous mode
[  313.377459][T19779] bridge0: port 2(bridge_slave_1) entered blocking state
[  313.384554][T19779] bridge0: port 2(bridge_slave_1) entered disabled state
[  313.393499][T19779] bridge_slave_1: entered allmulticast mode
[  313.400908][T19779] bridge_slave_1: entered promiscuous mode
[  313.409131][T19883] netlink: 'syz.7.4868': attribute type 1 has an invalid length.
[  313.423435][T19883] 8021q: adding VLAN 0 to HW filter on device bond5
[  313.443902][T19891] vlan3: entered promiscuous mode
[  313.449163][T19891] bond5: entered promiscuous mode
[  313.454437][T19891] vlan3: entered allmulticast mode
[  313.459633][T19891] bond5: entered allmulticast mode
[  313.501640][T19779] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  313.538926][ T2150] hsr_slave_1: left promiscuous mode
[  313.567105][ T2150] veth1_macvtap: left promiscuous mode
[  313.572655][ T2150] veth0_macvtap: left promiscuous mode
[  313.578313][ T2150] veth1_vlan: left promiscuous mode
[  313.583647][ T2150] veth0_vlan: left promiscuous mode
[  313.598452][T19917] loop7: detected capacity change from 0 to 512
[  313.643330][T19917] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  313.685430][T19917] ext4 filesystem being mounted at /200/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  313.711681][T19929] FAULT_INJECTION: forcing a failure.
[  313.711681][T19929] name failslab, interval 1, probability 0, space 0, times 0
[  313.724621][T19929] CPU: 1 UID: 0 PID: 19929 Comm: syz.4.4877 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  313.729636][T19917] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, 
[  313.735058][T19929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  313.743400][T19917] block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  313.753356][T19929] Call Trace:
[  313.753368][T19929]  <TASK>
[  313.753377][T19929]  dump_stack_lvl+0xf2/0x150
[  313.753419][T19929]  dump_stack+0x15/0x20
[  313.776989][T19929]  should_fail_ex+0x223/0x230
[  313.781716][T19929]  ? audit_log_start+0x34c/0x6b0
[  313.786691][T19929]  should_failslab+0x8f/0xb0
[  313.791408][T19929]  kmem_cache_alloc_noprof+0x4c/0x290
[  313.796821][T19929]  audit_log_start+0x34c/0x6b0
[  313.801613][T19929]  audit_seccomp+0x4b/0x130
[  313.806154][T19929]  __seccomp_filter+0x6fa/0x1180
[  313.806961][T19917] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 33 with error 28
[  313.811170][T19929]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  313.823646][T19917] EXT4-fs (loop7): This should not happen!! Data will be lost
[  313.823646][T19917] 
[  313.829183][T19929]  ? vfs_write+0x596/0x920
[  313.829217][T19929]  __secure_computing+0x9f/0x1c0
[  313.838934][T19917] EXT4-fs (loop7): Total free blocks count 0
[  313.843280][T19929]  syscall_trace_enter+0xd1/0x1f0
[  313.848227][T19917] EXT4-fs (loop7): Free/Dirty block details
[  313.854155][T19929]  ? fpregs_assert_state_consistent+0x83/0xa0
[  313.859186][T19917] EXT4-fs (loop7): free_blocks=65280
[  313.865052][T19929]  do_syscall_64+0xaa/0x1c0
[  313.871193][T19917] EXT4-fs (loop7): dirty_blocks=33
[  313.876437][T19929]  ? clear_bhb_loop+0x55/0xb0
[  313.876468][T19929]  ? clear_bhb_loop+0x55/0xb0
[  313.876496][T19929]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.876524][T19929] RIP: 0033:0x7fb23c6ce759
[  313.876543][T19929] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  313.876566][T19929] RSP: 002b:00007fb23b347038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  313.876587][T19929] RAX: ffffffffffffffda RBX: 00007fb23c885f80 RCX: 00007fb23c6ce759
[  313.876604][T19929] RDX: 000000000000002a RSI: 0000000020000180 RDI: 0000000000000004
[  313.876620][T19929] RBP: 00007fb23b347090 R08: 0000000000000000 R09: 0000000000000000
[  313.881107][T19917] EXT4-fs (loop7): Block reservation details
[  313.886224][T19929] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  313.886242][T19929] R13: 0000000000000000 R14: 00007fb23c885f80 R15: 00007ffe0786fd68
[  313.886264][T19929]  </TASK>
[  313.984752][T19917] EXT4-fs (loop7): i_reserved_data_blocks=33
[  314.053452][T15336] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  314.115163][T19779] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  314.148755][T19952] random: crng reseeded on system resumption
[  314.181332][T19779] team0: Port device team_slave_0 added
[  314.204048][T19779] team0: Port device team_slave_1 added
[  314.259891][T19779] batman_adv: batadv0: Adding interface: batadv_slave_0
[  314.266952][T19779] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  314.292920][T19779] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  314.339042][T19779] batman_adv: batadv0: Adding interface: batadv_slave_1
[  314.346243][T19779] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  314.348513][T19967] loop7: detected capacity change from 0 to 512
[  314.372184][T19779] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  314.453893][T19980] __nla_validate_parse: 11 callbacks suppressed
[  314.453910][T19980] netlink: 3 bytes leftover after parsing attributes in process `syz.3.4891'.
