last executing test programs:

11.501406993s ago: executing program 2 (id=543):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x2000480, &(0x7f0000000100), 0x5, 0x764, &(0x7f0000000f80)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(r0, &(0x7f0000000200)=0x20000000, 0xf000)

11.357758625s ago: executing program 2 (id=546):
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0xa, 0x2, 0x8, 0x8}, 0x48)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
unshare(0x42000000)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0, r4}, 0x10)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000140)="5500000018007f5f00fe01b2a4a2809302060000ff41fd01020400000a00120002002800000019002dfd7fffffff0022de1330d54400009b84136ef75afb83de066a5900e1baac968300000000f2ff000001000000", 0x55}], 0x1, 0x0, 0x0, 0x7a000000}, 0x0)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

10.355661639s ago: executing program 2 (id=571):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x11, 0x800000003, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="4400000010000304000000000000000000000c00", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b0001006970766c616e00000400328008000500", @ANYRES32=r0, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x44}}, 0x0)

10.294126534s ago: executing program 2 (id=574):
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
set_mempolicy(0x3, &(0x7f00000003c0)=0x3, 0x7)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
kexec_load(0x0, 0x1, &(0x7f0000000480)=[{0x0, 0x0, 0x0, 0x1000000}], 0x0)
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'sit0\x00'})
sendmsg$nl_route(r0, &(0x7f0000000000)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[], 0x200}, 0x1, 0x0, 0x0, 0x20000005}, 0x20000000)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0}, './file0\x00'})

9.283497779s ago: executing program 2 (id=591):
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$packet(0x11, 0x0, 0x300)
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000d00)=[{{&(0x7f0000000000)={0x2, 0x4e24, @empty=0xfc}, 0x10, 0x0}}], 0x1, 0x20000080)

9.243380292s ago: executing program 2 (id=592):
io_setup(0x9, &(0x7f0000000b80)=<r0=>0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00102}]})
io_submit(r0, 0x1, &(0x7f00000002c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}]) (async)
r2 = eventfd(0x10001)
io_cancel(r0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x2, 0x72, 0xffffffffffffffff, &(0x7f0000000700)="f3ffd0b18045904ae1959eb98f2afe943518bd306793c106bd60fd36cb10746636447d16d0a9406af51f8cb80f1e61f8da9dbb8a9b6b9c584f783c4aba3e092fb43ccacd3e048aaf57c9d047fd209a4a79ab822bc74ca1e27f624cd20a66f43f20acb0e6341b2a426c1490cf9b2c02b4120dc068", 0x74, 0x5, 0x0, 0x3, r2}, &(0x7f00000007c0)) (async)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000800)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x12408, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff8000, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00'}) (async, rerun: 32)
ptrace(0x10, 0x1) (async, rerun: 32)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000140)=<r3=>0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x0, 0x0, 0x0, 0x8000, 0x200, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) (async, rerun: 64)
recvmmsg(r5, 0x0, 0x0, 0x2, 0x0) (rerun: 64)
waitid(0x0, 0x0, 0x0, 0x4, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x0, 0x0, 0x0}, 0x90) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
bpf$ITER_CREATE(0xb, 0x0, 0x0) (async)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) (async)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
mkdirat$cgroup(r6, &(0x7f00000000c0)='syz0\x00', 0x1ff) (async)
r7 = openat$cgroup_devices(r6, &(0x7f0000000000)='devices.deny\x00', 0x2, 0x0)
write$cgroup_devices(r7, &(0x7f0000000100)={'b', ' *:* ', 'wm\x00'}, 0x9) (async)
ptrace$peeksig(0x4209, r3, &(0x7f0000000180)={0x51a459f8, 0x0, 0x6}, &(0x7f00000001c0)=[{}, {}, {}, {}, {}, {}]) (async, rerun: 64)
wait4(0xffffffffffffffff, 0x0, 0x0, 0x0) (rerun: 64)

