last executing test programs:

3.473620771s ago: executing program 2 (id=3001):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, 0x0, &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = perf_event_open$cgroup(&(0x7f0000000180)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r2, 0x4008240b, &(0x7f0000000000)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})
close(0xffffffffffffffff)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xfdef)
bpf$MAP_LOOKUP_ELEM(0x1, 0x0, 0x0)
syz_clone(0x4021400, 0x0, 0x9000, 0x0, 0x0, 0x0)

3.312591411s ago: executing program 4 (id=3003):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r0}, 0x18)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000000)=@ringbuf={{}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x89f1, &(0x7f0000000900)={'ip6gre0\x00', @random="0600002000"})

3.28488442s ago: executing program 4 (id=3004):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x6, 0x24, &(0x7f0000000f00)=ANY=[@ANYBLOB="180000000500000000000000090000001854000002000000000000000000000018110000", @ANYRES32=0x1, @ANYBLOB="0000000000000000b7080000070000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000820000001838000005000000000000000000000018120000", @ANYRES32=0x1, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000018110000", @ANYRES32=0x1, @ANYBLOB="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"], &(0x7f0000000000)='syzkaller\x00', 0x3, 0xbf, &(0x7f00000004c0)=""/191, 0x40f00, 0x74, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x1, 0x3}, 0x8, 0x10, &(0x7f0000000580)={0x2, 0xb, 0x1ff, 0x763}, 0x10, 0x0, 0x0, 0x7, &(0x7f00000005c0)=[0x1, 0x1, 0xffffffffffffffff, 0x1, 0x1], &(0x7f0000000600)=[{0x2, 0x3, 0x5, 0x7}, {0x2, 0x1, 0xa, 0x7}, {0x3, 0x4, 0xa, 0x9}, {0x0, 0x2, 0xb, 0x6}, {0x2, 0x2, 0xf, 0x7}, {0x4, 0x5, 0x6, 0x7}, {0x1, 0x2, 0x1, 0xa}], 0x10, 0xab4c, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x0, 0x2, &(0x7f0000000880)=ANY=[@ANYBLOB="18000000000000020000000000000000180900001e4aaaf8a574596215ee61949e0297a5cc4e3e4fe405eee0125e0e8974147cf2e851f376c7528a50253ecffec3712fcea847ed064884a7a203d5469479fd279bc89425a67f2e2699711cf1dff68a52cd6a6e66cb05041d70fddd2c31af1877573d5fd27e584d02e4b18112665e2b469f46b99b8fdcfd1416b3bdac41748518285f940ab64f5f6c0f99cdaac757b5dded4c7bdfd9125f18e438f40b7f47f67225c8ba8d5ff62d7ca07f63b3ad8a457ede90ba6ef45644f52177ec2c7b8929f37506f03e13fcdc8709b6553c878a25194e77cd5cfd5cfe7f2e5b23040ebc", @ANYRES32, @ANYBLOB="00000000000057b6b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095", @ANYRES64=r0, @ANYRES8=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
dup2(r1, r2)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
pivot_root(&(0x7f0000000440)='./file0\x00', &(0x7f0000000080)='./file0\x00')
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x100000e, 0x12, r2, 0x0)
move_pages(0x0, 0x1efe, &(0x7f0000000080), 0x0, &(0x7f0000000040), 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$KDSKBENT(r3, 0x4b47, &(0x7f0000000ec0)={0x6, 0x6, 0x8})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x1f)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
unshare(0x600)
bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x10)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r6, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x120, &(0x7f0000000100)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@response={0x2, 0x0, 0x0, "82d18160f7d8dda36479a6b179161b4bbff2d0508977b3928ebd2dee05607d17", "0194bd7b1b0303c5ba7f602606a285b3", {"30da2d58da817f8a5f77a23de36a2164", "3b33cfa231a427159c7b9f0eceb155f0"}}}}}}}, 0x0)
recvfrom(r6, 0x0, 0x0, 0x2, 0x0, 0x0)
lsetxattr$trusted_overlay_nlink(&(0x7f0000000e00)='./file0\x00', &(0x7f0000000e40), &(0x7f0000000e80)={'L+', 0x6}, 0x16, 0x0)

3.26164476s ago: executing program 2 (id=3005):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x21081e, &(0x7f0000000280)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@errors_remount}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLCSFUCdEjSG1I3CiKHUexU5rQQ3rmikQlTnDkD+DcE3cuCG5cygGJHxGoQeLg1YwnqZvaTdQkdhR/PtJo3ps39fe9pvNe/U3iF8DQuhoRuxExFhF3I2I6u57LjvisfST3Pdt7uLS/93ApF63W7X/l0vbkWnT8mcSV7DWLEfGj70X8NPdy3Mb2ztpitVrZzOqzzdrGbGN758ZqbXGlslJZL5cX5hfmPrn5cfnMxvpebSwrffXpH3e/9fOkW1PZlc5xnKX20AuHcRKjEfGD8wg2ACPZeMYG3RFeSz4i3o6I99PnfzpG0q8mAHCZtVrT0ZrurAMAl10+zYHl8qUsFzAV+Xyp1M7hvROT+Wq90bx+r761vtzOlc1EIX9vtVqZy3KFM1HIJfX5tPy8Xj5SvxkRb0XEL8cn0nppqV5dHuR/fABgiF05sv7/d7y9/gMAl1xx0B0AAPrO+g8Aw8f6DwDDx/oPAMOnvf5PDLobAEAfef8PAMPH+g8AQ+WHt24lR2s/+/zr5fvbW2v1+zeWK421Um1rqbRU39wordTrK+ln9tSOe71qvb4x/1FsPZj59kajOdvY3rlTq2+tN++kn+t9p1JI79rtw8gAgF7eeu/JX3LJivzpRHpEx14OhYH2DDhv+UF3ABiYkUF3ABgYu33B8DrFe3zpAbgkumzR+4Jit18QarVarfPrEnDOrn1J/h+GVUf+308Bw5CR/4fhJf8Pw6vVyp10z/846Y0AwMUmxw/0+P7/29n5d9k3B36yfPSOx+fZKwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYDvb/LWV7gU9FPl8qRbwRETNRyN1brVbmIuLNiPjzeGE8qc8PuM8AwGnl/57L9v+6Nv3h1AtN7145LI5FxM9+fftXDxabzc0/RYzl/j1+cL35OLte7n/vAYDjHazT6bnjjfyzvYdLB0c/+/OP70ZEsR1/f28s9g/jj8Zoei5GISIm/5PL6m25jtzFaew+iogvdht/LqbSHEh759Oj8ZPYb/Q1fv6F+Pm0rX1O/i6+cAZ9gWHzJJl/Puv2/OXjanru/vwX0xnq9LL5L3mppf10Dnwe/2D+G+kx/109aYyP/vD9dmni5bZHEV8ejTiIvd8x/xzEz/WI/+EJ4//1K+++36ut9ZuIa9E9fmes2WZtY7axvXNjtba4UlmprJfLC/MLc5/c/Lg8m+aoZ3uvBv/89PqbvdqS8U/2iF88ZvxfP+H4f/v/uz/+2ivif/ODbvHz8c4r4idr4jdOGH9x8vfFXm1J/OUe4z/u63/9hPGf/m3npW3DAYDBaWzvrC1Wq5VNBYWLX0j+yV6AbnQtfKdfscaie9MvPmg/00eaWq3XitVrxjiLrBtwERw+9BHxv0F3BgAAAAAAAAAAAAAA6Kofv7E06DECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABweX0eAAD//19xzyM=")
r1 = open(&(0x7f0000000480)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000ac0)=ANY=[@ANYBLOB="000000004c9002000000000003000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001f0000000000000000000000000000000000000000000000000000000000000ffffffff00"/159])

3.10650991s ago: executing program 2 (id=3007):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000100)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000040), &(0x7f0000000280)='%pS    \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf38, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = memfd_secret(0x80000)
fcntl$setlease(r2, 0x400, 0x0)
fsetxattr$system_posix_acl(r2, &(0x7f0000000380)='system.posix_acl_default\x00', 0x0, 0x0, 0x0)

2.907477779s ago: executing program 2 (id=3008):
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
madvise(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x19) (async)
fchdir(r0) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0) (async)
r1 = open$dir(&(0x7f0000000000)='./file0\x00', 0x4042c1, 0x0) (async)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_INTERFACE(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, 0x0, 0x505, 0x70bd2b, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x1}, 0x4840) (async)
close(r1)

2.624583028s ago: executing program 2 (id=3009):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000100)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf38, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
memfd_secret(0x80000)

2.431864698s ago: executing program 2 (id=3011):
socket$unix(0x1, 0x3, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x12, &(0x7f0000000440)=ANY=[], 0x0, 0x826, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080), 0x8)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000280)={0x0, @multicast2, @private}, &(0x7f00000002c0)=0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
statx(0xffffffffffffff9c, 0x0, 0x6000, 0x1, 0x0)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000240)=0xfffffc04, 0x0, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x47f6, 0x0, 0x0, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000200), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
sendmsg$DEVLINK_CMD_RATE_NEW(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r3, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmmsg$inet(r1, &(0x7f0000002f00)=[{{&(0x7f0000000000)={0x2, 0x4e24, @local}, 0x10, 0x0}}], 0x1, 0x20004000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

2.416460727s ago: executing program 4 (id=3013):
r0 = syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x2)
r1 = dup(r0)
ioctl$USBDEVFS_CONTROL(r1, 0xc0185500, 0x0)

2.324557887s ago: executing program 4 (id=3014):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r0}, 0x18)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000000)=@ringbuf={{}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x89f1, &(0x7f0000000900)={'ip6gre0\x00', @random="0600002000"})

2.275056587s ago: executing program 4 (id=3015):
socket$unix(0x1, 0x3, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x12, &(0x7f0000000440)=ANY=[], 0x0, 0x826, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000280)={0x0, @multicast2, @private}, &(0x7f00000002c0)=0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
statx(0xffffffffffffff9c, 0x0, 0x6000, 0x1, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000240)=0xfffffc04, 0x0, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x47f6, 0x0, 0x0, 0x0, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000200), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r4, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
sendmsg$DEVLINK_CMD_RATE_NEW(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r2, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)

1.842813396s ago: executing program 4 (id=3019):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, 0x0, &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = perf_event_open$cgroup(&(0x7f0000000180)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r2, 0x4008240b, &(0x7f0000000000)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})
close(0xffffffffffffffff)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xfdef)
bpf$MAP_LOOKUP_ELEM(0x1, 0x0, 0x0)
syz_clone(0x4021400, 0x0, 0x9000, 0x0, 0x0, 0x0)

1.332888384s ago: executing program 0 (id=3025):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r0}, 0x18)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000000)=@ringbuf={{}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x89f1, &(0x7f0000000900)={'ip6gre0\x00', @random="0600002000"})

1.237657684s ago: executing program 0 (id=3027):
r0 = socket(0x10, 0x803, 0x0)
io_setup(0x20, &(0x7f0000001140))
io_setup(0x3ff, &(0x7f0000000640)=<r1=>0x0)
io_destroy(r1)
io_submit(r1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0xc, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8983, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = epoll_create1(0x0)
r4 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x181000, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f00000000c0)={0x2})
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r9=>0x0})
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000000c0)=ANY=[@ANYBLOB="6c000000100003042cbd700000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000003c00128009000100766c616e000000002c00028006000100000000001c0003800c00010000010000800000000c00010000000000ffffff7f0400048008000a00", @ANYRES32=r9, @ANYBLOB="08000500", @ANYRES32=r9], 0x6c}, 0x1, 0xba01}, 0x0)
r10 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r2)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r2, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000300)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="01000000040200f2c8dc1b000000180001801400020073797a5f74756e0000000000000000000c000280"], 0x38}, 0x1, 0x0, 0x0, 0x20000844}, 0x0)

1.009872533s ago: executing program 0 (id=3034):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000600)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = socket(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f00000003c0)=ANY=[@ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
sendfile(r4, r4, 0x0, 0x40000f63c)
sendto$inet6(r1, &(0x7f0000000080)="7800000018002507b9409b14ffff00000204be04020506050e020409430009003f000c00100000000d0085a168d0bf46d32345653600648d0a00120002000a0000005ade4a460c89b6ec0cff3959547f509058ba86c902000000004a32000400160005000a0000000000e000e218d1ddf66ed538f2523250", 0x78, 0x0, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r6}, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x2, 0x0)
sendfile(r8, r7, 0x0, 0x6)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020025797a31000000000900010073797a3000000000080005400000001c"], 0xe8}}, 0x0)

652.100812ms ago: executing program 1 (id=3040):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
lgetxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000680)=@known='user.incfs.metadata\x00', 0x0, 0x2)
fsopen(&(0x7f0000000000)='bpf\x00', 0x0)

605.832782ms ago: executing program 1 (id=3042):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='sys_enter\x00', r1, 0x0, 0x2}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000040), &(0x7f0000000080)=r1}, 0x20)
getitimer(0xe, 0x0)

524.670102ms ago: executing program 3 (id=3043):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSKBSENT(r2, 0x4b49, &(0x7f0000000380)={0x6, "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"})

524.401202ms ago: executing program 1 (id=3044):
openat$selinux_attr(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0)
accept4$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000040)=0x14, 0x800)
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94)
r1 = msgget$private(0x0, 0x480)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffea4, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r3}, 0x10)
memfd_create(&(0x7f0000002180)='\xa3\xcb\x04=\x827\xe7\x81S\bD\xd8K| \x8b\xdb\xb1\x03\xd0\x9d2\x9es\x19_=#n_\xeb\xbdR\xfd`U\xa7k\xd0\xd8\xd2\xc0\x91\xc1\x98#\r\xa7\x16\xfd@\xd7V*^\xcf\x9f\b1\xce3\vN\xa6\x01\xb5\xb5\xba\xdc\xc8\xda\xd2\apY\vu\x80\xa9\x14X\xcf!\xd3W\'\xb44#\xf6\x7fHS\xa6l\x17\x97\x80\xea\xc5+T\xe3\"\xda\x14\xfe,\xf3\\\xeb\x1cp\xd6\xc1\b\xec\xe1\x94\xdf\xdb\xa1\xf7=B\xb2\x94o\xd5{\xd2_\x93\xa1)\xdem\'H\\e\x8bu\xbcVw\xaeb\xa1b\xb1\xc1\f\x9f0\x93\x0f\x16,\xeb!Z\xa9\\\xf7B\xf8L\x05\xc7\xf7q\x9d_\xb4\xbb3i[t\xb6\xbc\x824\x7f\xd7\xb7 \xd4\x7fUE\xcb7\xe3\xb4\xb6\xa0\xd8\x1b\a8\xfe$\xa1\x12&\xb2\xfc\xfb\x12U\xb9u\xb4=\xa5\x9e\x1f`\x05q5\xee\xde\xdf\xba\xc4\xc5q\x8bk\xf1\x9c\xc3\xa4w\xf9!^#\x8c', 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
ioctl$SG_GET_VERSION_NUM(0xffffffffffffffff, 0x2284, &(0x7f0000000080))
msgrcv(r1, 0x0, 0x0, 0x2, 0x2000)
msgctl$IPC_RMID(r1, 0x0)
msgctl$IPC_RMID(r1, 0x0)
syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000540)='./file0\x00', 0x204018, &(0x7f0000000140)=ANY=[@ANYBLOB="6f76657272696465726f636b7065726d2c6e6f636f6d70726573732c686964652c73657373696f6e3d3078303030303030303030303030303032312c756e686964652c696f636861727365743d63703433372c6f76657272696465726f636b7065726d2c626c6f636b3d3078303030303030303030303030303430302c005fb50aab29cf1d32d24be5ab2a6506aa524c8f1cd5781842ee1c86bee627767fee958f25bb6db8e631262ed8a59d337d730b6698271aeb8c31c1902a7e236e5dd878e6c1352c0c799d8e80d7346f8d2870acebe617c694bbb925d3ab4fb01784c564c03d88c81d2f84f58e8c6ba18548f09fa6"], 0x1, 0x563, &(0x7f0000000f80)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.time\x00', 0x26e1, 0x0)
openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
msgsnd(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0200000000"], 0xdc, 0x800)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x2f, &(0x7f0000000180)={&(0x7f0000000240)=@newtfilter={0x6c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x3c, 0x2, [@TCA_BASIC_EMATCHES={0x38, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}, @TCA_EMATCH_TREE_LIST={0x2c, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}, @TCF_EM_META={0x18, 0x2, 0x0, 0x0, {{}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x0, 0xe, 0x1}, {0x9, 0x8, 0x2549677028661870}}}]}}]}]}]}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x400c040}, 0x0)