[  314.470615][T19967] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  314.484007][T19980] 0�X���: renamed from caif0
[  314.492409][T19967] ext4 filesystem being mounted at /203/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  314.506454][T19980] 0�X���: entered allmulticast mode
[  314.511722][T19980] A link change request failed with some changes committed already. Interface 
60�X��� may have been left with an inconsistent configuration, please check.
[  314.530412][T19779] hsr_slave_0: entered promiscuous mode
[  314.540181][T19779] hsr_slave_1: entered promiscuous mode
[  314.547157][T15336] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  314.558112][T19779] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  314.565953][T19779] Cannot create hsr debugfs directory
[  314.571716][T19989] netlink: 32 bytes leftover after parsing attributes in process `syz.4.4892'.
[  314.590651][ T2150] IPVS: stop unused estimator thread 0...
[  314.680919][T20001] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4895'.
[  314.700453][T20001] netlink: 90 bytes leftover after parsing attributes in process `syz.3.4895'.
[  314.897685][T20022] loop3: detected capacity change from 0 to 512
[  314.906606][T20022] EXT4-fs: Ignoring removed i_version option
[  314.919509][T20025] IPv6: Can't replace route, no match found
[  314.939870][T20022] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a856c018, mo2=0002]
[  314.958469][T20027] loop4: detected capacity change from 0 to 512
[  314.968426][T20022] System zones: 0-2, 18-18, 34-35
[  314.994565][T20022] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  315.008279][T20022] ext4 filesystem being mounted at /14/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  315.021541][T20022] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4901'.
[  315.030596][T20022] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4901'.
[  315.034310][T20044] loop7: detected capacity change from 0 to 128
[  315.039625][T20022] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4901'.
[  315.080162][T20022] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4901'.
[  315.089209][T20022] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4901'.
[  315.098892][T20022] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4901'.
[  315.099119][T20027] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  315.125264][   T29] kauditd_printk_skb: 574 callbacks suppressed
[  315.125283][   T29] audit: type=1326 audit(1732090631.129:29126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20043 comm="syz.0.4905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  315.155245][   T29] audit: type=1326 audit(1732090631.129:29127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20043 comm="syz.0.4905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  315.201333][T20027] ext4 filesystem being mounted at /411/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  315.223365][T19779] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  315.246199][T19779] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  315.271750][T19779] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  315.275661][   T29] audit: type=1326 audit(1732090631.189:29128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20043 comm="syz.0.4905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  315.302014][   T29] audit: type=1326 audit(1732090631.189:29129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20043 comm="syz.0.4905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  315.325676][   T29] audit: type=1326 audit(1732090631.189:29130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20043 comm="syz.0.4905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648e27e759 code=0x7ffc0000
[  315.349388][   T29] audit: type=1326 audit(1732090631.189:29131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20043 comm="syz.0.4905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f648e280677 code=0x7ffc0000
[  315.373075][   T29] audit: type=1326 audit(1732090631.189:29132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20043 comm="syz.0.4905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f648e2805ec code=0x7ffc0000
[  315.396618][   T29] audit: type=1326 audit(1732090631.189:29133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20043 comm="syz.0.4905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f648e280524 code=0x7ffc0000
[  315.420190][   T29] audit: type=1326 audit(1732090631.189:29134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20043 comm="syz.0.4905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f648e280524 code=0x7ffc0000
[  315.443816][   T29] audit: type=1326 audit(1732090631.189:29135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20043 comm="syz.0.4905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f648e27d3ea code=0x7ffc0000
[  315.471691][T19779] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  315.484580][T19531] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  315.497566][T12268] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  315.602842][T19779] 8021q: adding VLAN 0 to HW filter on device bond0
[  315.615250][T19779] 8021q: adding VLAN 0 to HW filter on device team0
[  315.634645][T19779] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  315.645239][T19779] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  315.656529][T20086] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=20086 comm=syz.4.4913
[  315.674263][ T2150] bridge0: port 1(bridge_slave_0) entered blocking state