6.466262906s ago: executing program 0 (id=622):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1004400, &(0x7f0000001940), 0x6, 0x588, &(0x7f0000000300)="$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")
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, 0x0, 0x0)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8983, &(0x7f0000000080)={0x2, 'wlan0\x00', {0x7}, 0x5})
fchdir(0xffffffffffffffff)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x1008002, &(0x7f0000000840), 0x1, 0x5e0, &(0x7f0000001200)="$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")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
socket$can_bcm(0x1d, 0x2, 0x2)
syz_open_dev$evdev(&(0x7f0000000180), 0x3, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="180100001c0000000000000000100000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f0000000780)='netlink_extack\x00', r3}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket(0x1, 0x803, 0x0)
epoll_create(0x3ff)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f00000000c0)={'wg2\x00', <r4=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@bloom_filter={0x1e, 0x8, 0xab, 0x7, 0x1900, r2, 0xf1d3, '\x00', r4, r2, 0x5, 0x2, 0x3, 0xb}, 0x48)
socket$inet6(0xa, 0x2, 0x0)
syz_open_dev$usbfs(&(0x7f00000003c0), 0x77, 0x101301)
r5 = socket$kcm(0xa, 0x2, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x0, 0x0, 0x0, 0x0, 0x0, r6}, 0x48)
ioctl$sock_kcm_SIOCKCMCLONE(r5, 0x8916, &(0x7f0000000000))
syz_read_part_table(0x104f, &(0x7f0000001080)="$eJzsz7ENwjAABMAPsSCpIjEJHQUFBTMwCQMABcuwZJAhpKJFCOmu8Ev+d+HwW/vDIiXLoU1KWdWbph7bV3tOPy+v5RnjmF2bDOu56KY3H1yarsbm1E/D5Na+y7E53r/xJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4N48AAAD//+w8CB8=")

6.283187482s ago: executing program 0 (id=624):
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x2000480, &(0x7f0000004080), 0x1, 0x76e, &(0x7f00000009c0)="$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")
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
perf_event_open(&(0x7f0000000780)={0x2, 0x80, 0xb2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.swap.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
ftruncate(r1, 0xc17a)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x64000}], 0x1, 0x7c00, 0x3000, 0x3)

5.7116329s ago: executing program 0 (id=628):
r0 = socket$inet(0x2, 0x2, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[], 0x3c}}, 0x0)
socket$inet6(0xa, 0x1, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000180)="5c00000013006bcd9e3fe3dc4e48aa31086b8703340000001f00000000000000040014000d000a00140000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f6", 0x5a}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x2200054, &(0x7f0000000180), 0x4, 0x244, &(0x7f0000000480)="$eJzs3TFoE3scB/DfJU372oZH33vLgwfvPRARLRTdBAfrolCQIg6CChURJ2mF2uLWOrk46KzSyUXEzeooLsVFEZyqdKiLoMXB0kGHSHJpbW3F0sSc9D4fuCR397/73ZH7/i8E7i6A3OqJiP6IKEZEb0SUIiJZ3eD/dOipj051zgxFVCrHPyS1dul4anm57oiYjIj90b6ymvHpU/NLs0d2XRsr7bwzfbKzRbu3xsL83NHF24NXHwzsG3/+8t1gEv1Rrs9bvR/NlGwwrS2J+PNnFPtFJG1ZbwGbcezy/VfV3P8VETtq+S9FIdIv7/po+5NS7Ln1vWVvvH/xTyu3FWi+SqVUPQdOVoDcKUREOZJCX0SknwuFvr70N/zrYlfhwsjopd7zI2PD57LuqYBmKUfMHX7U8bD7m/y/Lab5B7avcvpXX81iMdttAVqrev7vPTOxO+Qfckf+Ybtp33RL+Yf8kn/IL/mH/JJ/yC/5h/ySf8gv+Yf8kn/Ir9X5BwDypdKxteuGl29s0+zrkYHWybr/AQAAAAAAAAAAAAAAAAAA1pvqnBlaHlpV8+nNiIVDEdG2Uf1i7XnEEb/VXrs+JtVmK5J0sYac/q/BFTToXsZXX//+Jtv6z/7Ntv7EcMTklYhYqk9Yc/wl9eNv6/74wfzS2QYLNOjAiWzrf76bbf2B2YjH1f5n70b9TyH+rr2v738OpvdP+/oA5S26+KnBFQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANAyXwIAAP//VeRflA==")
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r1, &(0x7f0000001fc0)=""/184, 0xb8)
getdents(r1, 0x0, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r3=>0x0})
r4 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r4, &(0x7f0000000000), 0x10)
sendmsg$can_bcm(r4, &(0x7f0000000480)={&(0x7f0000000080)={0x1d, r3}, 0x10, &(0x7f0000000400)={&(0x7f0000000f40)=ANY=[@ANYBLOB="0100cd6f000000000000000000000000b2901b0bc2b27e226cf1c9a0800b2cd6223c94db8b0796ab307af858a6ef4bad68a4da6e9281b6b5e7682e3ff48465dcc979d9598c78d1025fe383558f7d29c5b369e73114f3f735378a39c79407930d1bb842278d281fb2bada9c44f5a518530deceec5393360cc60db841ac790a31f0f26d2809377c4f027a1be805351fd70876854bcc4383e7002769318b242aa768f53200ffc0be215390df772c20f099a8e1e1fe18478e916f4c255d3d83f439616136d8c66bd6827e9c2bffcfdd88883d98d87006e10097b7c98d389", @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRESDEC=r1], 0x48}}, 0x0)
perf_event_open(&(0x7f0000000240)={0x4, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x20000000000000}, 0x0, 0x0, r1, 0x0)
sendmmsg$sock(r4, 0x0, 0xfffffffffffffe94, 0x20040000)
r5 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r5, &(0x7f0000000080)={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x1c)
sendmmsg$inet(r5, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000800)="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", 0x2f5}, {&(0x7f0000000bc0)="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", 0x25a}, {&(0x7f00000005c0)="05437c98b91b1455046f57b5fc913814bde2bbeac2104eaea9c9d01a7838d859007067c10aa7352abbdf98e9bf033a4784a11e84639d", 0x36}], 0x3, 0x0, 0x0, 0x900}}], 0x2, 0x0)
sendmsg$can_bcm(r4, &(0x7f00000005c0)={&(0x7f0000000780)={0x1d, r3}, 0x10, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYRES8=r0, @ANYRES64=0x0, @ANYRES64=0xea60, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="00000000010000c6e83912ce2150a734aa4b8a2e0958c529b865c0000000000000000000"], 0x48}, 0x2}, 0x0)
ioctl$MON_IOCX_GETX(r1, 0x4018920a, &(0x7f0000000740)={&(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000e40)=""/234, 0xde})
clock_gettime(0x0, &(0x7f00000002c0)={0x0, <r6=>0x0})
sendmsg$can_bcm(r4, &(0x7f00000003c0)={&(0x7f0000000200)={0x1d, r3}, 0x10, &(0x7f0000000380)={&(0x7f0000000b00)=ANY=[@ANYBLOB="06000000400900000000008000000000", @ANYRES8=0x0, @ANYRES64=0x0, @ANYRES64=r0, @ANYRES64=r6/1000+10000, @ANYRESOCT=r5], 0x80}, 0x1, 0x0, 0x0, 0x8000}, 0x24000004)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0xa8, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f00000007c0), 0x9}, 0xf7a1abc51f463f30, 0xfffffffffffffffb, 0x0, 0x4, 0x0, 0xef, 0x0, 0x0, 0x3}, 0x0, 0x5, 0xffffffffffffffff, 0xf)
ioperm(0x10000, 0xf1, 0xd)
select(0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={0x0, 0x2710})
r7 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x100000e, 0x20010, r7, 0x16ce4000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
readv(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0)