504.999472ms ago: executing program 3 (id=3045):
r0 = socket(0x10, 0x803, 0x0)
io_setup(0x20, &(0x7f0000001140))
io_setup(0x3ff, &(0x7f0000000640)=<r1=>0x0)
io_destroy(r1)
io_submit(r1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0xc, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8983, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = epoll_create1(0x0)
r4 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x181000, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f00000000c0)={0x2})
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r9=>0x0})
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000000c0)=ANY=[@ANYBLOB="6c000000100003042cbd700000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000003c00128009000100766c616e000000002c00028006000100000000001c0003800c00010000010000800000000c00010000000000ffffff7f0400048008000a00", @ANYRES32=r9, @ANYBLOB="08000500", @ANYRES32=r9], 0x6c}, 0x1, 0xba01}, 0x0)
r10 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r2)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r2, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000300)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="01000000040200f2c8dc1b000000180001801400020073797a5f74756e0000000000000000000c000280"], 0x38}, 0x1, 0x0, 0x0, 0x20000844}, 0x0)

439.954981ms ago: executing program 1 (id=3046):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000700)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
lgetxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000680)=@known='user.incfs.metadata\x00', 0x0, 0x2)
fsopen(&(0x7f0000000000)='bpf\x00', 0x0)

414.909481ms ago: executing program 1 (id=3047):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
sched_rr_get_interval(0x0, &(0x7f0000000400))

348.556631ms ago: executing program 1 (id=3048):
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x800)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r4, 0x4058534c, &(0x7f0000000180)={0x80, 0x2a, 0x1})
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f00000002c0)=[@window, @timestamp, @mss={0x2, 0x8}, @window, @window={0x3, 0x3, 0x5}, @timestamp, @mss={0x2, 0x9}, @timestamp], 0x8)
sendto$inet(r3, &(0x7f00000004c0)="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", 0xfdef, 0x805, 0x0, 0x0)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
lstat(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0))

295.003631ms ago: executing program 3 (id=3049):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
r1 = dup(r0)
sendto$inet6(r1, 0x0, 0x0, 0x1000, 0x0, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000640)='pagemap\x00')
lseek(r2, 0x1, 0x3)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e000000850000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x9)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r4}, 0x10)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000b00)=@base={0x6, 0x4, 0x70be, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
setgid(0x0)
r5 = openat$nci(0xffffffffffffff9c, &(0x7f0000002540), 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r7 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001440), 0x0, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000980)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r8}, 0x10)
ioctl$IMADDTIMER(r7, 0x80044940, &(0x7f0000000080)=0x14)
ioctl$IMADDTIMER(r7, 0x80044940, &(0x7f00000001c0)=0x32)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ed50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r9}, 0x10)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000019280)=ANY=[@ANYBLOB="1c0000001a00010000000000fbdbdf2581208000"], 0x44}}, 0x0)
close(r7)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r6}, 0x38)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r11}, 0x10)
r12 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000002840), 0x0, 0x0)
close_range(r5, r12, 0x0)

168.58816ms ago: executing program 3 (id=3050):
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xc8, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000580)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80044, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0xc8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r1}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000020007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r3)
recvmsg$unix(r2, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r5}, 0x10)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, @perf_bp={&(0x7f0000000080), 0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x203}, 0x0, 0x3, 0xffffffffffffffff, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb790700117df37538e486dd6317ce22000000000000000000000000000000007f"], 0xfdef)

118.64797ms ago: executing program 3 (id=3051):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000700)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
lgetxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000680)=@known='user.incfs.metadata\x00', 0x0, 0x2)
fsopen(&(0x7f0000000000)='bpf\x00', 0x0)

113.67303ms ago: executing program 0 (id=3052):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000100)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000040), &(0x7f0000000280)='%pS    \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf38, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = memfd_secret(0x80000)
fcntl$setlease(r2, 0x400, 0x0)
fsetxattr$system_posix_acl(r2, &(0x7f0000000380)='system.posix_acl_default\x00', 0x0, 0x0, 0x0)

74.51712ms ago: executing program 0 (id=3053):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
brk(0x9)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@newlink={0x40, 0x10, 0x401, 0x70bd2c, 0x0, {}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @wireguard={{0xe}, {0x4}}}, @IFLA_MASTER={0x8, 0x3}]}, 0x40}}, 0x0)
r2 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f00000001c0)=<r3=>0x0)
connect$nfc_llcp(r2, &(0x7f0000000380)={0x27, r3, 0x0, 0x6, 0xa, 0x37, "e7376d45219c698ed9f5386d8b0cdbcd86dfc078a1cc0656d89bc9ac8e27eb53a72a07e014231a9de93d31d5c7f413f83c7d808df219c4e236535322e075c0", 0x36}, 0x60)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.net/syz1\x00', 0x200002, 0x0)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f00000002c0)={<r5=>0x0, 0xd}, &(0x7f0000000400)=0x8)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r4, 0x84, 0x77, &(0x7f0000000440)={r5, 0xf, 0x4, [0x2, 0x5, 0x5, 0x101]}, &(0x7f0000000480)=0x10)

64.54049ms ago: executing program 3 (id=3054):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="0502000000000000000f0000075570c84d45fe6f81731b8774fd0680ad4de8a70418833ce89d52b1cdc5d513e61d6163330df7f0e55f1eafc3941bcf76"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x7, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000700), &(0x7f00000000c0), 0xff, r1}, 0x38)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x6, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x2, 0x800000000003}, 0x1320, 0xffffffff, 0x3, 0x5, 0x4, 0x1088f109, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, 0x0)
mount$bind(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='./control\x00', 0x0, 0x2000, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r2}, 0x10)
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000080)='./file1\x00', 0x1808004, &(0x7f0000000000)=ANY=[@ANYRES16=0x0, @ANYRES64], 0x4, 0x7cc, &(0x7f0000000f00)="$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")
modify_ldt$write2(0x11, &(0x7f0000000040)={0x9, 0x20000800, 0x400, 0x0, 0x3, 0x0, 0x0, 0x1, 0x1}, 0x10)
mkdir(&(0x7f00000008c0)='./bus\x00', 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000c00)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace00000000000000002100000002ff02000000000000000000000000000104004e200023b0"], 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB="0a00000004000000040000000a"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES64=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000850000007d00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
openat$selinux_create(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
syz_clone(0x60000400, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = getpgid(0x0)
r7 = syz_pidfd_open(r6, 0x0)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)
pidfd_send_signal(r7, 0x21, 0x0, 0x4)
r8 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_SETINTERFACE(r8, 0x80085504, &(0x7f0000000180))

0s ago: executing program 0 (id=3055):
openat$selinux_attr(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0)
accept4$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000040)=0x14, 0x800)
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94)
r1 = msgget$private(0x0, 0x480)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffea4, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r3}, 0x10)
ftruncate(0xffffffffffffffff, 0x200000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
ioctl$SG_GET_VERSION_NUM(0xffffffffffffffff, 0x2284, &(0x7f0000000080))
msgrcv(r1, 0x0, 0x0, 0x2, 0x2000)
msgctl$IPC_RMID(r1, 0x0)
msgctl$IPC_RMID(r1, 0x0)
syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000540)='./file0\x00', 0x204018, &(0x7f0000000140)=ANY=[@ANYBLOB="6f76657272696465726f636b7065726d2c6e6f636f6d70726573732c686964652c73657373696f6e3d3078303030303030303030303030303032312c756e686964652c696f636861727365743d63703433372c6f76657272696465726f636b7065726d2c626c6f636b3d3078303030303030303030303030303430302c005fb50aab29cf1d32d24be5ab2a6506aa524c8f1cd5781842ee1c86bee627767fee958f25bb6db8e631262ed8a59d337d730b6698271aeb8c31c1902a7e236e5dd878e6c1352c0c799d8e80d7346f8d2870acebe617c694bbb925d3ab4fb01784c564c03d88c81d2f84f58e8c6ba18548f09fa6"], 0x1, 0x563, &(0x7f0000000f80)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.time\x00', 0x26e1, 0x0)
openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
msgsnd(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0200000000"], 0xdc, 0x800)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x2f, &(0x7f0000000180)={&(0x7f0000000240)=@newtfilter={0x6c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x3c, 0x2, [@TCA_BASIC_EMATCHES={0x38, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}, @TCA_EMATCH_TREE_LIST={0x2c, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}, @TCF_EM_META={0x18, 0x2, 0x0, 0x0, {{}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x0, 0xe, 0x1}, {0x9, 0x8, 0x2549677028661870}}}]}}]}]}]}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x400c040}, 0x0)

kernel console output (not intermixed with test programs):