[  315.681530][ T2150] bridge0: port 1(bridge_slave_0) entered forwarding state
[  315.724378][ T2150] bridge0: port 2(bridge_slave_1) entered blocking state
[  315.726923][T20091] loop0: detected capacity change from 0 to 512
[  315.731588][ T2150] bridge0: port 2(bridge_slave_1) entered forwarding state
[  315.790517][T20091] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  315.824996][T20091] ext4 filesystem being mounted at /276/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  315.862042][T20102] loop4: detected capacity change from 0 to 512
[  315.873638][T19779] 8021q: adding VLAN 0 to HW filter on device batadv0
[  315.882144][T20102] EXT4-fs: Ignoring removed orlov option
[  315.892596][T14927] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  315.906579][T20102] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  315.976026][T20106] loop3: detected capacity change from 0 to 512
[  315.983077][T20106] EXT4-fs: Ignoring removed i_version option
[  316.021717][T20102] EXT4-fs (loop4): 1 orphan inode deleted
[  316.028260][T20102] EXT4-fs (loop4): 1 truncate cleaned up
[  316.036281][T20102] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  316.056784][T20102] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  316.094090][T20106] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a856c018, mo2=0002]
[  316.102372][T20106] System zones: 0-2, 18-18, 34-35
[  316.138799][T12268] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.156337][T20106] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  316.160091][T19779] veth0_vlan: entered promiscuous mode
[  316.169043][T20106] ext4 filesystem being mounted at /18/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  316.180443][T19779] veth1_vlan: entered promiscuous mode
[  316.200365][T19779] veth0_macvtap: entered promiscuous mode
[  316.208060][T19779] veth1_macvtap: entered promiscuous mode
[  316.219521][T19779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  316.230088][T19779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  316.240013][T19779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  316.251266][T19779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  316.261144][T19779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  316.271714][T19779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  316.283229][T19779] batman_adv: batadv0: Interface activated: batadv_slave_0
[  316.299592][T19779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  316.310755][T19779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  316.320674][T19779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  316.331263][T19779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  316.341859][T19779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  316.352386][T19779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  316.363286][T19779] batman_adv: batadv0: Interface activated: batadv_slave_1
[  316.372990][T19779] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  316.382033][T19779] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  316.390880][T19779] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  316.400350][T19779] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  316.526090][T20176] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=20176 comm=syz.4.4925
[  316.541115][T20160] batman_adv: batadv0: Adding interface: netdevsim0
[  316.548517][T20160] batman_adv: batadv0: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  316.578158][T20160] batman_adv: batadv0: Interface activated: netdevsim0
[  316.608761][T19531] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.677805][T20189] loop4: detected capacity change from 0 to 128
[  316.682968][T20183] loop9: detected capacity change from 0 to 512
[  316.711358][T20183] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  316.726256][T20183] ext4 filesystem being mounted at /1/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  316.778143][T19779] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.954100][T20218] loop7: detected capacity change from 0 to 2048
[  316.963347][T20217] loop9: detected capacity change from 0 to 2048
[  316.998259][T20217] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  317.023434][T20218] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  317.060517][T20239] loop0: detected capacity change from 0 to 512
[  317.107477][T20239] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2
[  317.137995][T20239] EXT4-fs warning (device loop0): ext4_block_to_path:107: block 3279945729 > max in inode 13
[  317.161651][T20251] random: crng reseeded on system resumption
[  317.208012][T20239] EXT4-fs warning (device loop0): ext4_block_to_path:107: block 3279945730 > max in inode 13
[  317.243301][T20239] EXT4-fs (loop0): 1 truncate cleaned up
[  317.272798][T20255] bridge0: port 3(netdevsim0) entered blocking state
[  317.280297][T20255] bridge0: port 3(netdevsim0) entered disabled state
[  317.299453][T20255] netdevsim netdevsim9 netdevsim0: entered allmulticast mode
[  317.320869][T20255] netdevsim netdevsim9 netdevsim0: entered promiscuous mode
[  317.353083][T20255] bridge0: port 3(netdevsim0) entered blocking state
[  317.359973][T20255] bridge0: port 3(netdevsim0) entered forwarding state
[  317.400983][T20267] loop7: detected capacity change from 0 to 512
[  317.460164][T20267] ext4 filesystem being mounted at /216/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  317.483392][T20275] netlink: 'syz.0.4951': attribute type 10 has an invalid length.