5.490884678s ago: executing program 0 (id=634):
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000200)={[{@journal_dev}, {@nouid32}]}, 0xfe, 0x254, &(0x7f0000000840)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)
write$binfmt_script(r1, &(0x7f0000000240), 0xfecc)
open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r2, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef9cc093fce47d85272036dc78388e3dc177e9b496", "f28359738e229a4c66810000000000d3000dd602000000005cf7ce1fc986bcdf"})
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000040)={[{0x2b, 'freezer'}, {0x2b, 'rdma'}, {0x2d, 'hugetlb'}]}, 0x18) (fail_nth: 6)

4.814830545s ago: executing program 0 (id=643):
syz_open_dev$evdev(0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000180)={0x2, 0x1}, 0x4)
quotactl$Q_SETQUOTA(0xffffffff80000801, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f00000001c0)={'batadv_slave_1\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newlink={0x44, 0x10, 0x609, 0xfff0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88a8ffad}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_MODE={0x5, 0x1, 0x6}]}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0)

4.571096596s ago: executing program 1 (id=649):
r0 = syz_io_uring_setup(0xd19, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
unshare(0x20000400)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r3, &(0x7f0000000080), 0x1c)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x1, r3, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0}})
io_uring_enter(r0, 0x5b43, 0x0, 0x0, 0x0, 0x0)
r4 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r4, 0x29, 0xcc, &(0x7f0000000000)={{0xa, 0x0, 0x0, @local}, {0xa, 0x0, 0x0, @mcast1}}, 0x5c)
ioctl$SIOCGETSGCNT(r4, 0x89e1, &(0x7f0000000000)={@initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0x25}})
shutdown(r3, 0x1)