2 shmem:301 pagetables:1075
[  151.723440][ T9873]  sec_pagetables:0 bounce:0
[  151.723440][ T9873]  kernel_misc_reclaimable:0
[  151.723440][ T9873]  free:1853803 free_pcp:19348 free_cma:0
[  151.768658][ T9873] Node 0 active_anon:103380kB inactive_anon:0kB active_file:61356kB inactive_file:8364kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:120128kB dirty:996kB writeback:64kB shmem:1204kB writeback_tmp:0kB kernel_stack:2928kB pagetables:4300kB sec_pagetables:0kB all_unreclaimable? no
[  151.796673][ T9873] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  151.823537][ T9873] lowmem_reserve[]: 0 2885 7863 0
[  151.828648][ T9873] Node 0 DMA32 free:2950968kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2954500kB mlocked:0kB bounce:0kB free_pcp:3532kB local_pcp:0kB free_cma:0kB
[  151.857146][ T9873] lowmem_reserve[]: 0 0 4978 0
[  151.861952][ T9873] Node 0 Normal free:4448884kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:104076kB inactive_anon:0kB active_file:61356kB inactive_file:8364kB unevictable:0kB writepending:1060kB present:5242880kB managed:5098208kB mlocked:0kB bounce:0kB free_pcp:72592kB local_pcp:30748kB free_cma:0kB
[  151.892319][ T9873] lowmem_reserve[]: 0 0 0 0
[  151.896920][ T9873] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  151.909683][ T9873] Node 0 DMA32: 4*4kB (M) 1*8kB (M) 4*16kB (M) 3*32kB (M) 4*64kB (M) 3*128kB (M) 2*256kB (M) 3*512kB (M) 3*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950968kB
[  151.925995][ T9873] Node 0 Normal: 5*4kB (UE) 4*8kB (UE) 8*16kB (UE) 2*32kB (E) 80*64kB (UME) 241*128kB (UME) 145*256kB (UM) 116*512kB (UME) 105*1024kB (UME) 53*2048kB (UME) 1001*4096kB (UM) = 4448884kB
[  151.944624][ T9873] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  151.954027][ T9873] 17731 total pagecache pages
[  151.958784][ T9873] 0 pages in swap cache
[  151.962955][ T9873] Free swap  = 124516kB
[  151.967107][ T9873] Total swap = 124996kB
[  151.971411][ T9873] 2097051 pages RAM
[  151.975218][ T9873] 0 pages HighMem/MovableOnly
[  151.979953][ T9873] 80034 pages reserved
[  152.021488][ T9879] loop0: detected capacity change from 0 to 128
[  152.028033][ T9879] ext4: Unknown parameter 'subj_role'
[  152.034526][ T9879] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2478'.
[  152.070440][ T9881] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2477'.
[  152.080097][ T9881] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2477'.
[  152.099100][ T9885] loop0: detected capacity change from 0 to 512
[  152.147884][ T9885] ext4 filesystem being mounted at /471/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  152.181191][ T9885] FAULT_INJECTION: forcing a failure.
[  152.181191][ T9885] name failslab, interval 1, probability 0, space 0, times 0
[  152.193942][ T9885] CPU: 1 UID: 0 PID: 9885 Comm: syz.0.2480 Not tainted 6.13.0-syzkaller-10033-gd79bc8f79baa #0
[  152.193967][ T9885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  152.193978][ T9885] Call Trace:
[  152.193985][ T9885]  <TASK>
[  152.193992][ T9885]  dump_stack_lvl+0xf2/0x150
[  152.194023][ T9885]  dump_stack+0x15/0x1a
[  152.194048][ T9885]  should_fail_ex+0x24a/0x260
[  152.194217][ T9885]  should_failslab+0x8f/0xb0
[  152.194246][ T9885]  __kmalloc_noprof+0xab/0x3f0
[  152.194276][ T9885]  ? qtree_write_dquot+0x6f/0x320
[  152.194374][ T9885]  qtree_write_dquot+0x6f/0x320
[  152.194409][ T9885]  v2_write_dquot+0xd3/0x130
[  152.194441][ T9885]  dquot_commit+0x219/0x260
[  152.194556][ T9885]  ext4_write_dquot+0x129/0x1d0
[  152.194592][ T9885]  ext4_mark_dquot_dirty+0x94/0xd0
[  152.194622][ T9885]  __dquot_alloc_space+0x7d7/0x8a0
[  152.194687][ T9885]  ext4_mb_new_blocks+0x918/0x2020
[  152.194719][ T9885]  ? ext4_find_extent+0x69b/0x7c0
[  152.194820][ T9885]  ? ext4_inode_to_goal_block+0x197/0x1f0
[  152.194888][ T9885]  ext4_ext_map_blocks+0x1008/0x35c0
[  152.194943][ T9885]  ? ext4_map_query_blocks+0x10e/0x180
[  152.194967][ T9885]  ext4_map_blocks+0x5aa/0xd20
[  152.195032][ T9885]  _ext4_get_block+0x104/0x370
[  152.195056][ T9885]  ext4_get_block+0x39/0x50
[  152.195080][ T9885]  ext4_block_write_begin+0x34f/0x9c0
[  152.195113][ T9885]  ? __pfx_ext4_get_block+0x10/0x10
[  152.195135][ T9885]  ? ext4_inode_journal_mode+0xdf/0x1d0
[  152.195223][ T9885]  ext4_write_begin+0x426/0xc30
[  152.195261][ T9885]  generic_perform_write+0x1a8/0x4a0
[  152.195290][ T9885]  ext4_buffered_write_iter+0x1ed/0x3c0
[  152.195326][ T9885]  ext4_file_write_iter+0x383/0xf20
[  152.195378][ T9885]  ? kstrtouint_from_user+0xb0/0xe0
[  152.195417][ T9885]  ? avc_policy_seqno+0x15/0x20
[  152.195509][ T9885]  ? selinux_file_permission+0x22a/0x360
[  152.195534][ T9885]  vfs_write+0x77b/0x920
[  152.195556][ T9885]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  152.195586][ T9885]  ksys_write+0xe8/0x1b0
[  152.195646][ T9885]  __x64_sys_write+0x42/0x50
[  152.195670][ T9885]  x64_sys_call+0x287e/0x2dc0
[  152.195696][ T9885]  do_syscall_64+0xc9/0x1c0
[  152.195756][ T9885]  ? clear_bhb_loop+0x55/0xb0
[  152.195918][ T9885]  ? clear_bhb_loop+0x55/0xb0
[  152.195947][ T9885]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.195973][ T9885] RIP: 0033:0x7fb091a6cda9
[  152.195987][ T9885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.196033][ T9885] RSP: 002b:00007fb0900d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  152.196128][ T9885] RAX: ffffffffffffffda RBX: 00007fb091c85fa0 RCX: 00007fb091a6cda9
[  152.196198][ T9885] RDX: 000000000208e24b RSI: 0000000020000380 RDI: 0000000000000004
[  152.196212][ T9885] RBP: 00007fb0900d7090 R08: 0000000000000000 R09: 0000000000000000
[  152.196225][ T9885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  152.196239][ T9885] R13: 0000000000000000 R14: 00007fb091c85fa0 R15: 00007ffebb280208
[  152.196259][ T9885]  </TASK>
[  152.196267][ T9885] EXT4-fs error (device loop0): ext4_write_dquot:6907: comm syz.0.2480: Failed to commit dquot type 1
[  152.305641][ T9894] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2482'.
[  152.520353][ T9894] bridge0: port 2(batadv1) entered blocking state
[  152.526905][ T9894] bridge0: port 2(batadv1) entered disabled state
[  152.550613][   T29] kauditd_printk_skb: 335 callbacks suppressed
[  152.550630][   T29] audit: type=1400 audit(1738555882.868:15794): avc:  denied  { mounton } for  pid=9895 comm="syz.2.2484" path="/syzcgroup/unified/syz2" dev="cgroup2" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  152.586539][ T9894] batadv1: entered allmulticast mode
[  152.592695][ T9894] batadv1: entered promiscuous mode
[  152.598503][   T29] audit: type=1400 audit(1738555882.868:15795): avc:  denied  { mount } for  pid=9895 comm="syz.2.2484" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  152.665389][   T29] audit: type=1326 audit(1738555882.968:15796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9899 comm="syz.3.2487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe83e7ccda9 code=0x7ffc0000
[  152.689018][   T29] audit: type=1326 audit(1738555882.968:15797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9899 comm="syz.3.2487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe83e7ccda9 code=0x7ffc0000
[  152.712822][   T29] audit: type=1326 audit(1738555882.968:15798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9899 comm="syz.3.2487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe83e7ccda9 code=0x7ffc0000
[  152.736563][   T29] audit: type=1326 audit(1738555882.968:15799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9899 comm="syz.3.2487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe83e7ccda9 code=0x7ffc0000
[  152.760198][   T29] audit: type=1326 audit(1738555882.968:15800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9899 comm="syz.3.2487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe83e7ccda9 code=0x7ffc0000
[  152.783943][   T29] audit: type=1326 audit(1738555882.968:15801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9899 comm="syz.3.2487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe83e7ccda9 code=0x7ffc0000
[  152.798834][ T9902] serio: Serial port ptm0
[  152.807368][   T29] audit: type=1326 audit(1738555882.968:15802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9899 comm="syz.3.2487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe83e7ccda9 code=0x7ffc0000
[  152.835481][   T29] audit: type=1326 audit(1738555882.968:15803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9899 comm="syz.3.2487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fe83e7ccda9 code=0x7ffc0000
[  152.873771][ T9909] sd 0:0:1:0: device reset
[  152.882886][ T9907] loop4: detected capacity change from 0 to 128
[  152.921923][ T9907] ext4: Unknown parameter 'subj_role'
[  152.932665][ T9909] loop2: detected capacity change from 0 to 164
[  152.941372][ T9909] ISOFS: unable to read i-node block
[  152.946738][ T9909] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  152.966716][ T9907] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2490'.
[  153.027396][ T3418] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled
[  153.036661][ T3418] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled
[  153.107282][ T9919] loop3: detected capacity change from 0 to 512
[  153.114195][ T9919] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  153.127882][ T9919] EXT4-fs (loop3): 1 truncate cleaned up
[  153.164705][ T9919] lo speed is unknown, defaulting to 1000
[  153.284948][ T9919] geneve0: entered allmulticast mode
[  153.408419][ T9936] sd 0:0:1:0: device reset
[  153.466903][ T9936] loop2: detected capacity change from 0 to 164
[  153.475283][ T9936] ISOFS: unable to read i-node block
[  153.480650][ T9936] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  153.680945][ T9946] loop0: detected capacity change from 0 to 128
[  153.765802][ T9946] ext4: Unknown parameter 'subj_role'
[  153.882587][ T9946] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2504'.
[  153.968038][ T9956] FAULT_INJECTION: forcing a failure.
[  153.968038][ T9956] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  153.981206][ T9956] CPU: 0 UID: 0 PID: 9956 Comm: syz.4.2508 Not tainted 6.13.0-syzkaller-10033-gd79bc8f79baa #0
[  153.981273][ T9956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  153.981340][ T9956] Call Trace:
[  153.981346][ T9956]  <TASK>
[  153.981353][ T9956]  dump_stack_lvl+0xf2/0x150
[  153.981385][ T9956]  dump_stack+0x15/0x1a
[  153.981409][ T9956]  should_fail_ex+0x24a/0x260
[  153.981447][ T9956]  should_fail+0xb/0x10
[  153.981566][ T9956]  should_fail_usercopy+0x1a/0x20
[  153.981587][ T9956]  _copy_to_user+0x20/0xa0
[  153.981612][ T9956]  simple_read_from_buffer+0xa0/0x110
[  153.981731][ T9956]  proc_fail_nth_read+0xf9/0x140
[  153.981756][ T9956]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  153.981783][ T9956]  vfs_read+0x19b/0x6f0
[  153.981882][ T9956]  ? __rcu_read_unlock+0x4e/0x70
[  153.981949][ T9956]  ? __fget_files+0x17c/0x1c0
[  153.981994][ T9956]  ksys_read+0xe8/0x1b0
[  153.982021][ T9956]  __x64_sys_read+0x42/0x50
[  153.982046][ T9956]  x64_sys_call+0x2874/0x2dc0
[  153.982071][ T9956]  do_syscall_64+0xc9/0x1c0
[  153.982167][ T9956]  ? clear_bhb_loop+0x55/0xb0
[  153.982200][ T9956]  ? clear_bhb_loop+0x55/0xb0
[  153.982238][ T9956]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.982284][ T9956] RIP: 0033:0x7f8800d2b7bc
[  153.982298][ T9956] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  153.982316][ T9956] RSP: 002b:00007f87ff397030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  153.982337][ T9956] RAX: ffffffffffffffda RBX: 00007f8800f45fa0 RCX: 00007f8800d2b7bc
[  153.982386][ T9956] RDX: 000000000000000f RSI: 00007f87ff3970a0 RDI: 0000000000000007
[  153.982401][ T9956] RBP: 00007f87ff397090 R08: 0000000000000000 R09: 0000000000000000
[  153.982463][ T9956] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  153.982537][ T9956] R13: 0000000000000000 R14: 00007f8800f45fa0 R15: 00007fff79214f78
[  153.982555][ T9956]  </TASK>
[  154.326566][ T9971] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2510'.
[  154.337664][ T9967] loop3: detected capacity change from 0 to 512
[  154.341206][ T9969] loop2: detected capacity change from 0 to 512
[  154.362278][ T9964] FAULT_INJECTION: forcing a failure.
[  154.362278][ T9964] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  154.375407][ T9964] CPU: 0 UID: 0 PID: 9964 Comm: syz.4.2511 Not tainted 6.13.0-syzkaller-10033-gd79bc8f79baa #0
[  154.375433][ T9964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  154.375457][ T9964] Call Trace:
[  154.375463][ T9964]  <TASK>
[  154.375472][ T9964]  dump_stack_lvl+0xf2/0x150
[  154.375594][ T9964]  dump_stack+0x15/0x1a
[  154.375613][ T9964]  should_fail_ex+0x24a/0x260
[  154.375651][ T9964]  should_fail+0xb/0x10
[  154.375740][ T9964]  should_fail_usercopy+0x1a/0x20
[  154.375758][ T9964]  _copy_from_user+0x1c/0xa0
[  154.375780][ T9964]  copy_msghdr_from_user+0x54/0x2a0
[  154.375800][ T9964]  ? __fget_files+0x17c/0x1c0
[  154.375854][ T9964]  __sys_sendmsg+0x13e/0x230
[  154.375914][ T9964]  __x64_sys_sendmsg+0x46/0x50
[  154.375948][ T9964]  x64_sys_call+0x2734/0x2dc0
[  154.375974][ T9964]  do_syscall_64+0xc9/0x1c0
[  154.376002][ T9964]  ? clear_bhb_loop+0x55/0xb0
[  154.376054][ T9964]  ? clear_bhb_loop+0x55/0xb0
[  154.376087][ T9964]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.376119][ T9964] RIP: 0033:0x7f8800d2cda9
[  154.376134][ T9964] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  154.376151][ T9964] RSP: 002b:00007f87ff397038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  154.376226][ T9964] RAX: ffffffffffffffda RBX: 00007f8800f45fa0 RCX: 00007f8800d2cda9
[  154.376241][ T9964] RDX: 0000000000000000 RSI: 00000000200012c0 RDI: 0000000000000004
[  154.376255][ T9964] RBP: 00007f87ff397090 R08: 0000000000000000 R09: 0000000000000000
[  154.376270][ T9964] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  154.376284][ T9964] R13: 0000000000000000 R14: 00007f8800f45fa0 R15: 00007fff79214f78
[  154.376306][ T9964]  </TASK>
[  154.497281][ T9969] EXT4-fs (loop2): couldn't mount as ext3 due to feature incompatibilities
[  154.562154][ T9967] ext4 filesystem being mounted at /477/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  154.602891][ T9969] usb usb1: usbfs: interface 0 claimed by hub while 'syz.2.2513' sets config #0
[  154.626047][ T9967] 9pnet_fd: Insufficient options for proto=fd
[  154.645829][ T9980] loop0: detected capacity change from 0 to 512
[  154.675743][ T9983] 9pnet_fd: Insufficient options for proto=fd
[  154.704716][ T9980] ext4 filesystem being mounted at /476/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  154.745341][ T9989] FAULT_INJECTION: forcing a failure.
[  154.745341][ T9989] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  154.758451][ T9989] CPU: 0 UID: 0 PID: 9989 Comm: syz.4.2520 Not tainted 6.13.0-syzkaller-10033-gd79bc8f79baa #0
[  154.758481][ T9989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  154.758541][ T9989] Call Trace:
[  154.758548][ T9989]  <TASK>
[  154.758556][ T9989]  dump_stack_lvl+0xf2/0x150
[  154.758583][ T9989]  dump_stack+0x15/0x1a
[  154.758604][ T9989]  should_fail_ex+0x24a/0x260
[  154.758639][ T9989]  should_fail+0xb/0x10
[  154.758698][ T9989]  should_fail_usercopy+0x1a/0x20
[  154.758721][ T9989]  _copy_from_user+0x1c/0xa0
[  154.758822][ T9989]  copy_msghdr_from_user+0x54/0x2a0
[  154.758846][ T9989]  ? __fget_files+0x17c/0x1c0
[  154.758876][ T9989]  __sys_sendmsg+0x13e/0x230
[  154.758932][ T9989]  __x64_sys_sendmsg+0x46/0x50
[  154.758965][ T9989]  x64_sys_call+0x2734/0x2dc0
[  154.758998][ T9989]  do_syscall_64+0xc9/0x1c0
[  154.759023][ T9989]  ? clear_bhb_loop+0x55/0xb0
[  154.759055][ T9989]  ? clear_bhb_loop+0x55/0xb0
[  154.759137][ T9989]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.759163][ T9989] RIP: 0033:0x7f8800d2cda9
[  154.759177][ T9989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  154.759214][ T9989] RSP: 002b:00007f87ff397038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  154.759236][ T9989] RAX: ffffffffffffffda RBX: 00007f8800f45fa0 RCX: 00007f8800d2cda9
[  154.759250][ T9989] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  154.759261][ T9989] RBP: 00007f87ff397090 R08: 0000000000000000 R09: 0000000000000000
[  154.759273][ T9989] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  154.759316][ T9989] R13: 0000000000000000 R14: 00007f8800f45fa0 R15: 00007fff79214f78
[  154.759337][ T9989]  </TASK>
[  154.990961][ T9995] loop4: detected capacity change from 0 to 512
[  155.015863][ T9986] serio: Serial port ptm0
[  155.029531][ T9995] ext4 filesystem being mounted at /510/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  155.067975][T10006] sd 0:0:1:0: device reset
[  155.099090][ T9995] EXT4-fs (loop4): shut down requested (2)
[  155.105337][ T9995] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[  155.114467][ T9995] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[  155.123555][ T9995] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[  155.134301][T10006] loop0: detected capacity change from 0 to 164
[  155.142174][ T9995] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  155.159660][T10006] ISOFS: unable to read i-node block
[  155.164969][T10006] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  155.293533][T10019] loop1: detected capacity change from 0 to 1024
[  155.371480][T10019] EXT4-fs: Ignoring removed nobh option
[  155.389398][T10019] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  155.421202][T10019] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #11: comm syz.1.2529: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  155.450691][T10019] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.2529: couldn't read orphan inode 11 (err -117)
[  155.600647][T10030] loop1: detected capacity change from 0 to 256
[  155.674819][T10034] loop2: detected capacity change from 0 to 256
[  155.681663][T10030] vfat: Unknown parameter 'Nonumtail'
[  155.705089][T10034] vfat: Unknown parameter 'Nonumtail'
[  155.727939][T10031] netlink: 'syz.3.2532': attribute type 39 has an invalid length.
[  155.851967][T10015] atomic_op ffff88811e6d2128 conn xmit_atomic 0000000000000000
[  156.152947][T10057] loop0: detected capacity change from 0 to 512
[  156.171899][T10057] ext4 filesystem being mounted at /482/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.292615][T10065] lo speed is unknown, defaulting to 1000
[  156.440979][T10070] loop0: detected capacity change from 0 to 512
[  156.500185][T10070] ext4 filesystem being mounted at /485/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.570743][T10079] loop1: detected capacity change from 0 to 512
[  156.607026][T10081] loop3: detected capacity change from 0 to 1024
[  156.613741][T10081] EXT4-fs: Ignoring removed nobh option
[  156.620337][T10081] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  156.647906][T10081] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #11: comm syz.3.2543: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  156.669545][T10079] ext4 filesystem being mounted at /486/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.739305][T10081] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2543: couldn't read orphan inode 11 (err -117)
[  156.831802][T10096] loop1: detected capacity change from 0 to 512