[  317.528837][T20275] team0: Port device netdevsim1 added
[  317.581093][T20275] netlink: 'syz.0.4951': attribute type 10 has an invalid length.
[  317.671883][T20275] team0: Port device netdevsim1 removed
[  317.681586][T20275] bond0: (slave netdevsim1): Enslaving as an active interface with an up link
[  317.691791][T20297] loop9: detected capacity change from 0 to 512
[  317.742343][T20297] ext4 filesystem being mounted at /8/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  317.802081][T20305] batman_adv: batadv0: Interface deactivated: netdevsim0
[  317.809965][T20305] batman_adv: batadv0: Removing interface: netdevsim0
[  317.828145][T20305] batman_adv: batadv1: Adding interface: netdevsim0
[  317.828880][T20320] loop3: detected capacity change from 0 to 512
[  317.834858][T20305] batman_adv: batadv1: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  317.885551][T20305] batman_adv: batadv1: Interface activated: netdevsim0
[  317.902533][T20320] EXT4-fs: Ignoring removed orlov option
[  317.913487][T20320] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  317.960174][T20320] EXT4-fs (loop3): 1 orphan inode deleted
[  317.966784][T20320] EXT4-fs (loop3): 1 truncate cleaned up
[  318.039904][T20320] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  318.077793][T20348] loop7: detected capacity change from 0 to 128
[  318.084111][T20350] loop4: detected capacity change from 0 to 512
[  318.142581][T20353] loop0: detected capacity change from 0 to 1024
[  318.149658][T20353] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  318.150467][T20350] ext4 filesystem being mounted at /423/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  318.166024][T20353] FAULT_INJECTION: forcing a failure.
[  318.166024][T20353] name failslab, interval 1, probability 0, space 0, times 0
[  318.181165][T20353] CPU: 1 UID: 0 PID: 20353 Comm: syz.0.4973 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  318.191660][T20353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  318.201819][T20353] Call Trace:
[  318.205121][T20353]  <TASK>
[  318.208064][T20353]  dump_stack_lvl+0xf2/0x150
[  318.212709][T20353]  dump_stack+0x15/0x20
[  318.216900][T20353]  should_fail_ex+0x223/0x230
[  318.221688][T20353]  ? audit_log_start+0x34c/0x6b0
[  318.226666][T20353]  should_failslab+0x8f/0xb0
[  318.230175][T20350] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  318.231270][T20353]  kmem_cache_alloc_noprof+0x4c/0x290
[  318.250997][T20353]  audit_log_start+0x34c/0x6b0
[  318.255857][T20353]  audit_seccomp+0x4b/0x130
[  318.260375][T20353]  __seccomp_filter+0x6fa/0x1180
[  318.265451][T20353]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  318.271098][T20353]  ? vfs_write+0x596/0x920
[  318.275531][T20353]  ? putname+0xcf/0xf0
[  318.279651][T20353]  __secure_computing+0x9f/0x1c0
[  318.284731][T20353]  syscall_trace_enter+0xd1/0x1f0
[  318.289801][T20353]  ? fpregs_assert_state_consistent+0x83/0xa0
[  318.295913][T20353]  do_syscall_64+0xaa/0x1c0
[  318.300506][T20353]  ? clear_bhb_loop+0x55/0xb0
[  318.305194][T20353]  ? clear_bhb_loop+0x55/0xb0
[  318.309935][T20353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.315916][T20353] RIP: 0033:0x7f648e27e759
[  318.320337][T20353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  318.340133][T20353] RSP: 002b:00007f648cef7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce
[  318.348755][T20353] RAX: ffffffffffffffda RBX: 00007f648e435f80 RCX: 00007f648e27e759
[  318.356746][T20353] RDX: 0000000000000000 RSI: 0000000020000680 RDI: 0000000000002004
[  318.364734][T20353] RBP: 00007f648cef7090 R08: 0000000000000000 R09: 0000000000000000
[  318.372782][T20353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  318.380824][T20353] R13: 0000000000000000 R14: 00007f648e435f80 R15: 00007fff4c0ebcf8