4.570549226s ago: executing program 1 (id=650):
r0 = socket$inet(0x2, 0x3, 0x100)
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000500)=0x8, 0x4)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local}, 0x3c)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg$inet(r0, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x810}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000001980)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}}}], 0x57}}, {{&(0x7f00000002c0)={0x2, 0x4e23, @multicast2}, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000640)="c9a6b6973a4429368261e415d1941adb852820d1dfee5597e19602cc27ed6670109632c1311c693ce2cbc3bdf2b0228c3e2356fb533346a6a74b69ac9829f4076b29d0c20444502a1b96c4c429f72145626389ed25450beb4852933182c5861964e74d4f8174c492f0183044422bacab384325a914c0668b171ea345aeae64d1ccfe894e355f679cb9b124aed3ff3942b34e406da0ae08f9a45b60b90959bcf1c6cebc88e492a04c58c040b435e375b87615"}, {&(0x7f0000000980)="ee1c3a428ae942192433b25fdbd2cc4d53e7dc37f06df2d2b1db47b7f08302e1fdcb3fbc0bbbe5fc618420c5b9d8c2ece18f8c2bb40977bf56b5251c1ad369c81feb847363773d426713eb3861a704bb3ba09727a3ad602c616a429b543aeb7952893d94048a2ce6f32a41a94fdaaae124e33e9ccc6a3f0151fa312d80bd988ed879972945d5abb420eac4b4a84b97badbd4"}], 0x0, &(0x7f00000007c0)=[@ip_retopts={{0x0, 0x0, 0x7, {[@timestamp_addr={0x44, 0x0, 0xd2, 0x1, 0x5, [{@rand_addr=0x64010100, 0xfffffff8}, {@empty, 0x3}]}, @generic={0x94, 0x0, "4af3f1864232"}, @lsrr={0x83, 0x0, 0xaa, [@rand_addr=0x64010102, @broadcast, @broadcast, @multicast2]}, @end, @timestamp={0x44, 0x0, 0xc8, 0x0, 0x8, [0xfffffffa, 0x80, 0x4, 0x9, 0x32d7, 0x3, 0xfffffffa, 0x4, 0x8]}]}}}, @ip_tos_int={{0x0, 0x0, 0x1, 0x8ca0}}, @ip_tos_u8, @ip_ttl, @ip_tos_u8={{0x0, 0x0, 0x1, 0xc}}]}}], 0x2, 0x0)

4.570197546s ago: executing program 1 (id=652):
syz_emit_ethernet(0x3e, &(0x7f00000009c0)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaaaa86dd60f4adf700082c00fe800000000000004000000000000000ff020000000000000000000000000001810090"], 0x0)

4.567207176s ago: executing program 1 (id=653):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r0, 0x40189429, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="380000002000010000000000000000000a000000"], 0x38}}, 0x0)

4.548438547s ago: executing program 1 (id=654):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f00000010c0)={[{@nobh}, {@noauto_da_alloc}, {@jqfmt_vfsold}, {@data_err_ignore}, {@noquota}, {@dioread_nolock}, {@init_itable_val={'init_itable', 0x3d, 0x85c5}}, {@nojournal_checksum}, {@jqfmt_vfsv1}]}, 0xfe, 0x576, &(0x7f00000024c0)="$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")
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0), 0x105100, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8924, &(0x7f0000000100)={'pimreg1\x00', @broadcast})
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r1)
wait4(0x0, 0xfffffffffffffffd, 0x0, 0x0)
r2 = open(&(0x7f0000000080)='./file0/file0\x00', 0x0, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb86dd6000050000140600fc020000000000000000000000000000ff"], 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x89f1, &(0x7f0000000900)={'ip6tnl0\x00', @random="0600002000"})
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f00000001c0)=0x20000008)

4.477745374s ago: executing program 1 (id=656):
syz_io_uring_setup(0x4076, &(0x7f0000000240)={0x0, 0x0, 0x10100}, &(0x7f0000000380), &(0x7f0000000200))
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='numa_maps\x00')
pread64(r0, &(0x7f00000017c0)=""/4109, 0x100d, 0x1010000)

2.164219128s ago: executing program 3 (id=682):
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={0x60, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @multicast2}}}]}, @CTA_SEQ_ADJ_ORIG={0x4, 0x5}]}, 0x60}}, 0x0)
sendmsg$IPSET_CMD_GET_BYINDEX(r3, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0x34, 0xf, 0x6, 0x401, 0x0, 0x0, {0xa, 0x0, 0x3}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_INDEX={0x6, 0xb, 0x3}, @IPSET_ATTR_INDEX={0x6, 0xb, 0xffffffffffffffff}]}, 0x34}, 0x1, 0x0, 0x0, 0x4}, 0x4000010)