[  156.859057][T10097] __nla_validate_parse: 5 callbacks suppressed
[  156.859100][T10097] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2550'.
[  156.874383][T10097] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2550'.
[  156.898261][T10096] ext4 filesystem being mounted at /488/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.940527][T10092] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2550'.
[  157.014777][T10109] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2555'.
[  157.075592][T10112] loop2: detected capacity change from 0 to 1024
[  157.088799][T10112] EXT4-fs: Ignoring removed nobh option
[  157.094563][T10112] EXT4-fs: Ignoring removed bh option
[  157.222567][T10124] loop2: detected capacity change from 0 to 512
[  157.232867][T10117] infiniband syz!: set down
[  157.237442][T10117] infiniband syz!: added team_slave_0
[  157.239216][T10121] loop1: detected capacity change from 0 to 512
[  157.260850][T10122] loop0: detected capacity change from 0 to 1024
[  157.280699][T10124] EXT4-fs error (device loop2): ext4_init_orphan_info:586: comm syz.2.2562: inode #0: comm syz.2.2562: iget: illegal inode #
[  157.296259][T10122] EXT4-fs: Ignoring removed orlov option
[  157.302013][T10122] EXT4-fs: Ignoring removed nomblk_io_submit option
[  157.316639][T10124] EXT4-fs (loop2): Remounting filesystem read-only
[  157.323221][T10124] EXT4-fs (loop2): get orphan inode failed
[  157.341420][T10124] EXT4-fs (loop2): mount failed
[  157.362310][T10121] ext4 filesystem being mounted at /490/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.387564][T10117] RDS/IB: syz!: added
[  157.397411][T10117] smc: adding ib device syz! with port count 1
[  157.422981][T10117] smc:    ib device syz! port 1 has pnetid 
[  157.429996][T10131] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2563'.
[  157.486213][T10131] bridge0: port 2(batadv1) entered blocking state
[  157.492784][T10131] bridge0: port 2(batadv1) entered disabled state
[  157.500384][T10131] batadv1: entered allmulticast mode
[  157.506386][T10131] batadv1: entered promiscuous mode
[  157.589606][   T29] kauditd_printk_skb: 289 callbacks suppressed
[  157.589622][   T29] audit: type=1326 audit(1738555887.908:16093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10116 comm="syz.0.2560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb091a6cda9 code=0x7ffc0000
[  157.619749][   T29] audit: type=1326 audit(1738555887.908:16094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10116 comm="syz.0.2560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=238 compat=0 ip=0x7fb091a6cda9 code=0x7ffc0000
[  157.643459][   T29] audit: type=1326 audit(1738555887.908:16095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10116 comm="syz.0.2560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb091a6cda9 code=0x7ffc0000
[  157.667241][   T29] audit: type=1326 audit(1738555887.908:16096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10116 comm="syz.0.2560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb091a6cda9 code=0x7ffc0000
[  157.690861][   T29] audit: type=1326 audit(1738555887.908:16097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10116 comm="syz.0.2560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb091a6cda9 code=0x7ffc0000
[  157.709607][T10139] serio: Serial port ptm0
[  157.714478][   T29] audit: type=1326 audit(1738555887.908:16098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10116 comm="syz.0.2560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb091a6cda9 code=0x7ffc0000
[  157.742475][   T29] audit: type=1326 audit(1738555887.908:16099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10116 comm="syz.0.2560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb091a6cda9 code=0x7ffc0000
[  157.766105][   T29] audit: type=1326 audit(1738555887.908:16100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10116 comm="syz.0.2560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fb091a6cda9 code=0x7ffc0000
[  157.788263][T10122] netlink: 'syz.0.2560': attribute type 3 has an invalid length.
[  157.797874][T10122] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2560'.
[  157.811569][T10122] syzkaller0: entered allmulticast mode
[  157.819783][   T29] audit: type=1326 audit(1738555888.008:16101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10116 comm="syz.0.2560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb091a6cda9 code=0x7ffc0000
[  157.843426][   T29] audit: type=1326 audit(1738555888.008:16102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10116 comm="syz.0.2560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb091a6cda9 code=0x7ffc0000
[  157.898509][T10141] loop3: detected capacity change from 0 to 512
[  157.930099][T10141] ext4 filesystem being mounted at /487/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.987406][T10116] syzkaller0: left allmulticast mode
[  157.992834][ T3316] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled
[  158.002077][ T3316] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled
[  158.202170][T10148] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2568'.
[  158.211296][T10148] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2568'.
[  158.221371][T10148] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2568'.
[  158.447034][T10166] loop2: detected capacity change from 0 to 2048
[  158.456128][T10165] loop1: detected capacity change from 0 to 1024
[  158.540629][T10166] syz.2.2575: attempt to access beyond end of device
[  158.540629][T10166] loop2: rw=0, sector=1552, nr_sectors = 512 limit=2048
[  158.547659][T10165] EXT4-fs: Ignoring removed nobh option
[  158.607771][T10165] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  158.651275][T10165] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #11: comm syz.1.2576: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  158.759848][T10165] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.2576: couldn't read orphan inode 11 (err -117)
[  158.759998][ T3296] EXT4-fs unmount: 44 callbacks suppressed
[  158.760016][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.847767][T10165] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.977539][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.072335][T10178] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2582'.
[  159.092349][T10180] sd 0:0:1:0: device reset
[  159.153828][T10180] loop4: detected capacity change from 0 to 164
[  159.163096][T10180] ISOFS: unable to read i-node block
[  159.168478][T10180] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  159.181910][T10192] SELinux:  Context Ü is not valid (left unmapped).
[  159.188713][T10194] capability: warning: `syz.2.2588' uses deprecated v2 capabilities in a way that may be insecure
[  159.215352][T10192] loop0: detected capacity change from 0 to 2048
[  159.233795][T10189] FAULT_INJECTION: forcing a failure.
[  159.233795][T10189] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  159.246932][T10189] CPU: 0 UID: 0 PID: 10189 Comm: syz.1.2586 Not tainted 6.13.0-syzkaller-10033-gd79bc8f79baa #0
[  159.246961][T10189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  159.246975][T10189] Call Trace:
[  159.246982][T10189]  <TASK>
[  159.246989][T10189]  dump_stack_lvl+0xf2/0x150
[  159.247017][T10189]  dump_stack+0x15/0x1a
[  159.247047][T10189]  should_fail_ex+0x24a/0x260
[  159.247080][T10189]  should_fail+0xb/0x10
[  159.247109][T10189]  should_fail_usercopy+0x1a/0x20
[  159.247178][T10189]  _copy_from_user+0x1c/0xa0
[  159.247204][T10189]  restore_altstack+0x48/0xd0
[  159.247241][T10189]  __do_sys_rt_sigreturn+0xd7/0x160
[  159.247272][T10189]  x64_sys_call+0x2982/0x2dc0
[  159.247370][T10189]  do_syscall_64+0xc9/0x1c0
[  159.247395][T10189]  ? clear_bhb_loop+0x55/0xb0
[  159.247422][T10189]  ? clear_bhb_loop+0x55/0xb0
[  159.247492][T10189]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.247519][T10189] RIP: 0033:0x7f3621808fa9
[  159.247533][T10189] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[  159.247551][T10189] RSP: 002b:00007f361fed6a80 EFLAGS: 00000202 ORIG_RAX: 000000000000000f
[  159.247569][T10189] RAX: ffffffffffffffda RBX: 00007f3621a85fa0 RCX: 00007f3621808fa9
[  159.247581][T10189] RDX: 00007f361fed6a80 RSI: 00007f361fed6bb0 RDI: 0000000000000021
[  159.247594][T10189] RBP: 00007f361fed7090 R08: 0000000000000080 R09: 0000000000000004
[  159.247605][T10189] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000001
[  159.247616][T10189] R13: 0000000000000000 R14: 00007f3621a85fa0 R15: 00007ffda9283ca8
[  159.247634][T10189]  </TASK>
[  159.436199][T10197] loop2: detected capacity change from 0 to 2048
[  159.493809][T10204] loop1: detected capacity change from 0 to 512
[  159.513027][T10192] syz.0.2587: attempt to access beyond end of device
[  159.513027][T10192] loop0: rw=0, sector=1552, nr_sectors = 512 limit=2048
[  159.540725][T10204] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.554548][T10204] ext4 filesystem being mounted at /496/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  159.575731][T10205] Invalid ELF header magic: != ELF
[  159.586207][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.763499][T10226] sd 0:0:1:0: device reset
[  159.820965][T10226] loop1: detected capacity change from 0 to 164
[  159.828211][T10226] ISOFS: unable to read i-node block
[  159.833587][T10226] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  159.865212][T10232] loop1: detected capacity change from 0 to 256
[  159.872521][T10232] vfat: Unknown parameter 'Nonumtail'
[  159.936421][T10237] loop0: detected capacity change from 0 to 512
[  159.982955][T10237] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.997405][T10237] ext4 filesystem being mounted at /502/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  160.048290][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.081344][T10250] xt_CT: You must specify a L4 protocol and not use inversions on it
[  160.153241][T10257] loop3: detected capacity change from 0 to 512
[  160.174367][T10257] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.188863][T10257] ext4 filesystem being mounted at /497/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  160.218154][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.280331][T10270] loop3: detected capacity change from 0 to 256
[  160.286860][T10269] loop0: detected capacity change from 0 to 512
[  160.309086][T10269] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.321734][T10269] ext4 filesystem being mounted at /505/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  160.359434][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.379944][T10278] loop2: detected capacity change from 0 to 128
[  160.386907][T10278] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  160.401730][T10278] FAT-fs (loop2): error, invalid access to FAT (entry 0x0affffff)
[  160.407865][T10280] FAULT_INJECTION: forcing a failure.
[  160.407865][T10280] name failslab, interval 1, probability 0, space 0, times 0
[  160.409650][T10278] FAT-fs (loop2): Filesystem has been set read-only
[  160.422265][T10280] CPU: 0 UID: 0 PID: 10280 Comm: syz.0.2616 Not tainted 6.13.0-syzkaller-10033-gd79bc8f79baa #0
[  160.422352][T10280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  160.422367][T10280] Call Trace:
[  160.422446][T10280]  <TASK>
[  160.422457][T10280]  dump_stack_lvl+0xf2/0x150
[  160.422492][T10280]  dump_stack+0x15/0x1a
[  160.422581][T10280]  should_fail_ex+0x24a/0x260
[  160.422622][T10280]  ? tee_tg_check+0x122/0x290
[  160.422737][T10280]  should_failslab+0x8f/0xb0
[  160.422769][T10280]  __kmalloc_cache_noprof+0x4e/0x320
[  160.422812][T10280]  tee_tg_check+0x122/0x290
[  160.422849][T10280]  xt_check_target+0x266/0x480
[  160.422894][T10280]  ? strnlen+0x28/0x50
[  160.422951][T10280]  ? strcmp+0x21/0x50
[  160.422980][T10280]  ? xt_find_target+0x1bd/0x1e0
[  160.423049][T10280]  translate_table+0xcde/0x1040
[  160.423096][T10280]  do_ip6t_set_ctl+0x7cc/0x8c0
[  160.423130][T10280]  ? kstrtouint+0x77/0xc0
[  160.423169][T10280]  nf_setsockopt+0x195/0x1b0
[  160.423333][T10280]  ipv6_setsockopt+0x10f/0x130
[  160.423367][T10280]  tcp_setsockopt+0x93/0xb0
[  160.423399][T10280]  sock_common_setsockopt+0x64/0x80
[  160.423425][T10280]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  160.423512][T10280]  __sys_setsockopt+0x187/0x200
[  160.423688][T10280]  __x64_sys_setsockopt+0x66/0x80
[  160.423736][T10280]  x64_sys_call+0x282e/0x2dc0
[  160.423768][T10280]  do_syscall_64+0xc9/0x1c0
[  160.423797][T10280]  ? clear_bhb_loop+0x55/0xb0
[  160.423873][T10280]  ? clear_bhb_loop+0x55/0xb0
[  160.423995][T10280]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.424030][T10280] RIP: 0033:0x7fb091a6cda9
[  160.424089][T10280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.424111][T10280] RSP: 002b:00007fb0900d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  160.424134][T10280] RAX: ffffffffffffffda RBX: 00007fb091c85fa0 RCX: 00007fb091a6cda9
[  160.424149][T10280] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000004
[  160.424185][T10280] RBP: 00007fb0900d7090 R08: 0000000000000548 R09: 0000000000000000
[  160.424200][T10280] R10: 0000000020000700 R11: 0000000000000246 R12: 0000000000000001
[  160.424214][T10280] R13: 0000000000000000 R14: 00007fb091c85fa0 R15: 00007ffebb280208
[  160.424237][T10280]  </TASK>
[  160.493552][T10285] xt_CT: You must specify a L4 protocol and not use inversions on it
[  160.498427][T10278] FAT-fs (loop2): error, invalid access to FAT (entry 0x0affffff)
[  160.689550][T10293] FAULT_INJECTION: forcing a failure.
[  160.689550][T10293] name failslab, interval 1, probability 0, space 0, times 0
[  160.702298][T10293] CPU: 0 UID: 0 PID: 10293 Comm: syz.0.2621 Not tainted 6.13.0-syzkaller-10033-gd79bc8f79baa #0
[  160.702377][T10293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  160.702392][T10293] Call Trace:
[  160.702400][T10293]  <TASK>
[  160.702409][T10293]  dump_stack_lvl+0xf2/0x150
[  160.702443][T10293]  dump_stack+0x15/0x1a
[  160.702469][T10293]  should_fail_ex+0x24a/0x260
[  160.702563][T10293]  ? qdisc_get_rtab+0x1a3/0x2c0
[  160.702588][T10293]  should_failslab+0x8f/0xb0
[  160.702620][T10293]  __kmalloc_cache_noprof+0x4e/0x320
[  160.702690][T10293]  qdisc_get_rtab+0x1a3/0x2c0
[  160.702713][T10293]  tcf_police_init+0x389/0xc80
[  160.702799][T10293]  tcf_action_init_1+0x339/0x490
[  160.702883][T10293]  ? tc_action_load_ops+0x1a9/0x410
[  160.702911][T10293]  tcf_action_init+0x1cc/0x610
[  160.702987][T10293]  tc_ctl_action+0x292/0x840
[  160.703014][T10293]  ? xa_load+0xb9/0xe0
[  160.703057][T10293]  ? __pfx_tc_ctl_action+0x10/0x10
[  160.703088][T10293]  rtnetlink_rcv_msg+0x6aa/0x710
[  160.703140][T10293]  ? avc_has_perm_noaudit+0x1cc/0x210
[  160.703171][T10293]  netlink_rcv_skb+0x12c/0x230
[  160.703296][T10293]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  160.703334][T10293]  rtnetlink_rcv+0x1c/0x30
[  160.703367][T10293]  netlink_unicast+0x599/0x670
[  160.703407][T10293]  netlink_sendmsg+0x5cc/0x6e0
[  160.703458][T10293]  ? __pfx_netlink_sendmsg+0x10/0x10
[  160.703497][T10293]  __sock_sendmsg+0x140/0x180
[  160.703533][T10293]  ____sys_sendmsg+0x312/0x410
[  160.703572][T10293]  __sys_sendmsg+0x19d/0x230
[  160.703626][T10293]  __x64_sys_sendmsg+0x46/0x50
[  160.703661][T10293]  x64_sys_call+0x2734/0x2dc0
[  160.703739][T10293]  do_syscall_64+0xc9/0x1c0
[  160.703769][T10293]  ? clear_bhb_loop+0x55/0xb0
[  160.703855][T10293]  ? clear_bhb_loop+0x55/0xb0
[  160.703888][T10293]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.703920][T10293] RIP: 0033:0x7fb091a6cda9
[  160.703938][T10293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.704003][T10293] RSP: 002b:00007fb0900d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  160.704026][T10293] RAX: ffffffffffffffda RBX: 00007fb091c85fa0 RCX: 00007fb091a6cda9
[  160.704041][T10293] RDX: 0000000000000000 RSI: 00000000200037c0 RDI: 0000000000000003
[  160.704055][T10293] RBP: 00007fb0900d7090 R08: 0000000000000000 R09: 0000000000000000
[  160.704133][T10293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  160.704147][T10293] R13: 0000000000000000 R14: 00007fb091c85fa0 R15: 00007ffebb280208
[  160.704168][T10293]  </TASK>
[  160.724585][ T3298] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  161.015771][T10306] loop4: detected capacity change from 0 to 512
[  161.041749][T10306] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.065225][T10306] ext4 filesystem being mounted at /517/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  161.111852][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.131792][T10313] FAULT_INJECTION: forcing a failure.
[  161.131792][T10313] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  161.144990][T10313] CPU: 1 UID: 0 PID: 10313 Comm: syz.2.2629 Not tainted 6.13.0-syzkaller-10033-gd79bc8f79baa #0
[  161.145050][T10313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  161.145061][T10313] Call Trace:
[  161.145068][T10313]  <TASK>
[  161.145076][T10313]  dump_stack_lvl+0xf2/0x150
[  161.145159][T10313]  dump_stack+0x15/0x1a
[  161.145210][T10313]  should_fail_ex+0x24a/0x260
[  161.145243][T10313]  should_fail+0xb/0x10
[  161.145278][T10313]  should_fail_usercopy+0x1a/0x20
[  161.145300][T10313]  _copy_to_user+0x20/0xa0
[  161.145387][T10313]  simple_read_from_buffer+0xa0/0x110
[  161.145416][T10313]  proc_fail_nth_read+0xf9/0x140
[  161.145442][T10313]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  161.145505][T10313]  vfs_read+0x19b/0x6f0
[  161.145524][T10313]  ? __rcu_read_unlock+0x4e/0x70
[  161.145543][T10313]  ? __fget_files+0x17c/0x1c0
[  161.145601][T10313]  ksys_read+0xe8/0x1b0
[  161.145621][T10313]  __x64_sys_read+0x42/0x50
[  161.145641][T10313]  x64_sys_call+0x2874/0x2dc0
[  161.145667][T10313]  do_syscall_64+0xc9/0x1c0
[  161.145741][T10313]  ? clear_bhb_loop+0x55/0xb0
[  161.145767][T10313]  ? clear_bhb_loop+0x55/0xb0
[  161.145793][T10313]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.145819][T10313] RIP: 0033:0x7f8d2a69b7bc
[  161.145859][T10313] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  161.145876][T10313] RSP: 002b:00007f8d28d07030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  161.145893][T10313] RAX: ffffffffffffffda RBX: 00007f8d2a8b5fa0 RCX: 00007f8d2a69b7bc
[  161.145936][T10313] RDX: 000000000000000f RSI: 00007f8d28d070a0 RDI: 0000000000000004
[  161.146017][T10313] RBP: 00007f8d28d07090 R08: 0000000000000000 R09: 0000000000000000
[  161.146028][T10313] R10: 0000000000000061 R11: 0000000000000246 R12: 0000000000000001
[  161.146039][T10313] R13: 0000000000000000 R14: 00007f8d2a8b5fa0 R15: 00007fff3425bf58
[  161.146056][T10313]  </TASK>
[  161.413752][T10330] loop3: detected capacity change from 0 to 512
[  161.421054][T10330] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  161.442178][T10330] EXT4-fs (loop3): 1 truncate cleaned up
[  161.448365][T10330] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.472914][T10330] lo speed is unknown, defaulting to 1000
[  161.479621][T10333] loop0: detected capacity change from 0 to 1764
[  161.516596][T10338] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  161.525053][T10338] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  161.533423][T10338] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  161.541834][T10338] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  161.558358][T10333] FAULT_INJECTION: forcing a failure.