[  318.388817][T20353]  </TASK>
[  318.403142][T20350] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 33 with error 28
[  318.415658][T20350] EXT4-fs (loop4): This should not happen!! Data will be lost
[  318.415658][T20350] 
[  318.425380][T20350] EXT4-fs (loop4): Total free blocks count 0
[  318.431387][T20350] EXT4-fs (loop4): Free/Dirty block details
[  318.437389][T20350] EXT4-fs (loop4): free_blocks=65280
[  318.442698][T20350] EXT4-fs (loop4): dirty_blocks=33
[  318.447897][T20350] EXT4-fs (loop4): Block reservation details
[  318.453944][T20350] EXT4-fs (loop4): i_reserved_data_blocks=33
[  318.479173][T20350] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=20350 comm=syz.4.4972
[  318.728898][T20402] loop3: detected capacity change from 0 to 128
[  318.920927][T20425] loop9: detected capacity change from 0 to 512
[  318.961892][T20425] ext4 filesystem being mounted at /11/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  319.178240][T20459] loop4: detected capacity change from 0 to 512
[  319.212003][T20462] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  319.219567][T20462] batman_adv: batadv0: Removing interface: batadv_slave_0
[  319.242023][T20459] ext4 filesystem being mounted at /425/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  319.253356][T20462] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  319.260954][T20462] batman_adv: batadv0: Removing interface: batadv_slave_1
[  319.293983][T20452] batman_adv: batadv0: Adding interface: netdevsim0
[  319.300688][T20452] batman_adv: batadv0: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  319.326481][T20452] batman_adv: batadv0: Interface activated: netdevsim0
[  319.334549][T20473] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=20473 comm=syz.9.4991
[  319.340841][T20459] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  319.393493][T20459] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 33 with error 28
[  319.406738][T20459] EXT4-fs (loop4): This should not happen!! Data will be lost
[  319.406738][T20459] 
[  319.416545][T20459] EXT4-fs (loop4): Total free blocks count 0
[  319.422674][T20459] EXT4-fs (loop4): Free/Dirty block details
[  319.428612][T20459] EXT4-fs (loop4): free_blocks=65280
[  319.433974][T20459] EXT4-fs (loop4): dirty_blocks=33
[  319.439857][T20459] EXT4-fs (loop4): Block reservation details
[  319.445888][T20459] EXT4-fs (loop4): i_reserved_data_blocks=33
[  319.456372][T20476] __nla_validate_parse: 46 callbacks suppressed
[  319.456387][T20476] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4993'.
[  319.474231][T20459] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=20459 comm=syz.4.4990
[  319.530336][T20476] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4993'.
[  319.604324][T20494] netlink: 24 bytes leftover after parsing attributes in process `syz.7.4998'.
[  319.626118][T20494] netlink: 74 bytes leftover after parsing attributes in process `syz.7.4998'.
[  319.700314][T20509] netlink: 32 bytes leftover after parsing attributes in process `syz.7.5002'.
[  319.710035][T20503] netlink: 32 bytes leftover after parsing attributes in process `syz.9.5001'.
[  319.722890][T20511] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5003'.
[  319.825103][T20523] loop0: detected capacity change from 0 to 512
[  319.885988][T20523] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2
[  319.915979][T20523] EXT4-fs warning (device loop0): ext4_block_to_path:107: block 3279945729 > max in inode 13
[  319.926361][T20523] EXT4-fs warning (device loop0): ext4_block_to_path:107: block 3279945730 > max in inode 13
[  319.936789][T20523] EXT4-fs (loop0): 1 truncate cleaned up
[  319.966831][T20533] SELinux:  Context :yz1G��@�M=v��p�@9��� is not valid (left unmapped).