1.564550069s ago: executing program 4 (id=685):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
write$vga_arbiter(0xffffffffffffffff, &(0x7f0000000000)=@unlock_all, 0x7)
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000), 0x12, &(0x7f0000000080)={0x0, 0x2}, 0x8}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x40080)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000340)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000280)=0x6b)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000007c0)=ANY=[@ANYBLOB="3800000010000507000000000004000000000000", @ANYRES32, @ANYBLOB="03000016010000001800120008000100736974000c0002000800030036"], 0x38}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000c80)=ANY=[@ANYBLOB="50000000100039040000000000000000000003e4", @ANYRES32=r1, @ANYBLOB="00000000000000003000128008000100736974002400028008000300e0000002050009002905000000001000ff0100000800140005000000"], 0x50}}, 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000500)=[@in={0x2, 0x0, @private=0xa010102}]}, &(0x7f0000000140)=0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x9, 0x8, 0x0)
get_mempolicy(0x0, 0x0, 0x0, &(0x7f0000240000/0x1000)=nil, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000ec0), 0xffffffffffffffff)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r4=>0x0})
r5 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r5, &(0x7f0000000080)={0x1d, r4}, 0x18)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2010480, &(0x7f0000000280), 0x45, 0x779, &(0x7f00000007c0)="$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")
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
r6 = inotify_init1(0x0)
inotify_add_watch(r6, &(0x7f0000000000)='.\x00', 0x50007a2)
r7 = openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x0, 0x0)
getdents64(r7, &(0x7f0000000400)=""/258, 0x102)
sendmsg$can_j1939(r5, &(0x7f00000001c0)={&(0x7f0000000040)={0x1d, 0x0, 0x0, {0x1}}, 0x18, &(0x7f0000000180)={&(0x7f00000000c0)="92", 0x1}, 0x1, 0x0, 0x0, 0x20000010}, 0x80fa)
socket$nl_route(0x10, 0x3, 0x0)
dup2(r3, r5)
socket$can_j1939(0x1d, 0x2, 0x7)

1.303572131s ago: executing program 3 (id=686):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000500)={'bond_slave_1\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="340000151400230300000008000100000a000000", @ANYRES32=r1, @ANYBLOB="080008000004000014000100ff"], 0x34}}, 0x0)

1.284949842s ago: executing program 3 (id=687):
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r0)
sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES16=r1, @ANYBLOB="010000000000000000000a000000380003801400020076657468305f766972745f7769666900060007004e2400000800030000000000080001"], 0x4c}}, 0x0)

1.284581452s ago: executing program 3 (id=688):
socket$inet_sctp(0x2, 0x1, 0x84)
r0 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x0, 0x0}, &(0x7f0000000100)=0x10)
socket$inet_sctp(0x2, 0x1, 0x84)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r1, &(0x7f0000000180)=ANY=[], 0xff2e)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000070000000000f7ffffff00"})
r2 = syz_open_pts(0xffffffffffffffff, 0x0)
r3 = semget$private(0x0, 0x4000000009, 0x0)
semop(r3, &(0x7f0000000400)=[{0x3}, {0x0, 0xffff}], 0x2)
r4 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r6)
r7 = syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x2)
r8 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r8, 0x8933, &(0x7f0000000a00)={'vcan0\x00', <r9=>0x0})
setsockopt$CAN_RAW_LOOPBACK(r8, 0x65, 0x3, &(0x7f0000000080), 0x4)
setsockopt$SO_TIMESTAMPING(r8, 0x1, 0x25, &(0x7f0000000000)=0x3cca, 0x4)
sendmsg$can_raw(r8, &(0x7f0000000340)={&(0x7f0000000280)={0x1d, r9}, 0x10, &(0x7f0000000300)={&(0x7f00000002c0)=@can={{}, 0x0, 0x0, 0x0, 0x0, "d53495ed19ac6f39"}, 0x10}}, 0x0)
r10 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000180), 0x4)
r11 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000440)={0x1b, 0x0, 0x0, 0x8, 0x0, r5, 0x1ff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x2, 0x2c, &(0x7f0000000580)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x460, 0x0, 0x0, 0x0, 0x6}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [@printk={@lx}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1}}, @ldst={0x0, 0x1, 0x3, 0xa, 0x1, 0x8, 0xffffffffffffffff}, @ldst={0x3, 0x0, 0x5, 0x8, 0x7, 0xfffffffffffffffc, 0xffffffffffffffff}, @map_val={0x18, 0xb, 0x2, 0x0, r5, 0x0, 0x0, 0x0, 0xffff}, @call={0x85, 0x0, 0x0, 0x10}, @map_idx={0x18, 0x2, 0x5, 0x0, 0x10}, @initr0={0x18, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x1}, @map_val={0x18, 0x3, 0x2, 0x0, r5, 0x0, 0x0, 0x0, 0x6}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x5, 0x87, &(0x7f00000002c0)=""/135, 0x41000, 0x13, '\x00', r9, 0x20, r10, 0x8, &(0x7f0000000380)={0x6, 0x3}, 0x8, 0x10, &(0x7f00000003c0)={0x2, 0x7, 0x0, 0x8}, 0x10, 0x0, r6, 0xa, &(0x7f0000000700)=[r5, r5, r5, r5, r11, r5, r5], &(0x7f0000000740)=[{0x5, 0x2, 0x2, 0x2}, {0x1, 0x3, 0xa, 0xa}, {0x3, 0x4, 0x9, 0xb}, {0x2, 0x5, 0x7, 0x7}, {0x4, 0x4, 0xf, 0xa}, {0x2, 0x1, 0x2}, {0x3, 0x4, 0xf, 0x8}, {0x5, 0x3, 0x5, 0x2}, {0x4, 0x3, 0xd, 0x3}, {0x0, 0x4, 0x5, 0x2}], 0x10, 0x3}, 0x90)
r12 = dup(r7)
ioctl$USBDEVFS_CONTROL(r12, 0xc0185500, &(0x7f0000000240)={0x80, 0x6, 0xf00, 0x1, 0x0, 0xffffffff, 0x0})
semop(r3, &(0x7f0000000140)=[{0x0, 0x4}], 0x1)
r13 = dup3(r2, r1, 0x0)
ioctl$TIOCSTI(r13, 0x5412, &(0x7f0000000000)=0x12)
r14 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r14, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="540000001000210400"/20, @ANYRES32=0x0, @ANYBLOB="a5bfa88800000000240012800b00010067656e6576650000140002800800010002000000050004008000000008000500", @ANYRES32=0x0, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB="28e4802ac57fd0f6c0e6840571281f7c1594a248e7df6d2ffaa3205e4d6077e591be41dd288a08000628fa6f0098f10bab66b17d0ce20119a342954fea8e65dd"], 0x54}}, 0x0)