[  161.558358][T10333] name failslab, interval 1, probability 0, space 0, times 0
[  161.571081][T10333] CPU: 0 UID: 0 PID: 10333 Comm: syz.0.2639 Not tainted 6.13.0-syzkaller-10033-gd79bc8f79baa #0
[  161.571113][T10333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  161.571129][T10333] Call Trace:
[  161.571137][T10333]  <TASK>
[  161.571148][T10333]  dump_stack_lvl+0xf2/0x150
[  161.571241][T10333]  dump_stack+0x15/0x1a
[  161.571267][T10333]  should_fail_ex+0x24a/0x260
[  161.571355][T10333]  should_failslab+0x8f/0xb0
[  161.571387][T10333]  kmem_cache_alloc_noprof+0x52/0x320
[  161.571426][T10333]  ? security_inode_alloc+0x37/0x100
[  161.571463][T10333]  security_inode_alloc+0x37/0x100
[  161.571527][T10333]  inode_init_always_gfp+0x4a2/0x4f0
[  161.571560][T10333]  ? __pfx_isofs_alloc_inode+0x10/0x10
[  161.571632][T10333]  alloc_inode+0x82/0x160
[  161.571660][T10333]  ? __pfx_isofs_iget5_test+0x10/0x10
[  161.571684][T10333]  ? __pfx_isofs_iget5_set+0x10/0x10
[  161.571708][T10333]  iget5_locked+0x4a/0xa0
[  161.571774][T10333]  __isofs_iget+0xde/0xf80
[  161.571797][T10333]  ? __list_add_valid_or_report+0x38/0xe0
[  161.571859][T10333]  ? free_frozen_page_commit+0x67/0x270
[  161.571882][T10333]  ? _raw_spin_unlock+0x26/0x50
[  161.571910][T10333]  ? free_frozen_pages+0x252/0x520
[  161.571933][T10333]  isofs_lookup+0x794/0x8c0
[  161.571960][T10333]  ? __pfx_isofs_lookup+0x10/0x10
[  161.572027][T10333]  path_openat+0xd51/0x1fc0
[  161.572057][T10333]  do_filp_open+0x107/0x230
[  161.572085][T10333]  do_sys_openat2+0xab/0x120
[  161.572152][T10333]  __x64_sys_open+0xe6/0x110
[  161.572182][T10333]  x64_sys_call+0x13e1/0x2dc0
[  161.572208][T10333]  do_syscall_64+0xc9/0x1c0
[  161.572232][T10333]  ? clear_bhb_loop+0x55/0xb0
[  161.572283][T10333]  ? clear_bhb_loop+0x55/0xb0
[  161.572308][T10333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.572334][T10333] RIP: 0033:0x7fb091a6cda9
[  161.572349][T10333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.572429][T10333] RSP: 002b:00007fb0900d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  161.572447][T10333] RAX: ffffffffffffffda RBX: 00007fb091c85fa0 RCX: 00007fb091a6cda9
[  161.572496][T10333] RDX: 0000000000000000 RSI: 0000000000181042 RDI: 0000000020000040
[  161.572513][T10333] RBP: 00007fb0900d7090 R08: 0000000000000000 R09: 0000000000000000
[  161.572524][T10333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  161.572535][T10333] R13: 0000000000000000 R14: 00007fb091c85fa0 R15: 00007ffebb280208
[  161.572553][T10333]  </TASK>
[  161.572955][T10338] geneve2: entered allmulticast mode
[  161.615326][T10340] loop1: detected capacity change from 0 to 512
[  161.880425][T10347] loop0: detected capacity change from 0 to 512
[  161.887980][T10347] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  161.898569][T10340] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.914458][T10347] EXT4-fs (loop0): 1 truncate cleaned up
[  161.920564][T10347] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.944865][T10347] lo speed is unknown, defaulting to 1000
[  161.977279][T10340] ext4 filesystem being mounted at /504/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  162.046212][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.113244][T10347] geneve0: entered allmulticast mode
[  162.235794][T10352] __nla_validate_parse: 13 callbacks suppressed
[  162.235891][T10352] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2644'.
[  162.706276][T10360] sctp: [Deprecated]: syz.4.2648 (pid 10360) Use of struct sctp_assoc_value in delayed_ack socket option.
[  162.706276][T10360] Use struct sctp_sack_info instead
[  162.837435][   T29] kauditd_printk_skb: 169 callbacks suppressed
[  162.837452][   T29] audit: type=1400 audit(1738555893.118:16272): avc:  denied  { mounton } for  pid=10364 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  162.876298][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.944077][T10372] loop1: detected capacity change from 0 to 256
[  162.999550][   T29] audit: type=1326 audit(1738555893.318:16273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10374 comm="syz.0.2652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb091a6cda9 code=0x7ffc0000
[  163.025889][   T29] audit: type=1326 audit(1738555893.318:16274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10374 comm="syz.0.2652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb091a6cda9 code=0x7ffc0000
[  163.049586][   T29] audit: type=1326 audit(1738555893.318:16275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10374 comm="syz.0.2652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb091a6cda9 code=0x7ffc0000
[  163.073179][   T29] audit: type=1326 audit(1738555893.318:16276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10374 comm="syz.0.2652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb091a6cda9 code=0x7ffc0000
[  163.096842][   T29] audit: type=1326 audit(1738555893.318:16277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10374 comm="syz.0.2652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb091a6cda9 code=0x7ffc0000
[  163.120593][   T29] audit: type=1326 audit(1738555893.318:16278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10374 comm="syz.0.2652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb091a6cda9 code=0x7ffc0000
[  163.144103][   T29] audit: type=1326 audit(1738555893.318:16279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10374 comm="syz.0.2652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb091a6cda9 code=0x7ffc0000
[  163.167701][   T29] audit: type=1326 audit(1738555893.318:16280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10374 comm="syz.0.2652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fb091a6cda9 code=0x7ffc0000
[  163.191415][   T29] audit: type=1326 audit(1738555893.318:16281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10374 comm="syz.0.2652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb091a6cda9 code=0x7ffc0000
[  163.203997][T10383] loop4: detected capacity change from 0 to 512
[  163.224488][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.247827][T10364] lo speed is unknown, defaulting to 1000
[  163.254377][T10383] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.267652][T10383] ext4 filesystem being mounted at /523/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  163.306118][T10389] loop3: detected capacity change from 0 to 512
[  163.360180][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.374338][T10391] serio: Serial port ptm0
[  163.386513][T10389] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.399367][T10389] ext4 filesystem being mounted at /501/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  163.415509][T10364] chnl_net:caif_netlink_parms(): no params data found
[  163.425827][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.501205][T10407] loop4: detected capacity change from 0 to 512
[  163.516481][T10364] bridge0: port 1(bridge_slave_0) entered blocking state
[  163.523637][T10364] bridge0: port 1(bridge_slave_0) entered disabled state
[  163.525514][T10407] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.536615][T10364] bridge_slave_0: entered allmulticast mode
[  163.549999][T10407] ext4 filesystem being mounted at /526/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  163.550433][T10364] bridge_slave_0: entered promiscuous mode
[  163.567577][T10364] bridge0: port 2(bridge_slave_1) entered blocking state
[  163.574717][T10364] bridge0: port 2(bridge_slave_1) entered disabled state
[  163.582422][T10364] bridge_slave_1: entered allmulticast mode
[  163.588953][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.589343][T10364] bridge_slave_1: entered promiscuous mode
[  163.631584][T10364] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  163.642053][T10364] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  163.661839][T10364] team0: Port device team_slave_0 added
[  163.668640][T10364] team0: Port device team_slave_1 added
[  163.684275][T10414] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2660'.
[  163.693790][T10364] batman_adv: batadv0: Adding interface: batadv_slave_0
[  163.700791][T10364] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  163.726874][T10364] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  163.738908][T10364] batman_adv: batadv0: Adding interface: batadv_slave_1
[  163.745907][T10364] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  163.771903][T10364] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  163.819825][T10364] hsr_slave_0: entered promiscuous mode
[  163.825910][T10364] hsr_slave_1: entered promiscuous mode
[  163.831851][T10364] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  163.839611][T10364] Cannot create hsr debugfs directory
[  163.902499][T10364] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.935463][T10421] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2662'.
[  163.945534][T10364] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.998211][T10364] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.049856][T10364] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.118079][T10364] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  164.128613][T10364] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  164.137554][T10364] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  164.146426][T10364] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  164.201816][T10364] 8021q: adding VLAN 0 to HW filter on device bond0
[  164.223790][T10364] 8021q: adding VLAN 0 to HW filter on device team0
[  164.233434][ T3418] bridge0: port 1(bridge_slave_0) entered blocking state
[  164.240712][ T3418] bridge0: port 1(bridge_slave_0) entered forwarding state
[  164.256934][ T3418] bridge0: port 2(bridge_slave_1) entered blocking state
[  164.264032][ T3418] bridge0: port 2(bridge_slave_1) entered forwarding state
[  164.362365][T10364] 8021q: adding VLAN 0 to HW filter on device batadv0
[  164.505461][T10364] veth0_vlan: entered promiscuous mode
[  164.525618][T10364] veth1_vlan: entered promiscuous mode
[  164.553111][T10364] veth0_macvtap: entered promiscuous mode
[  164.555162][T10450] serio: Serial port ptm0
[  164.561220][T10364] veth1_macvtap: entered promiscuous mode
[  164.575491][T10364] batman_adv: batadv0: Interface activated: batadv_slave_0
[  164.591200][T10364] batman_adv: batadv0: Interface activated: batadv_slave_1
[  164.602770][T10364] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  164.611662][T10364] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  164.620547][T10364] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  164.629357][T10364] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  164.829568][T10468] loop2: detected capacity change from 0 to 128
[  164.836313][T10468] ext4: Unknown parameter 'subj_role'
[  164.843050][T10468] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2676'.
[  164.880658][T10470] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.930916][T10470] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  165.224495][T10475] loop3: detected capacity change from 0 to 512
[  165.249098][T10475] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.261950][T10475] ext4 filesystem being mounted at /505/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  165.283987][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.522784][T10498] loop0: detected capacity change from 0 to 1024
[  165.531678][T10498] EXT4-fs: Ignoring removed nobh option
[  165.538747][T10498] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  165.549996][T10498] EXT4-fs error (device loop0): ext4_ext_check_inode:524: inode #11: comm syz.0.2687: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  165.568897][T10498] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.2687: couldn't read orphan inode 11 (err -117)
[  165.583750][T10498] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.609133][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.685103][T10506] loop0: detected capacity change from 0 to 512
[  165.701143][T10506] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.714296][T10506] ext4 filesystem being mounted at /530/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  165.734455][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.831636][T10513] netlink: 'syz.0.2693': attribute type 5 has an invalid length.
[  165.842391][T10513] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2693'.
[  166.432778][T10522] loop3: detected capacity change from 0 to 512
[  166.463403][T10522] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.487607][T10522] ext4 filesystem being mounted at /511/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  166.502993][T10522] EXT4-fs (loop3): shut down requested (2)
[  166.505750][T10470] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.511032][T10522] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  166.529959][T10522] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  166.538848][T10522] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  166.598276][T10522] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  166.914688][T10535] loop4: detected capacity change from 0 to 128
[  166.930610][T10535] ext4: Unknown parameter 'subj_role'
[  167.119965][T10543] sd 0:0:1:0: device reset
[  167.168005][T10535] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2700'.
[  167.236544][T10543] loop0: detected capacity change from 0 to 164
[  167.263548][T10543] ISOFS: unable to read i-node block
[  167.269001][T10543] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  167.395044][T10559] loop1: detected capacity change from 0 to 512
[  167.431142][T10559] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.473125][T10559] ext4 filesystem being mounted at /523/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  167.504218][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.520173][T10570] loop0: detected capacity change from 0 to 512
[  167.576094][T10570] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.611449][T10570] ext4 filesystem being mounted at /542/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  167.636343][T10570] EXT4-fs (loop0): shut down requested (2)
[  167.642809][T10570] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  167.653814][T10570] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  167.665166][T10570] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  167.687578][T10570] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  167.831278][T10584] sd 0:0:1:0: device reset
[  167.902172][T10584] loop1: detected capacity change from 0 to 164
[  167.934444][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.943980][T10584] ISOFS: unable to read i-node block
[  167.949362][T10584] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  168.004790][T10587] loop1: detected capacity change from 0 to 512
[  168.015458][T10587] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  168.046107][T10587] EXT4-fs (loop1): 1 truncate cleaned up
[  168.052240][T10587] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.080589][T10587] lo speed is unknown, defaulting to 1000
[  168.085762][T10590] loop3: detected capacity change from 0 to 512
[  168.181479][T10590] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.184800][T10587] geneve0: entered allmulticast mode
[  168.212899][T10590] ext4 filesystem being mounted at /512/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  168.254315][T10595] serio: Serial port ptm0
[  168.341097][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.403553][T10470] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.481926][T10470] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  168.496468][T10470] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  168.541056][T10470] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  168.592941][T10470] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  168.901559][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.029779][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.078477][T10620] loop0: detected capacity change from 0 to 512
[  169.105042][T10617] sd 0:0:1:0: device reset
[  169.122987][T10620] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.158893][T10620] ext4 filesystem being mounted at /543/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  169.174348][T10617] loop1: detected capacity change from 0 to 164
[  169.181456][T10620] EXT4-fs (loop0): shut down requested (2)
[  169.190135][T10620] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  169.212834][T10617] ISOFS: unable to read i-node block
[  169.217448][T10620] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  169.218206][T10617] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  169.226906][T10620] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  169.237979][T10620] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  169.367309][   T29] kauditd_printk_skb: 60 callbacks suppressed
[  169.367332][   T29] audit: type=1326 audit(1738555899.678:16342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10637 comm="syz.2.2738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fdc61cda9 code=0x7ffc0000
[  169.410404][T10639] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2733'.
[  169.438751][T10639] bridge0: port 3(batadv2) entered blocking state
[  169.445276][T10639] bridge0: port 3(batadv2) entered disabled state
[  169.458993][T10638] 9pnet_fd: Insufficient options for proto=fd
[  169.566372][T10639] batadv2: entered allmulticast mode
[  169.616873][T10639] batadv2: entered promiscuous mode
[  169.642651][T10643] serio: Serial port ptm0
[  169.650377][T10646] loop1: detected capacity change from 0 to 512
[  169.704258][   T29] audit: type=1326 audit(1738555899.718:16343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10637 comm="syz.2.2738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0fdc61cda9 code=0x7ffc0000
[  169.728079][   T29] audit: type=1326 audit(1738555899.718:16344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10637 comm="syz.2.2738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fdc61cda9 code=0x7ffc0000
[  169.751939][   T29] audit: type=1326 audit(1738555899.768:16345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10637 comm="syz.2.2738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0fdc61cda9 code=0x7ffc0000
[  169.775695][   T29] audit: type=1326 audit(1738555899.768:16346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10637 comm="syz.2.2738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fdc61cda9 code=0x7ffc0000
[  169.799475][   T29] audit: type=1326 audit(1738555899.768:16347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10637 comm="syz.2.2738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fdc61cda9 code=0x7ffc0000
[  169.823223][   T29] audit: type=1326 audit(1738555899.768:16348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10637 comm="syz.2.2738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0fdc61cda9 code=0x7ffc0000
[  169.846877][   T29] audit: type=1326 audit(1738555899.768:16349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10637 comm="syz.2.2738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fdc61cda9 code=0x7ffc0000