[  320.045038][T20540] netlink: 24 bytes leftover after parsing attributes in process `syz.9.5012'.
[  320.056123][T20540] netlink: 74 bytes leftover after parsing attributes in process `syz.9.5012'.
[  320.160707][T20553] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5014'.
[  320.176197][T20557] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=20557 comm=syz.9.5015
[  320.190149][T20553] batman_adv: batadv1: Interface deactivated: netdevsim0
[  320.197398][T20553] batman_adv: batadv1: Removing interface: netdevsim0
[  320.213679][   T29] kauditd_printk_skb: 633 callbacks suppressed
[  320.213698][   T29] audit: type=1326 audit(1732090636.209:29767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20558 comm="syz.3.5016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd19fde759 code=0x7ffc0000
[  320.244786][   T29] audit: type=1326 audit(1732090636.209:29768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20558 comm="syz.3.5016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdd19fde759 code=0x7ffc0000
[  320.269139][   T29] audit: type=1326 audit(1732090636.209:29769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20558 comm="syz.3.5016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd19fde759 code=0x7ffc0000
[  320.293016][   T29] audit: type=1326 audit(1732090636.209:29770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20558 comm="syz.3.5016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdd19fde759 code=0x7ffc0000
[  320.317315][   T29] audit: type=1326 audit(1732090636.209:29771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20558 comm="syz.3.5016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd19fde759 code=0x7ffc0000
[  320.341067][   T29] audit: type=1326 audit(1732090636.209:29772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20558 comm="syz.3.5016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fdd19fde759 code=0x7ffc0000
[  320.365789][   T29] audit: type=1326 audit(1732090636.209:29773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20558 comm="syz.3.5016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd19fde759 code=0x7ffc0000
[  320.389394][   T29] audit: type=1326 audit(1732090636.209:29774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20558 comm="syz.3.5016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7fdd19fde759 code=0x7ffc0000
[  320.413754][   T29] audit: type=1326 audit(1732090636.209:29775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20558 comm="syz.3.5016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd19fde759 code=0x7ffc0000
[  320.438061][   T29] audit: type=1326 audit(1732090636.209:29776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20558 comm="syz.3.5016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=51 compat=0 ip=0x7fdd19fde759 code=0x7ffc0000
[  320.463421][T20553] batman_adv: batadv2: Adding interface: netdevsim0
[  320.470755][T20553] batman_adv: batadv2: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  320.495387][T20586] loop7: detected capacity change from 0 to 512
[  320.497776][T20553] batman_adv: batadv2: Interface activated: netdevsim0
[  320.533806][T20586] ext4 filesystem being mounted at /233/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  320.595035][T20592] loop3: detected capacity change from 0 to 512
[  320.640646][T20586] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  320.655677][T20586] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 33 with error 28
[  320.668134][T20586] EXT4-fs (loop7): This should not happen!! Data will be lost
[  320.668134][T20586] 
[  320.678223][T20586] EXT4-fs (loop7): Total free blocks count 0
[  320.684254][T20586] EXT4-fs (loop7): Free/Dirty block details
[  320.690296][T20586] EXT4-fs (loop7): free_blocks=65280
[  320.695697][T20586] EXT4-fs (loop7): dirty_blocks=33
[  320.696920][T20598] loop0: detected capacity change from 0 to 512
[  320.700813][T20586] EXT4-fs (loop7): Block reservation details
[  320.700829][T20586] EXT4-fs (loop7): i_reserved_data_blocks=33
[  320.732049][T20592] ext4 filesystem being mounted at /42/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  320.752797][T20586] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=20586 comm=syz.7.5017