666.446844ms ago: executing program 4 (id=689):
perf_event_open$cgroup(&(0x7f00000003c0)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
socket$kcm(0x2b, 0x1, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0xde, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000040)="1e", 0x1}], 0x1}, 0x0)
recvmsg(r1, &(0x7f0000000680)={&(0x7f00000001c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r2=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, 0x0}, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x5760, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_CQM(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x2, &(0x7f0000000000)=ANY=[@ANYBLOB="85001000bc0000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x90)
syz_emit_ethernet(0x66, &(0x7f0000000780)=ANY=[], 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000002700)=@newtaction={0xeb0, 0x30, 0x25, 0x0, 0x0, {}, [{0xe9c, 0x1, [@m_pedit={0xe98, 0x1, 0x0, 0x0, {{0xa}, {0xe6c, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x2}, [{}, {}, {}, {}, {0x0, 0xfffff000}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xc}, {}, {}, {}, {}, {}, {}, {}, {}, {0xfffffffd}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0xfffffffd}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {0x0, 0x0, 0xffffffff}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, {}, {}, {}, {}, {}, {}, {}, {0xffffffff}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x81}, {}, {}, {}, {}, {}, {}, {0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x40000}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x10001}, {}, {}, {}, {0x8, 0x0, 0x0, 0x0, 0x2000000}, {0x0, 0xfffffffb}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x4}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {0x0, 0x1}]}}, @TCA_PEDIT_KEYS_EX={0x48, 0x5, 0x0, 0x1, [{0x24, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}]}, {0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}]}, {0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}]}]}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xeb0}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'wlan1\x00'})
sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x15}, 0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000180)='veth1\x00', 0x10)
r5 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r5, 0x29, 0x36, &(0x7f00000005c0)=ANY=[], 0x8)
connect$inet6(r5, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4}, 0x1c)
setsockopt$inet6_IPV6_DSTOPTS(r5, 0x29, 0x6, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001480)=ANY=[@ANYBLOB], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x90)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
write$cgroup_int(r6, &(0x7f0000000000), 0xffffff6a)
ioctl$FS_IOC_RESVSP(r6, 0x4030582b, &(0x7f0000000300)={0x1100, 0x0, 0x0, 0x2a40})
socket$kcm(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
close(r8)
recvmsg$unix(r7, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[@rights], 0x18}, 0x0)

592.561501ms ago: executing program 4 (id=690):
socket$nl_route(0x10, 0x3, 0x0)
syz_io_uring_setup(0x16d2, &(0x7f0000000080)={0x0, 0x80000, 0x40}, 0x0, &(0x7f0000000140))
close(0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
fsopen(0x0, 0x0)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x989680}}, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
read(r1, &(0x7f00000002c0)=""/200, 0x39) (fail_nth: 31)