[  169.870756][   T29] audit: type=1326 audit(1738555899.768:16350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10637 comm="syz.2.2738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0fdc61cda9 code=0x7ffc0000
[  169.894403][   T29] audit: type=1326 audit(1738555899.768:16351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10637 comm="syz.2.2738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fdc61cda9 code=0x7ffc0000
[  169.926400][T10646] EXT4-fs warning (device loop1): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  169.943539][   T56] batman_adv: batadv2: No IGMP Querier present - multicast optimizations disabled
[  169.952853][   T56] batman_adv: batadv2: No MLD Querier present - multicast optimizations disabled
[  169.962414][T10646] EXT4-fs (loop1): mount failed
[  170.275844][T10668] atomic_op ffff888122de6128 conn xmit_atomic 0000000000000000
[  170.393768][T10678] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2753'.
[  170.434096][T10678] bridge0: port 3(batadv2) entered blocking state
[  170.440687][T10678] bridge0: port 3(batadv2) entered disabled state
[  170.487344][T10678] batadv2: entered allmulticast mode
[  170.527952][T10678] batadv2: entered promiscuous mode
[  170.594864][T10684] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  170.669037][T10684] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  170.704932][T10693] FAULT_INJECTION: forcing a failure.
[  170.704932][T10693] name failslab, interval 1, probability 0, space 0, times 0
[  170.717918][T10693] CPU: 0 UID: 0 PID: 10693 Comm: syz.4.2760 Not tainted 6.13.0-syzkaller-10033-gd79bc8f79baa #0
[  170.717943][T10693] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  170.717957][T10693] Call Trace:
[  170.717965][T10693]  <TASK>
[  170.717973][T10693]  dump_stack_lvl+0xf2/0x150
[  170.718002][T10693]  dump_stack+0x15/0x1a
[  170.718050][T10693]  should_fail_ex+0x24a/0x260
[  170.718092][T10693]  should_failslab+0x8f/0xb0
[  170.718123][T10693]  kmem_cache_alloc_node_noprof+0x59/0x320
[  170.718165][T10693]  ? __alloc_skb+0x10b/0x310
[  170.718255][T10693]  __alloc_skb+0x10b/0x310
[  170.718287][T10693]  netlink_alloc_large_skb+0xad/0xe0
[  170.718332][T10693]  netlink_sendmsg+0x3b4/0x6e0
[  170.718373][T10693]  ? __pfx_netlink_sendmsg+0x10/0x10
[  170.718438][T10693]  __sock_sendmsg+0x140/0x180
[  170.718462][T10693]  ____sys_sendmsg+0x312/0x410
[  170.718493][T10693]  __sys_sendmsg+0x19d/0x230
[  170.718543][T10693]  __x64_sys_sendmsg+0x46/0x50
[  170.718650][T10693]  x64_sys_call+0x2734/0x2dc0
[  170.718690][T10693]  do_syscall_64+0xc9/0x1c0
[  170.718718][T10693]  ? clear_bhb_loop+0x55/0xb0
[  170.718745][T10693]  ? clear_bhb_loop+0x55/0xb0
[  170.718771][T10693]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.718871][T10693] RIP: 0033:0x7f8800d2cda9
[  170.718887][T10693] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.718905][T10693] RSP: 002b:00007f87ff397038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  170.718924][T10693] RAX: ffffffffffffffda RBX: 00007f8800f45fa0 RCX: 00007f8800d2cda9
[  170.718939][T10693] RDX: 0000000000000000 RSI: 0000000020000380 RDI: 0000000000000003
[  170.718953][T10693] RBP: 00007f87ff397090 R08: 0000000000000000 R09: 0000000000000000
[  170.719003][T10693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  170.719032][T10693] R13: 0000000000000000 R14: 00007f8800f45fa0 R15: 00007fff79214f78
[  170.719202][T10693]  </TASK>
[  170.954315][   T11] batman_adv: batadv2: No IGMP Querier present - multicast optimizations disabled
[  170.963804][   T11] batman_adv: batadv2: No MLD Querier present - multicast optimizations disabled
[  170.978500][T10684] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  171.030781][T10684] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  171.052522][T10703] serio: Serial port ptm0
[  171.190621][T10712] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2767'.
[  171.484012][T10731] loop4: detected capacity change from 0 to 512
[  171.493558][T10731] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  171.514681][T10731] EXT4-fs (loop4): 1 truncate cleaned up
[  171.520799][T10731] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.546751][T10731] lo speed is unknown, defaulting to 1000
[  171.565965][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.640821][T10731] geneve0: entered allmulticast mode
[  171.797941][T10740] loop0: detected capacity change from 0 to 512
[  171.809283][T10740] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.821991][T10740] ext4 filesystem being mounted at /546/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.993873][T10747] loop1: detected capacity change from 0 to 512
[  172.001322][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.044602][T10747] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.060248][T10747] ext4 filesystem being mounted at /544/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  172.104033][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.294219][T10764] loop1: detected capacity change from 0 to 512
[  172.304286][T10766] loop3: detected capacity change from 0 to 256
[  172.341294][T10764] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.356479][T10764] ext4 filesystem being mounted at /546/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  172.397405][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.399303][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.434536][T10776] sd 0:0:1:0: device reset
[  172.497948][T10776] loop4: detected capacity change from 0 to 164
[  172.504890][T10776] ISOFS: unable to read i-node block
[  172.510230][T10776] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  172.571589][T10787] loop4: detected capacity change from 0 to 256
[  172.579379][T10787] vfat: Unknown parameter 'Nonumtail'
[  173.119672][T10793] loop0: detected capacity change from 0 to 512
[  173.126482][T10793] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  173.139496][T10793] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  173.161692][T10793] EXT4-fs (loop0): 1 truncate cleaned up
[  173.169249][T10793] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.190267][T10793] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.192619][T10684] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  173.211215][T10684] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  173.223952][T10684] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  173.235871][T10684] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  173.240777][T10793] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2795'.
[  173.258412][T10796] atomic_op ffff888127427d28 conn xmit_atomic 0000000000000000
[  173.306248][T10804] loop3: detected capacity change from 0 to 512
[  173.313754][T10804] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  173.318794][T10801] loop2: detected capacity change from 0 to 512
[  173.339802][T10804] EXT4-fs (loop3): 1 truncate cleaned up
[  173.347878][T10804] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.372011][T10804] lo speed is unknown, defaulting to 1000
[  173.383936][T10807] loop0: detected capacity change from 0 to 512
[  173.455468][T10801] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.455811][T10807] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.484311][T10801] ext4 filesystem being mounted at /16/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  173.499296][T10807] ext4 filesystem being mounted at /550/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  173.532739][T10820] sd 0:0:1:0: device reset
[  173.548708][T10364] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.580375][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.600500][T10820] loop1: detected capacity change from 0 to 164
[  173.617520][T10820] ISOFS: unable to read i-node block
[  173.622865][T10820] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  173.688713][T10829] FAULT_INJECTION: forcing a failure.
[  173.688713][T10829] name failslab, interval 1, probability 0, space 0, times 0
[  173.701510][T10829] CPU: 1 UID: 0 PID: 10829 Comm: syz.1.2808 Not tainted 6.13.0-syzkaller-10033-gd79bc8f79baa #0
[  173.701539][T10829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  173.701554][T10829] Call Trace:
[  173.701560][T10829]  <TASK>
[  173.701568][T10829]  dump_stack_lvl+0xf2/0x150
[  173.701668][T10829]  dump_stack+0x15/0x1a
[  173.701689][T10829]  should_fail_ex+0x24a/0x260
[  173.701728][T10829]  should_failslab+0x8f/0xb0
[  173.701755][T10829]  kmem_cache_alloc_node_noprof+0x59/0x320
[  173.701798][T10829]  ? __alloc_skb+0x10b/0x310
[  173.701899][T10829]  __alloc_skb+0x10b/0x310
[  173.701988][T10829]  netlink_alloc_large_skb+0xad/0xe0
[  173.702066][T10829]  netlink_sendmsg+0x3b4/0x6e0
[  173.702104][T10829]  ? __pfx_netlink_sendmsg+0x10/0x10
[  173.702189][T10829]  __sock_sendmsg+0x140/0x180
[  173.702209][T10829]  ____sys_sendmsg+0x312/0x410
[  173.702327][T10829]  __sys_sendmsg+0x19d/0x230
[  173.702369][T10829]  __x64_sys_sendmsg+0x46/0x50
[  173.702403][T10829]  x64_sys_call+0x2734/0x2dc0
[  173.702436][T10829]  do_syscall_64+0xc9/0x1c0
[  173.702467][T10829]  ? clear_bhb_loop+0x55/0xb0
[  173.702500][T10829]  ? clear_bhb_loop+0x55/0xb0
[  173.702526][T10829]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.702596][T10829] RIP: 0033:0x7f362186cda9
[  173.702615][T10829] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.702637][T10829] RSP: 002b:00007f361fed7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  173.702660][T10829] RAX: ffffffffffffffda RBX: 00007f3621a85fa0 RCX: 00007f362186cda9
[  173.702675][T10829] RDX: 0000000000000000 RSI: 0000000020000380 RDI: 0000000000000003
[  173.702769][T10829] RBP: 00007f361fed7090 R08: 0000000000000000 R09: 0000000000000000
[  173.702784][T10829] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  173.702798][T10829] R13: 0000000000000000 R14: 00007f3621a85fa0 R15: 00007ffda9283ca8
[  173.702873][T10829]  </TASK>
[  173.707314][T10831] loop0: detected capacity change from 0 to 512
[  173.911959][T10831] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  173.923299][T10831] EXT4-fs (loop0): 1 truncate cleaned up
[  173.929379][T10831] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.953769][T10831] lo speed is unknown, defaulting to 1000
[  174.012492][T10839] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  174.020839][T10839] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  174.025113][T10841] loop1: detected capacity change from 0 to 512
[  174.029177][T10839] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  174.043604][T10839] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  174.050722][T10841] ext4: Unknown parameter 'nouser_xattr'
[  174.052381][T10839] geneve2: entered allmulticast mode
[  174.349013][T10852] loop2: detected capacity change from 0 to 256
[  174.428023][T10852] vfat: Unknown parameter 'Nonumtail'
[  174.595768][T10867] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2819'.
[  174.660575][T10867] bridge0: port 3(batadv2) entered blocking state
[  174.667088][T10867] bridge0: port 3(batadv2) entered disabled state
[  174.724884][T10867] batadv2: entered allmulticast mode
[  174.770211][T10867] batadv2: entered promiscuous mode
[  174.811432][T10872] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2821'.
[  174.977606][   T29] kauditd_printk_skb: 222 callbacks suppressed
[  174.977657][   T29] audit: type=1326 audit(1738555905.298:16573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10879 comm="syz.1.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f362186cda9 code=0x7ffc0000
[  175.037676][   T29] audit: type=1326 audit(1738555905.328:16574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10879 comm="syz.1.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=192 compat=0 ip=0x7f362186cda9 code=0x7ffc0000
[  175.061377][   T29] audit: type=1326 audit(1738555905.328:16575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10879 comm="syz.1.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f362186cda9 code=0x7ffc0000
[  175.085126][   T29] audit: type=1326 audit(1738555905.328:16576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10879 comm="syz.1.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f362186cda9 code=0x7ffc0000
[  175.108732][   T29] audit: type=1326 audit(1738555905.328:16577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10879 comm="syz.1.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f362186cda9 code=0x7ffc0000
[  175.132370][   T29] audit: type=1326 audit(1738555905.328:16578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10879 comm="syz.1.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f362186cda9 code=0x7ffc0000
[  175.161161][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.177467][   T28] batman_adv: batadv2: No IGMP Querier present - multicast optimizations disabled
[  175.186700][   T28] batman_adv: batadv2: No MLD Querier present - multicast optimizations disabled
[  175.286213][T10891] loop2: detected capacity change from 0 to 512
[  175.313283][T10891] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.346265][T10887] serio: Serial port ptm0
[  175.357921][T10891] ext4 filesystem being mounted at /22/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  175.400944][T10364] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.423773][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.449937][T10896] sd 0:0:1:0: device reset
[  175.472474][T10898] loop0: detected capacity change from 0 to 1024
[  175.479996][T10898] EXT4-fs: Ignoring removed nobh option
[  175.488564][T10898] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  175.505032][T10898] EXT4-fs error (device loop0): ext4_ext_check_inode:524: inode #11: comm syz.0.2831: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  175.525983][T10896] loop2: detected capacity change from 0 to 164
[  175.532522][T10898] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.2831: couldn't read orphan inode 11 (err -117)
[  175.546729][T10898] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.548724][T10896] ISOFS: unable to read i-node block
[  175.564628][T10896] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  175.606502][   T29] audit: type=1326 audit(1738555905.918:16579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10901 comm="syz.0.2832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb091a6cda9 code=0x7ffc0000
[  175.630341][   T29] audit: type=1326 audit(1738555905.918:16580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10901 comm="syz.0.2832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb091a6cda9 code=0x7ffc0000
[  175.654087][   T29] audit: type=1326 audit(1738555905.918:16581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10901 comm="syz.0.2832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb091a6cda9 code=0x7ffc0000
[  175.677834][   T29] audit: type=1326 audit(1738555905.918:16582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10901 comm="syz.0.2832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb091a6cda9 code=0x7ffc0000
[  175.770481][T10907] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2833'.
[  175.783116][T10907] bridge0: port 3(batadv1) entered blocking state
[  175.789659][T10907] bridge0: port 3(batadv1) entered disabled state
[  175.799697][T10907] batadv1: entered allmulticast mode
[  175.805678][T10907] batadv1: entered promiscuous mode
[  175.961691][T10924] loop1: detected capacity change from 0 to 512
[  176.022661][T10924] ext4 filesystem being mounted at /567/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  176.066471][T10937] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2842'.
[  176.163093][T10944] 9pnet: Could not find request transport: fd0xffffffffffffffff
[  176.290504][   T38] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled
[  176.299898][   T38] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled
[  176.309187][T10958] loop2: detected capacity change from 0 to 512
[  176.333198][T10958] EXT4-fs warning (device loop2): ext4_enable_quotas:7145: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix.
[  176.350122][T10958] EXT4-fs (loop2): mount failed
[  176.382743][T10964] netlink: 'syz.3.2857': attribute type 5 has an invalid length.
[  176.405618][T10964] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2857'.
[  176.489888][T10971] loop2: detected capacity change from 0 to 512
[  176.520010][T10971] ext4 filesystem being mounted at /36/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  176.593823][T10975] 9pnet: Could not find request transport: fd0xffffffffffffffff
[  176.752322][T10986] loop2: detected capacity change from 0 to 512
[  176.780645][T10986] ext4 filesystem being mounted at /42/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  176.884107][T10994] loop0: detected capacity change from 0 to 512
[  176.922899][T10994] EXT4-fs error (device loop0): ext4_init_orphan_info:586: comm syz.0.2869: inode #0: comm syz.0.2869: iget: illegal inode #
[  176.969461][T10994] EXT4-fs (loop0): Remounting filesystem read-only
[  176.976083][T10994] EXT4-fs (loop0): get orphan inode failed
[  176.985069][T10997] sd 0:0:1:0: device reset
[  176.990222][T10994] EXT4-fs (loop0): mount failed
[  177.051756][T11000] sd 0:0:1:0: device reset
[  177.061145][T10997] loop2: detected capacity change from 0 to 164
[  177.068621][T10997] ISOFS: unable to read i-node block
[  177.074058][T10997] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  177.108743][T11000] loop1: detected capacity change from 0 to 164
[  177.134915][T11007] loop0: detected capacity change from 0 to 512
[  177.164938][T11007] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  177.167689][T11000] ISOFS: unable to read i-node block
[  177.180262][T11000] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  177.193682][T11007] EXT4-fs (loop0): 1 truncate cleaned up
[  177.219181][T11007] lo speed is unknown, defaulting to 1000
[  177.226807][T11002] 9pnet: Could not find request transport: fd0xffffffffffffffff
[  177.287194][T11011] loop3: detected capacity change from 0 to 256
[  177.294069][T11011] vfat: Unknown parameter 'Nonumtail'
[  177.305038][T11007] geneve0: entered allmulticast mode
[  177.318810][T11015] loop1: detected capacity change from 0 to 512
[  177.328912][T11018] loop2: detected capacity change from 0 to 512
[  177.361038][T11018] ext4 filesystem being mounted at /46/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  177.407981][T11019] atomic_op ffff8881045b2128 conn xmit_atomic 0000000000000000
[  177.435069][T11015] ext4 filesystem being mounted at /571/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  177.464086][T11018] FAULT_INJECTION: forcing a failure.
[  177.464086][T11018] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  177.477230][T11018] CPU: 1 UID: 0 PID: 11018 Comm: syz.2.2879 Not tainted 6.13.0-syzkaller-10033-gd79bc8f79baa #0
[  177.477256][T11018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  177.477330][T11018] Call Trace:
[  177.477337][T11018]  <TASK>
[  177.477346][T11018]  dump_stack_lvl+0xf2/0x150
[  177.477373][T11018]  dump_stack+0x15/0x1a
[  177.477455][T11018]  should_fail_ex+0x24a/0x260
[  177.477493][T11018]  should_fail+0xb/0x10
[  177.477525][T11018]  should_fail_usercopy+0x1a/0x20
[  177.477548][T11018]  _copy_to_iter+0xd5/0xd00
[  177.477656][T11018]  get_random_bytes_user+0x112/0x260