[  320.789970][T20598] ext4 filesystem being mounted at /300/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  320.810253][T20598] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  320.825406][T20598] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 33 with error 28
[  320.837949][T20598] EXT4-fs (loop0): This should not happen!! Data will be lost
[  320.837949][T20598] 
[  320.848007][T20598] EXT4-fs (loop0): Total free blocks count 0
[  320.854020][T20598] EXT4-fs (loop0): Free/Dirty block details
[  320.860063][T20598] EXT4-fs (loop0): free_blocks=65280
[  320.865413][T20598] EXT4-fs (loop0): dirty_blocks=33
[  320.870612][T20598] EXT4-fs (loop0): Block reservation details
[  320.876718][T20598] EXT4-fs (loop0): i_reserved_data_blocks=33
[  320.895708][T20619] netem: change failed
[  320.902337][T20617] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=20617 comm=syz.0.5022
[  320.918887][T20619] hsr_slave_0 (unregistering): left promiscuous mode
[  320.938915][T20621] loop9: detected capacity change from 0 to 512
[  320.945751][T20621] EXT4-fs: Ignoring removed i_version option
[  320.980280][T20621] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a856c018, mo2=0002]
[  320.995669][T20621] System zones: 0-2, 18-18, 34-35
[  321.000229][T20629] veth1_vlan: entered allmulticast mode
[  321.007020][T20621] ext4 filesystem being mounted at /22/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  321.113522][T20646] loop4: detected capacity change from 0 to 512
[  321.149720][T20646] ext4 filesystem being mounted at /434/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  321.316938][T20671] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  321.324411][T20671] batman_adv: batadv0: Removing interface: batadv_slave_0
[  321.337397][T20671] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  321.344897][T20671] batman_adv: batadv0: Removing interface: batadv_slave_1
[  321.418364][T20676] 9pnet_virtio: no channels available for device 127.0.0.1
[  321.531146][T20683] loop7: detected capacity change from 0 to 512
[  321.539038][T20683] EXT4-fs: Ignoring removed i_version option
[  321.569751][T20683] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a856c018, mo2=0002]
[  321.580825][T20689] loop4: detected capacity change from 0 to 1024
[  321.584426][T20683] System zones: 0-2, 18-18, 34-35
[  321.595583][T20691] loop9: detected capacity change from 0 to 2048
[  321.598078][T20683] ext4 filesystem being mounted at /235/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  321.606714][T20689] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  321.711218][T20709] loop4: detected capacity change from 0 to 512
[  321.724266][T20711] netem: change failed
[  321.752473][T20709] ext4 filesystem being mounted at /437/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  321.773758][T20691] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  321.790463][T20691] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 1 with error 28
[  321.803252][T20691] EXT4-fs (loop9): This should not happen!! Data will be lost
[  321.803252][T20691] 
[  321.813234][T20691] EXT4-fs (loop9): Total free blocks count 0
[  321.820094][T20691] EXT4-fs (loop9): Free/Dirty block details
[  321.826122][T20691] EXT4-fs (loop9): free_blocks=2415919104
[  321.827596][T20715] loop0: detected capacity change from 0 to 2048
[  321.831846][T20691] EXT4-fs (loop9): dirty_blocks=16
[  321.831864][T20691] EXT4-fs (loop9): Block reservation details
[  321.850277][T20691] EXT4-fs (loop9): i_reserved_data_blocks=1
[  321.871284][T20711] hsr_slave_0 (unregistering): left promiscuous mode
[  321.883222][T20715] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  321.898284][T20715] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 1 with error 28
[  321.911313][T20715] EXT4-fs (loop0): This should not happen!! Data will be lost
[  321.911313][T20715] 
[  321.921400][T20715] EXT4-fs (loop0): Total free blocks count 0
[  321.927437][T20715] EXT4-fs (loop0): Free/Dirty block details
[  321.933373][T20715] EXT4-fs (loop0): free_blocks=2415919104
[  321.939798][T20715] EXT4-fs (loop0): dirty_blocks=16
[  321.944932][T20715] EXT4-fs (loop0): Block reservation details
[  321.951024][T20715] EXT4-fs (loop0): i_reserved_data_blocks=1