356.22839ms ago: executing program 4 (id=691):
io_uring_setup(0x1895, &(0x7f00000002c0)={0x0, 0x3b0a, 0x200})
setfsuid(0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x103a42, 0x0)
copy_file_range(r0, 0x0, r0, 0x0, 0x0, 0x2)
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f0000000200)=ANY=[@ANYBLOB="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"/375], 0x12, 0x9ef, &(0x7f0000000e40)="$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")
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x5c}}, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000080)="b3019c28", 0x4, 0x0, &(0x7f0000000380)={0xa, 0x0, 0x0, @loopback}, 0x1c)
recvmmsg(0xffffffffffffffff, &(0x7f0000000d80)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000e80)=@vsock={0x28, 0x0, 0x0, @host}, 0x80, &(0x7f0000000680)=[{0x0}, {0x0}, {&(0x7f0000000580)=""/245, 0xf5}], 0x3, &(0x7f0000000700)=""/27, 0x1b}}, {{&(0x7f0000000740)=@nfc, 0x80, &(0x7f0000000c00), 0x0, &(0x7f0000000cc0)=""/180, 0xb4}}], 0x3, 0x0, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000001400), 0x3bd081, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f000000cac0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r2, 0xc0105303, &(0x7f0000000180)={0xffffffff, 0x0, 0x0, 'queue1\x00'})
r3 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000003440)={0x0, 0x0, &(0x7f0000003400)={&(0x7f0000000800)=ANY=[@ANYBLOB="bc010000190001000000000000000000fe8000000000000000000000000000aaffffffff00000000000000000000000000000000000000000200000000000000a6672c5079a14156f6fc8f8dd0562e7d6d4cdbc26fd035965d4a97a3549c7d0700db032006978464c271", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004010500ac1414aa000000000000000000000000000000003c00000000000000e000000200000000000000000000000000000000000000000000000000000000000000007f000001000000000000000000000000000000006c00000000000000ffffffff0000000000000000000000000000000004000000020000000000000000000000fc0100000000000000000000000000000000000033000000000000002001000000000000000000000000000100000000000000000000000000000000f7ffffffac1414aa000000000000000000000000000000002b0000000a000000fe80000000000000000000000000000000000000000100"/372], 0x1bc}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000c80)={'lo\x00'})
fallocate(r3, 0x0, 0x0, 0x1000f4)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002b80)=ANY=[@ANYBLOB="b702000000000000bfa30000000000004503000000fefff67a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001000000b7050000340000006a0a00fe00000000850000000b000000b70000004dc50000950000000000000089c81f20273d16b72e060fc5a39261773f04a2082ba8cedf8510e63fb112cf6956e09d1938ef07007e2f6ae30bb808fbfef5204cf822fcff7944a37044d57afbb6cd8d42d50bfa989d2e7947636c864cb5279f227b2c185a3a5e492442c5f9467dd79ba804d4916edfbfebf26daa024bdc88b9f18e48a6616f98c729471fbdddeae80cdbc544618bcebe269fe0539719c3ad8beee3fa1170a6fbd3d4bc6ef37d1465a4321e45d5b1eaf8e11c3493573c3c760c1a9afc0e0122131b7605661fb154260bddba310f11c6b7a611cace958ae0854e9f4b5a258f5f632b9d66cfc5a9cda146c2b2bddc161deed11f81ba3631fd8cf2b1c959aeab0a61f065daacdbb88126b1d5546aa0d9bc607b6e92e2f7bbfd67a65510d1e8a0765c656964f6a542e9e85f51737e75d92f835a7e6dbf4e473106333dedce95aa9d0cb7bef8ed94ab91e1b61753a83d86070143903aa8991c7d4c9b12fd021ec1897308da7a05cea9d98f1688e8db71424b765d7388dabb0e47ecba44f3bb12770e97daf6af039e1c7d903c652dc1aa28eb35d48d2d058c64825ab9cc8b20851b6159501c4ebb1f17c00b06d75b6e2fed4297f9e81d282885f8594c5dce0d12091c"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffde9}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={r6, 0x0, 0x10, 0x0, &(0x7f0000000180)="a663f3cb268509f6eb4f5724029c5b02", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002e00)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021740000000c0a01010000000000000000070000000900020073797a3100000000090001007379"], 0xf8}}, 0x0)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000007c0)=ANY=[@ANYBLOB="28010000", @ANYRES16=0x0, @ANYBLOB="495300000000000000006b00000008000300", @ANYRES32=0x0, @ANYBLOB="0c0099000000000000000000"], 0x28}}, 0x0)
writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000000)="3900000013000b4700bb65e1c3e4ffff010000003c090000000000000000000019200a002e00000007fd17e5ffff080004fa50d36c4e23740a", 0x39}], 0x1)
mount$nfs(&(0x7f0000000100)='...', 0x0, 0x0, 0x0, 0x0)

325.181523ms ago: executing program 0 (id=692):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
accept4(r0, 0x0, 0x0, 0x0)