[  177.477721][T11018]  ? import_ubuf+0xec/0x130
[  177.477802][T11018]  __x64_sys_getrandom+0xb5/0x190
[  177.477879][T11018]  x64_sys_call+0x118a/0x2dc0
[  177.477910][T11018]  do_syscall_64+0xc9/0x1c0
[  177.477934][T11018]  ? clear_bhb_loop+0x55/0xb0
[  177.478024][T11018]  ? clear_bhb_loop+0x55/0xb0
[  177.478135][T11018]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.478162][T11018] RIP: 0033:0x7f0fdc61cda9
[  177.478180][T11018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.478199][T11018] RSP: 002b:00007f0fdac87038 EFLAGS: 00000246 ORIG_RAX: 000000000000013e
[  177.478228][T11018] RAX: ffffffffffffffda RBX: 00007f0fdc835fa0 RCX: 00007f0fdc61cda9
[  177.478243][T11018] RDX: 0000000000000002 RSI: fffffffffffffdde RDI: 0000000020000040
[  177.478258][T11018] RBP: 00007f0fdac87090 R08: 0000000000000000 R09: 0000000000000000
[  177.478273][T11018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  177.478328][T11018] R13: 0000000000000000 R14: 00007f0fdc835fa0 R15: 00007ffe09d93578
[  177.478352][T11018]  </TASK>
[  177.510292][T11030] loop0: detected capacity change from 0 to 512
[  177.542270][T11030] ext4 filesystem being mounted at /564/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  177.704677][T11044] 9pnet_fd: Insufficient options for proto=fd
[  177.722928][T11049] netlink: 'syz.0.2885': attribute type 5 has an invalid length.
[  177.727053][T11049] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2885'.
[  177.745101][T11048] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2887'.
[  177.750487][T11048] bridge0: port 4(batadv3) entered blocking state
[  177.750598][T11048] bridge0: port 4(batadv3) entered disabled state
[  177.750661][T11048] batadv3: entered allmulticast mode
[  177.751250][T11048] batadv3: entered promiscuous mode
[  177.895779][T11055] loop1: detected capacity change from 0 to 512
[  178.023591][T11055] ext4 filesystem being mounted at /575/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  178.053631][T11062] loop4: detected capacity change from 0 to 512
[  178.065907][T11062] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  178.081258][T11062] EXT4-fs (loop4): 1 truncate cleaned up
[  178.119815][T11062] lo speed is unknown, defaulting to 1000
[  178.161681][T11064] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  178.169952][T11064] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  178.178247][T11064] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  178.186437][T11064] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  178.203425][T11064] geneve2: entered allmulticast mode
[  178.223833][T11068] sd 0:0:1:0: device reset
[  178.237635][T11066] loop1: detected capacity change from 0 to 512
[  178.248133][   T28] batman_adv: batadv3: No IGMP Querier present - multicast optimizations disabled
[  178.257417][   T28] batman_adv: batadv3: No MLD Querier present - multicast optimizations disabled
[  178.308597][T11073] FAULT_INJECTION: forcing a failure.
[  178.308597][T11073] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  178.321818][T11073] CPU: 0 UID: 0 PID: 11073 Comm: syz.3.2894 Not tainted 6.13.0-syzkaller-10033-gd79bc8f79baa #0
[  178.321843][T11073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  178.321854][T11073] Call Trace:
[  178.321861][T11073]  <TASK>
[  178.321869][T11073]  dump_stack_lvl+0xf2/0x150
[  178.321903][T11073]  dump_stack+0x15/0x1a
[  178.321928][T11073]  should_fail_ex+0x24a/0x260
[  178.321984][T11073]  should_fail+0xb/0x10
[  178.322012][T11073]  should_fail_usercopy+0x1a/0x20
[  178.322064][T11073]  _copy_from_user+0x1c/0xa0
[  178.322090][T11073]  kstrtouint_from_user+0x76/0xe0
[  178.322171][T11073]  ? 0xffffffff81000000
[  178.322186][T11073]  ? selinux_file_permission+0x22a/0x360
[  178.322293][T11073]  proc_fail_nth_write+0x4f/0x150
[  178.322324][T11073]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  178.322410][T11073]  vfs_write+0x27d/0x920
[  178.322490][T11073]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  178.322520][T11073]  ? __fget_files+0x17c/0x1c0
[  178.322550][T11073]  ksys_write+0xe8/0x1b0
[  178.322573][T11073]  __x64_sys_write+0x42/0x50
[  178.322599][T11073]  x64_sys_call+0x287e/0x2dc0
[  178.322681][T11073]  do_syscall_64+0xc9/0x1c0
[  178.322795][T11073]  ? clear_bhb_loop+0x55/0xb0
[  178.322840][T11073]  ? clear_bhb_loop+0x55/0xb0
[  178.322871][T11073]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.322916][T11073] RIP: 0033:0x7fe83e7cb85f
[  178.322933][T11073] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  178.322953][T11073] RSP: 002b:00007fe83ce31030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  178.322981][T11073] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe83e7cb85f
[  178.322995][T11073] RDX: 0000000000000001 RSI: 00007fe83ce310a0 RDI: 0000000000000005
[  178.323009][T11073] RBP: 00007fe83ce31090 R08: 0000000000000000 R09: 0000000000000000
[  178.323085][T11073] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  178.323143][T11073] R13: 0000000000000000 R14: 00007fe83e9e5fa0 R15: 00007ffd3899d508
[  178.323172][T11073]  </TASK>
[  178.325346][T11066] ext4 filesystem being mounted at /576/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  178.650900][T11081] loop0: detected capacity change from 0 to 512
[  178.681295][T11087] loop3: detected capacity change from 0 to 512
[  178.695596][T11085] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2899'.
[  178.712022][T11089] sd 0:0:1:0: device reset
[  178.725225][T11087] ext4 filesystem being mounted at /538/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  178.743519][T11085] bridge0: port 4(batadv2) entered blocking state
[  178.745875][T11081] ext4 filesystem being mounted at /567/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  178.750162][T11085] bridge0: port 4(batadv2) entered disabled state
[  178.768586][T11085] batadv2: entered allmulticast mode
[  178.774888][T11085] batadv2: entered promiscuous mode
[  178.780230][T11089] loop1: detected capacity change from 0 to 164
[  178.786947][T11087] EXT4-fs (loop3): shut down requested (2)
[  178.793631][T11087] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  178.803621][T11087] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  178.812653][T11087] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  178.822996][T11087] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  178.840754][T11089] ISOFS: unable to read i-node block
[  178.846064][T11089] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  178.942798][T11099] netlink: 76 bytes leftover after parsing attributes in process `syz.2.2904'.
[  178.963115][T11096] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2904'.
[  179.055675][T11110] netlink: 'syz.0.2906': attribute type 5 has an invalid length.
[  179.208099][   T38] batman_adv: batadv2: No IGMP Querier present - multicast optimizations disabled
[  179.217543][   T38] batman_adv: batadv2: No MLD Querier present - multicast optimizations disabled
[  179.343567][T11125] bridge0: port 5(batadv3) entered blocking state
[  179.350318][T11125] bridge0: port 5(batadv3) entered disabled state
[  179.399022][T11125] batadv3: entered allmulticast mode
[  179.411056][T11125] batadv3: entered promiscuous mode
[  179.425964][T11130] loop1: detected capacity change from 0 to 128
[  179.522343][T11128] syz.1.2916: attempt to access beyond end of device
[  179.522343][T11128] loop1: rw=2049, sector=145, nr_sectors = 896 limit=128
[  179.545910][T11133] loop2: detected capacity change from 0 to 164
[  179.553182][T11133] ISOFS: unable to read i-node block
[  179.558554][T11133] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  179.583750][T11128] syz.1.2916: attempt to access beyond end of device
[  179.583750][T11128] loop1: rw=524288, sector=145, nr_sectors = 224 limit=128
[  179.607406][T11128] syz.1.2916: attempt to access beyond end of device
[  179.607406][T11128] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  179.639548][T11128] syz.1.2916: attempt to access beyond end of device
[  179.639548][T11128] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  179.651222][T11136] loop2: detected capacity change from 0 to 512
[  179.653268][T11128] syz.1.2916: attempt to access beyond end of device
[  179.653268][T11128] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  179.674129][T11128] syz.1.2916: attempt to access beyond end of device
[  179.674129][T11128] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  179.687605][T11128] syz.1.2916: attempt to access beyond end of device
[  179.687605][T11128] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  179.706939][T11128] syz.1.2916: attempt to access beyond end of device
[  179.706939][T11128] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  179.706997][T11136] EXT4-fs error (device loop2): ext4_init_orphan_info:586: comm syz.2.2919: inode #0: comm syz.2.2919: iget: illegal inode #
[  179.720688][T11128] syz.1.2916: attempt to access beyond end of device
[  179.720688][T11128] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  179.746630][T11128] syz.1.2916: attempt to access beyond end of device
[  179.746630][T11128] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  179.774140][T11136] EXT4-fs (loop2): Remounting filesystem read-only
[  179.780755][T11136] EXT4-fs (loop2): get orphan inode failed
[  179.816371][T11136] EXT4-fs (loop2): mount failed
[  179.848563][ T3418] batman_adv: batadv3: No IGMP Querier present - multicast optimizations disabled
[  179.857878][ T3418] batman_adv: batadv3: No MLD Querier present - multicast optimizations disabled
[  179.943754][T11141] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.029235][T11141] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.075470][T11146] loop0: detected capacity change from 0 to 512
[  180.088932][T11141] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.123969][T11146] ext4 filesystem being mounted at /571/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  180.149945][T11141] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.246397][T11141] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  180.246599][T11150] sd 0:0:1:0: device reset
[  180.272931][T11141] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  180.315524][T11141] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  180.330980][T11141] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  180.421142][T11161] loop2: detected capacity change from 0 to 512
[  180.428312][T11161] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  180.441733][T11161] EXT4-fs (loop2): 1 truncate cleaned up
[  180.458797][T11161] lo speed is unknown, defaulting to 1000
[  180.529452][T11161] geneve0: entered allmulticast mode
[  180.607619][   T29] kauditd_printk_skb: 650 callbacks suppressed
[  180.607636][   T29] audit: type=1326 audit(1738555910.918:17232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11167 comm="syz.1.2933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f362186cda9 code=0x7ffc0000
[  180.649353][T11172] netlink: 'syz.4.2931': attribute type 5 has an invalid length.
[  180.697230][   T29] audit: type=1326 audit(1738555910.928:17233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11167 comm="syz.1.2933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f362186cda9 code=0x7ffc0000
[  180.720882][   T29] audit: type=1326 audit(1738555910.928:17234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11167 comm="syz.1.2933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f362186cda9 code=0x7ffc0000
[  180.744883][   T29] audit: type=1326 audit(1738555910.938:17235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11167 comm="syz.1.2933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f362186cda9 code=0x7ffc0000
[  180.768593][   T29] audit: type=1326 audit(1738555910.938:17236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11167 comm="syz.1.2933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f362186cda9 code=0x7ffc0000
[  180.792667][   T29] audit: type=1326 audit(1738555910.938:17237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11167 comm="syz.1.2933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f362186cda9 code=0x7ffc0000
[  180.817210][   T29] audit: type=1326 audit(1738555910.938:17238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11167 comm="syz.1.2933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f362186cda9 code=0x7ffc0000
[  180.840971][   T29] audit: type=1326 audit(1738555910.938:17239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11167 comm="syz.1.2933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f362186cda9 code=0x7ffc0000
[  180.864766][   T29] audit: type=1326 audit(1738555910.938:17240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11167 comm="syz.1.2933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f362186cda9 code=0x7ffc0000
[  180.888437][   T29] audit: type=1326 audit(1738555910.938:17241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11167 comm="syz.1.2933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=209 compat=0 ip=0x7f362186cda9 code=0x7ffc0000
[  180.919865][T11177] __nla_validate_parse: 5 callbacks suppressed
[  180.919883][T11177] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2931'.
[  180.953284][T11162] loop0: detected capacity change from 0 to 512
[  181.005967][T11162] EXT4-fs: Ignoring removed oldalloc option
[  181.077554][T11162] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #13: comm syz.0.2929: attempt to clear invalid blocks 1 len 1
[  181.106863][T11162] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2929: bg 0: block 343: padding at end of block bitmap is not set
[  181.164361][T11162] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  181.196462][T11182] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2936'.
[  181.216017][T11162] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.2929: invalid indirect mapped block 1819239214 (level 0)
[  181.240567][T11162] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.2929: invalid indirect mapped block 1819239214 (level 1)
[  181.266426][T11182] bridge0: port 6(batadv4) entered blocking state
[  181.273075][T11182] bridge0: port 6(batadv4) entered disabled state
[  181.287313][T11162] EXT4-fs (loop0): 1 truncate cleaned up
[  181.296796][T11182] batadv4: entered allmulticast mode
[  181.316676][T11182] batadv4: entered promiscuous mode
[  181.467600][T11188] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  181.476204][T11188] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  181.490737][T11186] loop2: detected capacity change from 0 to 512
[  181.508494][T11190] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  181.544294][T11186] ext4 filesystem being mounted at /63/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  181.558877][T11190] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  181.570413][T11186] EXT4-fs (loop2): shut down requested (2)
[  181.583917][T11186] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[  181.611533][T11186] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[  181.627437][T11186] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[  181.652145][T11186] bridge_slave_1: left allmulticast mode
[  181.657895][T11186] bridge_slave_1: left promiscuous mode
[  181.663545][T11186] bridge0: port 2(bridge_slave_1) entered disabled state
[  181.681821][T11186] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  181.707625][T11190] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  181.768640][T11190] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  181.778913][ T3316] batman_adv: batadv4: No IGMP Querier present - multicast optimizations disabled
[  181.788175][ T3316] batman_adv: batadv4: No MLD Querier present - multicast optimizations disabled
[  181.824198][T11205] usb usb8: usbfs: process 11205 (syz.1.2943) did not claim interface 0 before use
[  181.849703][T11190] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  181.871339][T11190] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  181.907267][T11205] vhci_hcd: default hub control req: 010b v0000 i0000 l0
[  181.915770][T11190] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  181.944859][T11190] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  182.144188][T11212] loop1: detected capacity change from 0 to 512
[  182.182318][T11213] loop4: detected capacity change from 0 to 512
[  182.280197][T11212] ext4 filesystem being mounted at /592/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  182.296394][T11213] ext4 filesystem being mounted at /574/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  182.440837][T11221] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2948'.
[  182.460720][T11221] bridge0: port 2(batadv1) entered blocking state
[  182.467290][T11221] bridge0: port 2(batadv1) entered disabled state
[  182.487389][T11221] batadv1: entered allmulticast mode
[  182.519282][T11221] batadv1: entered promiscuous mode
[  182.526512][T11226] netlink: 'syz.1.2949': attribute type 5 has an invalid length.
[  182.538802][T11226] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2949'.
[  182.563738][T11228] loop4: detected capacity change from 0 to 1024
[  182.605884][T11228] EXT4-fs: Ignoring removed nobh option
[  182.625417][T11228] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  182.674753][T11228] EXT4-fs error (device loop4): ext4_ext_check_inode:524: inode #11: comm syz.4.2952: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  182.773382][T11228] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.2952: couldn't read orphan inode 11 (err -117)
[  182.921191][T11243] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  182.967651][ T3316] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled
[  182.976903][ T3316] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled
[  182.995482][T11247] loop3: detected capacity change from 0 to 512
[  183.022593][T11243] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  183.037948][T11247] ext4 filesystem being mounted at /541/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  183.109712][T11243] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  183.170335][T11243] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  183.284556][T11263] loop1: detected capacity change from 0 to 512
[  183.306750][T11259] serio: Serial port ptm0
[  183.314684][T11263] ext4 filesystem being mounted at /594/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  183.328350][T11263] EXT4-fs (loop1): shut down requested (2)
[  183.334324][T11265] loop3: detected capacity change from 0 to 1024
[  183.334377][T11263] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  183.342370][T11265] EXT4-fs: Ignoring removed nobh option
[  183.350639][T11263] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  183.364276][T11263] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  183.364695][T11265] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  183.385497][T11265] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #11: comm syz.3.2967: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  183.386087][T11263] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  183.409145][T11265] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2967: couldn't read orphan inode 11 (err -117)
[  183.484397][T11270] loop3: detected capacity change from 0 to 512