[  321.957812][T15104] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  321.970048][T15104] EXT4-fs (loop9): This should not happen!! Data will be lost
[  321.970048][T15104] 
[  322.044077][ T2150] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  322.056427][ T2150] EXT4-fs (loop0): This should not happen!! Data will be lost
[  322.056427][ T2150] 
[  322.069464][T20727] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=20727 comm=syz.7.5065
[  322.133391][T20736] netem: change failed
[  322.229456][T20747] loop7: detected capacity change from 0 to 512
[  322.232860][T20744] loop4: detected capacity change from 0 to 512
[  322.238558][T20749] loop0: detected capacity change from 0 to 512
[  322.252546][T20750] loop9: detected capacity change from 0 to 512
[  322.253507][T20747] EXT4-fs: Ignoring removed orlov option
[  322.263417][T20750] EXT4-fs (loop9): Cannot turn on journaled quota: type 1: error -2
[  322.273014][T20747] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  322.278275][T20750] EXT4-fs warning (device loop9): ext4_block_to_path:107: block 3279945729 > max in inode 13
[  322.294288][T20750] EXT4-fs warning (device loop9): ext4_block_to_path:107: block 3279945730 > max in inode 13
[  322.304993][T20750] EXT4-fs (loop9): 1 truncate cleaned up
[  322.308764][T20744] ext4 filesystem being mounted at /442/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  322.322367][T20747] EXT4-fs (loop7): 1 orphan inode deleted
[  322.328234][T20747] EXT4-fs (loop7): 1 truncate cleaned up
[  322.335006][T20749] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2
[  322.346234][T20747] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  322.400477][T20749] EXT4-fs warning (device loop0): ext4_block_to_path:107: block 3279945729 > max in inode 13
[  322.410838][T20749] EXT4-fs warning (device loop0): ext4_block_to_path:107: block 3279945730 > max in inode 13
[  322.421418][T20749] EXT4-fs (loop0): 1 truncate cleaned up
[  322.492689][T20773] loop4: detected capacity change from 0 to 512
[  322.507655][ T8827] ==================================================================
[  322.515807][ T8827] BUG: KCSAN: data-race in fill_mg_cmtime / shmem_mknod
[  322.522784][ T8827] 
[  322.525116][ T8827] write to 0xffff888104812c8c of 4 bytes by task 3541 on cpu 1:
[  322.532755][ T8827]  shmem_mknod+0x136/0x180
[  322.537201][ T8827]  shmem_create+0x34/0x40
[  322.541550][ T8827]  path_openat+0xe92/0x1fa0
[  322.546067][ T8827]  do_filp_open+0x107/0x230
[  322.550604][ T8827]  do_sys_openat2+0xab/0x120
[  322.555216][ T8827]  __x64_sys_openat+0xf3/0x120
[  322.560002][ T8827]  x64_sys_call+0x2b30/0x2dc0
[  322.564696][ T8827]  do_syscall_64+0xc9/0x1c0
[  322.569218][ T8827]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.575213][ T8827] 
[  322.577545][ T8827] read to 0xffff888104812c8c of 4 bytes by task 8827 on cpu 0:
[  322.585092][ T8827]  fill_mg_cmtime+0x58/0x280
[  322.589705][ T8827]  generic_fillattr+0x241/0x330
[  322.594580][ T8827]  shmem_getattr+0x17b/0x200
[  322.599187][ T8827]  vfs_statx_path+0x171/0x2d0
[  322.603873][ T8827]  vfs_statx+0xe1/0x170
[  322.608046][ T8827]  __se_sys_newfstatat+0xdc/0x300
[  322.613095][ T8827]  __x64_sys_newfstatat+0x55/0x70
[  322.618141][ T8827]  x64_sys_call+0x236d/0x2dc0
[  322.622835][ T8827]  do_syscall_64+0xc9/0x1c0
[  322.627353][ T8827]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.633255][ T8827] 
[  322.635579][ T8827] value changed: 0x1ef99115 -> 0x1f009caf
[  322.641731][ T8827] 
[  322.644055][ T8827] Reported by Kernel Concurrency Sanitizer on:
[  322.650204][ T8827] CPU: 0 UID: 0 PID: 8827 Comm: udevd Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  322.660102][ T8827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  322.670164][ T8827] ==================================================================
[  322.708515][T20773] ext4 filesystem being mounted at /443/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  327.202731][   T29] kauditd_printk_skb: 565 callbacks suppressed
[  327.202784][   T29] audit: type=1400 audit(1732090643.199:30342): avc:  denied  { recv } for  pid=0 comm="swapper/1" saddr=10.128.0.163 src=49938 daddr=10.128.0.48 dest=22 netif=eth0 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1