[  183.514500][T11270] ext4 filesystem being mounted at /545/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  183.609633][T11281] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2972'.
[  183.626479][T11281] bridge0: port 4(batadv3) entered blocking state
[  183.633410][T11281] bridge0: port 4(batadv3) entered disabled state
[  183.644371][T11281] batadv3: entered allmulticast mode
[  183.650540][T11281] batadv3: entered promiscuous mode
[  183.723781][T11286] loop3: detected capacity change from 0 to 512
[  183.739350][T11286] ext4 filesystem being mounted at /549/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  183.866898][T11290] loop3: detected capacity change from 0 to 164
[  183.883771][T11290] ISOFS: unable to read i-node block
[  183.889144][T11290] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  184.007564][T11294] netlink: 'syz.3.2976': attribute type 5 has an invalid length.
[  184.032454][T11294] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2976'.
[  184.224442][   T28] batman_adv: batadv3: No IGMP Querier present - multicast optimizations disabled
[  184.233713][   T28] batman_adv: batadv3: No MLD Querier present - multicast optimizations disabled
[  184.414080][T11298] loop4: detected capacity change from 0 to 1024
[  184.430302][T11298] EXT4-fs: Ignoring removed nobh option
[  184.446759][T11298] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  184.468603][T11298] EXT4-fs error (device loop4): ext4_ext_check_inode:524: inode #11: comm syz.4.2978: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  184.511285][T11298] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.2978: couldn't read orphan inode 11 (err -117)
[  184.922045][T11328] loop0: detected capacity change from 0 to 1024
[  184.931698][T11328] EXT4-fs: Ignoring removed nobh option
[  184.939364][T11328] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  184.963668][T11328] EXT4-fs error (device loop0): ext4_ext_check_inode:524: inode #11: comm syz.0.2992: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  184.986381][T11328] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.2992: couldn't read orphan inode 11 (err -117)
[  185.071010][T11332] loop4: detected capacity change from 0 to 164
[  185.078312][T11332] ISOFS: unable to read i-node block
[  185.083723][T11332] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  185.097924][T11334] loop0: detected capacity change from 0 to 164
[  185.123922][T11334] ISOFS: unable to read i-node block
[  185.129357][T11334] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  185.327047][T11243] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  185.340698][T11349] netlink: 'syz.1.2999': attribute type 5 has an invalid length.
[  185.354992][T11348] loop4: detected capacity change from 0 to 512
[  185.365687][T11243] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  185.382052][T11243] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  185.388672][T11349] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2999'.
[  185.394927][T11243] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  185.412916][T11348] ext4 filesystem being mounted at /592/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  185.693225][T11373] loop2: detected capacity change from 0 to 512
[  185.731998][T11373] ext4 filesystem being mounted at /67/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  185.747637][T11371] block device autoloading is deprecated and will be removed.
[  185.747687][T11371] bio_check_eod: 9462 callbacks suppressed
[  185.747700][T11371] syz.0.2998: attempt to access beyond end of device
[  185.747700][T11371] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  185.958063][   T29] kauditd_printk_skb: 186 callbacks suppressed
[  185.958080][   T29] audit: type=1326 audit(1738555916.278:17428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.2.3007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fdc61cda9 code=0x7ffc0000
[  185.958120][   T29] audit: type=1326 audit(1738555916.278:17429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.2.3007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fdc61cda9 code=0x7ffc0000
[  185.967871][   T29] audit: type=1326 audit(1738555916.288:17430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.2.3007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0fdc61cda9 code=0x7ffc0000
[  185.967926][   T29] audit: type=1326 audit(1738555916.288:17431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.2.3007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fdc61cda9 code=0x7ffc0000
[  185.967965][   T29] audit: type=1326 audit(1738555916.288:17432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.2.3007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fdc61cda9 code=0x7ffc0000
[  185.976842][   T29] audit: type=1326 audit(1738555916.288:17433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.2.3007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0fdc61cda9 code=0x7ffc0000
[  185.976885][   T29] audit: type=1326 audit(1738555916.288:17434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.2.3007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fdc61cda9 code=0x7ffc0000
[  185.976919][   T29] audit: type=1326 audit(1738555916.288:17435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.2.3007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fdc61cda9 code=0x7ffc0000
[  185.976983][   T29] audit: type=1326 audit(1738555916.288:17436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.2.3007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0fdc61cda9 code=0x7ffc0000
[  185.977018][   T29] audit: type=1326 audit(1738555916.288:17437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.2.3007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fdc61cda9 code=0x7ffc0000
[  186.217543][T11352] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2998'.
[  186.320984][T11352] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2998'.
[  186.321005][T11352] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2998'.
[  186.321698][T11386] loop3: detected capacity change from 0 to 512
[  186.322010][T11386] EXT4-fs: Ignoring removed oldalloc option
[  186.332128][T11386] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #13: comm syz.3.3006: attempt to clear invalid blocks 1 len 1
[  186.332528][T11386] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.3006: bg 0: block 343: padding at end of block bitmap is not set
[  186.332825][T11386] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  186.332999][T11386] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.3006: invalid indirect mapped block 1819239214 (level 0)
[  186.333198][T11386] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.3006: invalid indirect mapped block 1819239214 (level 1)
[  186.333615][T11386] EXT4-fs (loop3): 1 truncate cleaned up
[  186.364730][T11352] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2998'.
[  186.399606][T11397] loop1: detected capacity change from 0 to 512
[  186.408076][T11352] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2998'.
[  186.408097][T11352] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2998'.
[  186.507036][T11401] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.516431][T11397] ext4 filesystem being mounted at /596/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  186.523968][T11397] EXT4-fs (loop1): shut down requested (2)
[  186.549260][T11401] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.585402][T11406] loop3: detected capacity change from 0 to 1024
[  186.602572][T11406] EXT4-fs: Ignoring removed nobh option
[  186.613219][T11401] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.642152][T11397] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  186.647492][T11406] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  186.661651][T11397] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  186.670970][T11397] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  186.685103][T11406] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #11: comm syz.3.3012: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  186.705648][T11406] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.3012: couldn't read orphan inode 11 (err -117)
[  186.719078][T11397] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  186.743280][T11401] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.758365][T11411] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.829003][T11411] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.869604][T11411] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.919721][T11411] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.989459][T11411] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  187.005660][T11411] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  187.021296][T11411] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  187.035121][T11411] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  187.400336][T11426] lo speed is unknown, defaulting to 1000
[  187.515271][T11439] loop1: detected capacity change from 0 to 512
[  187.522555][T11439] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  187.540126][T11439] EXT4-fs (loop1): 1 truncate cleaned up
[  187.560807][T11426] chnl_net:caif_netlink_parms(): no params data found
[  187.593735][T11447] loop1: detected capacity change from 0 to 512
[  187.604142][T11447] EXT4-fs error (device loop1): ext4_init_orphan_info:586: comm syz.1.3024: inode #0: comm syz.1.3024: iget: illegal inode #
[  187.617835][T11447] EXT4-fs (loop1): Remounting filesystem read-only
[  187.624420][T11447] EXT4-fs (loop1): get orphan inode failed
[  187.630544][T11447] EXT4-fs (loop1): mount failed
[  187.660345][T11452] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3026'.
[  187.680615][T11452] bridge0: port 5(batadv4) entered blocking state
[  187.687291][T11452] bridge0: port 5(batadv4) entered disabled state
[  187.694370][T11452] batadv4: entered allmulticast mode
[  187.700335][T11452] batadv4: entered promiscuous mode
[  187.723268][T11426] bridge0: port 1(bridge_slave_0) entered blocking state
[  187.730511][T11426] bridge0: port 1(bridge_slave_0) entered disabled state
[  187.749622][T11426] bridge_slave_0: entered allmulticast mode
[  187.756648][T11426] bridge_slave_0: entered promiscuous mode
[  187.763959][T11462] netlink: 76 bytes leftover after parsing attributes in process `syz.0.3027'.
[  187.764254][T11426] bridge0: port 2(bridge_slave_1) entered blocking state
[  187.780191][T11426] bridge0: port 2(bridge_slave_1) entered disabled state
[  187.789862][T11426] bridge_slave_1: entered allmulticast mode
[  187.796373][T11426] bridge_slave_1: entered promiscuous mode
[  187.804238][T11455] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3027'.
[  187.828345][T11426] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  187.838894][T11426] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  187.850491][T11461] loop1: detected capacity change from 0 to 164
[  187.858148][T11461] ISOFS: unable to read i-node block
[  187.863524][T11461] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  187.906572][T11469] netlink: 44 bytes leftover after parsing attributes in process `syz.3.3033'.
[  187.915614][T11469] netlink: 'syz.3.3033': attribute type 6 has an invalid length.
[  187.923399][T11469] netlink: 'syz.3.3033': attribute type 5 has an invalid length.
[  187.941081][T11426] team0: Port device team_slave_0 added
[  187.949955][T11426] team0: Port device team_slave_1 added
[  187.963109][T11473] loop1: detected capacity change from 0 to 512
[  187.976976][T11473] EXT4-fs error (device loop1): ext4_init_orphan_info:586: comm syz.1.3035: inode #0: comm syz.1.3035: iget: illegal inode #
[  187.995233][T11473] EXT4-fs (loop1): Remounting filesystem read-only
[  188.001870][T11473] EXT4-fs (loop1): get orphan inode failed
[  188.014293][T11476] netlink: 'syz.0.3034': attribute type 5 has an invalid length.
[  188.030456][T11469] loop3: detected capacity change from 0 to 2048
[  188.050259][T11426] batman_adv: batadv0: Adding interface: batadv_slave_0
[  188.057302][T11426] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  188.083974][T11426] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  188.102160][T11473] EXT4-fs (loop1): mount failed
[  188.146447][T11426] batman_adv: batadv0: Adding interface: batadv_slave_1
[  188.153606][T11426] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  188.179678][T11426] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  188.201284][   T28] batman_adv: batadv4: No IGMP Querier present - multicast optimizations disabled
[  188.210660][   T28] batman_adv: batadv4: No MLD Querier present - multicast optimizations disabled
[  188.258548][T11426] hsr_slave_0: entered promiscuous mode
[  188.270468][T11426] hsr_slave_1: entered promiscuous mode
[  188.289034][T11426] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  188.301494][T11426] Cannot create hsr debugfs directory
[  188.414755][T11493] loop1: detected capacity change from 0 to 164
[  188.424455][T11493] ISOFS: unable to read i-node block
[  188.429877][T11493] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  188.456874][T11426] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.548507][T11426] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.599096][T11426] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.688312][T11426] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.765007][T11426] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  188.781923][T11426] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  188.798529][T11426] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  188.809254][T11426] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  188.864182][T11523] loop3: detected capacity change from 0 to 764
[  188.880970][T11523] rock: directory entry would overflow storage
[  188.887235][T11523] rock: sig=0x4f50, size=4, remaining=3
[  188.892851][T11523] iso9660: Corrupted directory entry in block 6 of inode 1792
[  188.896859][T11426] 8021q: adding VLAN 0 to HW filter on device bond0
[  188.919153][T11426] 8021q: adding VLAN 0 to HW filter on device team0
[  188.935844][T11523] lo speed is unknown, defaulting to 1000
[  188.938876][T11426] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  188.952119][T11426] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  188.964468][ T3418] bridge0: port 1(bridge_slave_0) entered blocking state
[  188.971553][ T3418] bridge0: port 1(bridge_slave_0) entered forwarding state
[  188.979571][T11526] loop0: detected capacity change from 0 to 164
[  188.994011][T11526] ISOFS: unable to read i-node block
[  188.999358][T11526] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  188.999986][ T3418] bridge0: port 2(bridge_slave_1) entered blocking state
[  189.008565][T11526] ==================================================================
[  189.015548][ T3418] bridge0: port 2(bridge_slave_1) entered forwarding state
[  189.023602][T11526] BUG: KCSAN: data-race in console_flush_all / console_flush_all
[  189.038539][T11526] 
[  189.040872][T11526] write to 0xffffffff86819ea8 of 8 bytes by task 3418 on cpu 1:
[  189.048516][T11526]  console_flush_all+0x395/0x770
[  189.053483][T11526]  console_unlock+0xab/0x330
[  189.058134][T11526]  vprintk_emit+0x3f4/0x680
[  189.062679][T11526]  vprintk_default+0x26/0x30
[  189.067312][T11526]  vprintk+0x1d/0x30
[  189.071233][T11526]  _printk+0x7a/0xa0
[  189.075164][T11526]  br_set_state+0x290/0x390
[  189.079707][T11526]  br_stp_enable_port+0x5b/0x110
[  189.084674][T11526]  br_port_carrier_check+0x1fb/0x220
[  189.089995][T11526]  br_device_event+0x3d9/0x5d0
[  189.094781][T11526]  raw_notifier_call_chain+0x6f/0x1d0
[  189.100189][T11526]  call_netdevice_notifiers_info+0xae/0x100
[  189.106119][T11526]  netdev_state_change+0x80/0xc0
[  189.111100][T11526]  linkwatch_do_dev+0xb9/0xf0
[  189.115805][T11526]  __linkwatch_run_queue+0x284/0x510
[  189.121130][T11526]  linkwatch_event+0x40/0x50
[  189.122649][T11426] 8021q: adding VLAN 0 to HW filter on device batadv0
[  189.125727][T11526]  process_scheduled_works+0x483/0x9a0
[  189.138009][T11526]  worker_thread+0x51d/0x6f0
[  189.142635][T11526]  kthread+0x4ae/0x520
[  189.146733][T11526]  ret_from_fork+0x4b/0x60
[  189.151171][T11526]  ret_from_fork_asm+0x1a/0x30
[  189.155973][T11526] 
[  189.158306][T11526] read to 0xffffffff86819ea8 of 8 bytes by task 11526 on cpu 0:
[  189.165951][T11526]  console_flush_all+0x57e/0x770
[  189.170909][T11526]  console_unlock+0xab/0x330
[  189.175543][T11526]  vprintk_emit+0x3f4/0x680
[  189.180084][T11526]  vprintk_default+0x26/0x30
[  189.184719][T11526]  vprintk+0x1d/0x30
[  189.188655][T11526]  _printk+0x7a/0xa0
[  189.192556][T11526]  isofs_fill_super+0x11d2/0x12b0
[  189.197604][T11526]  get_tree_bdev_flags+0x29f/0x310
[  189.202715][T11526]  get_tree_bdev+0x1f/0x30
[  189.207143][T11526]  isofs_get_tree+0x1c/0x30
[  189.211673][T11526]  vfs_get_tree+0x56/0x1e0
[  189.216114][T11526]  do_new_mount+0x227/0x690
[  189.220619][T11526]  path_mount+0x49b/0xb30
[  189.224947][T11526]  __se_sys_mount+0x27f/0x2d0
[  189.229663][T11526]  __x64_sys_mount+0x67/0x80
[  189.234255][T11526]  x64_sys_call+0x2c84/0x2dc0
[  189.238944][T11526]  do_syscall_64+0xc9/0x1c0
[  189.243560][T11526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.249455][T11526] 
[  189.251772][T11526] value changed: 0x000000000000193b -> 0x000000000000193c
[  189.258879][T11526] 
[  189.261255][T11526] Reported by Kernel Concurrency Sanitizer on:
[  189.267405][T11526] CPU: 0 UID: 0 PID: 11526 Comm: syz.0.3055 Not tainted 6.13.0-syzkaller-10033-gd79bc8f79baa #0
[  189.277985][T11526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  189.288054][T11526] ==================================================================
[  189.307950][T11527] lo speed is unknown, defaulting to 1000
[  189.335095][T11523] usb usb8: usbfs: process 11523 (syz.3.3054) did not claim interface 0 before use
[  189.359018][T11523] vhci_hcd: default hub control req: 010b v0000 i0000 l0
[  189.479044][T11426] veth0_vlan: entered promiscuous mode
[  189.490239][T11426] veth1_vlan: entered promiscuous mode
[  189.514626][T11426] veth0_macvtap: entered promiscuous mode
[  189.521989][T11426] veth1_macvtap: entered promiscuous mode
[  189.531964][T11426] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  189.542526][T11426] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  189.553367][T11426] batman_adv: batadv0: Interface activated: batadv_slave_0
[  189.561898][T11426] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  189.572440][T11426] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  189.583591][T11426] batman_adv: batadv0: Interface activated: batadv_slave_1
[  189.599593][T11426] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  189.608382][T11426] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  189.617098][T11426] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  189.626048][T11426] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  189.983188][T11401] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  189.993944][T11401] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  190.005361][T11401] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  190.016210][T11401] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0