322.987963ms ago: executing program 3 (id=694):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x12, &(0x7f0000000080)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xde, &(0x7f0000000340)=""/222, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x90)
socket(0x1d, 0x2, 0x6)
r0 = socket$netlink(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000007000000000000004b64ffeca500000050000000260000008f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r1}, 0x10)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r2, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port1\x00'})
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r2, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00'}) (fail_nth: 1)
close(r2)
mount$9p_fd(0x0, 0x0, 0x0, 0x3002000, &(0x7f0000000140)=ANY=[])
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r3, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r3, 0x4040534e, &(0x7f0000000180)={0x72, @time})
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
pipe(&(0x7f0000000500))
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000540), 0x84)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, r4, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x1e, 0x12, r5, 0x0)
pipe(0x0)
socket$kcm(0x10, 0x2, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000600)={0x0, 0xfffffffe, &(0x7f0000000300)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x0)

30.723037ms ago: executing program 4 (id=695):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000100001ff00000000000000000000000a2c000000050a01020000000000000000020000000900030073797a32000000000900010073797a300000000014000000020a031747d21400000000000000000014000000110001"], 0x68}}, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x80)
ftruncate(0xffffffffffffffff, 0x0)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x400c404)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r2 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r4)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x5f, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000f5100001000b000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f08000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0)

30.467398ms ago: executing program 3 (id=696):
open(&(0x7f00000000c0)='./file0\x00', 0x60c2, 0x0)
bpf$BPF_PROG_TEST_RUN_LIVE(0xa, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/mnt\x00')
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1, 0x5, 0x103ba, 0x1}, 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000080), &(0x7f00000001c0)='%-5lx  \x00'}, 0x20)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000140)={r1, &(0x7f0000000180), 0x20000000}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000000)={r1, &(0x7f0000000180), 0x0}, 0x20)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180))
openat$tun(0xffffffffffffff9c, 0x0, 0x1c1341, 0x0)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000140)=@base={0x5, 0x4, 0x8000, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x48)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x90)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
socketpair(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x8914, &(0x7f0000000080))
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xda00)
write$cgroup_devices(r2, &(0x7f0000000440)=ANY=[@ANYBLOB="1e0308004d8c71ef2885634a8270021411"], 0xffdd)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xec, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0x8000000000000001}, 0x1, 0x7, 0x7fffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040))

0s ago: executing program 4 (id=697):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = io_uring_setup(0x3787, &(0x7f00000002c0)={0x0, 0x7ffd, 0x400, 0xfffffffc})
close_range(r2, 0xffffffffffffffff, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000140)={0x77359400}, 0x10)
connect$unix(r0, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000070080000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r4 = socket$inet_icmp(0x2, 0x2, 0x1)
vmsplice(r4, &(0x7f00000006c0)=[{&(0x7f0000000300)="07c963f132a2ec9bf3b6491e8fc022898a00cd1cd86c4e1f35dde57848669c749db4473116e92b5384d7dda37fc33f3ef1210687a0756657fc9b7cf4453ab6e6f6eb12f26f9a8f1db8dcb665070df142aa4bef774afdd724334343c21f436f581822c36d4d1883279a534636dff0816a29256d", 0x73}, {&(0x7f00000014c0)="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", 0x1000}, {&(0x7f0000000380)="83aa2f9fb922f2d8d8a4d873050fdea1532f30fd1b05393378202fd254d55ce775d537e0ba85df7d920ecd48b2c2ebfd33743417bb81e64857ccc094dc64f460ad5bd618423aff2dd84e989bfc39493d64ab6414be41297d9b3ba0057bca8bb7598119cdcb0c62a0177167039f388430053a4fd2f6136fda09ddce322e5126621dcc7d587a012fbe04b18b223bdd043835ca57d69cbaa7deb71ab18b071755b83a83e5da4e3a5c4ac300c4eb67285e25aaf30fac32dc66601d5f09af490c46c7e8063cb14596bd1083427ba578b391661bb12e8169c247ec257b2911cddfdb4622efa9", 0xe3}, {&(0x7f0000000480)="d79664b34da6ac8b9570f5de3938e3e36f21581fc5be442b48fb8aad7bc0342f62512e7c79e77d6572edf8276be0c6dae7b684ae4dae6dcb22cef3cbc6c9dfc583daaecf37ba6a9e8d5c0f3fd3cd87d059862c5a6a38d0c012268c1a9cdffbcf713e2c84adec6dd0e7eac06487f39333c28ce364a8a59ee44ad725048a4de3c46586", 0x82}, {&(0x7f00000024c0)="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", 0x1000}, {&(0x7f0000000540)="c5", 0x1}, {&(0x7f0000000580)="99fb0a2381b84fdf3635b0fc2fbe999b18cc7ac453c7e24ee2403a68a71a72f78ba4f0d1a2aacdf2af02708c3a488592ab73d1c6a5690dbfae7e2cb4552a39ca8a30be913bb31e93781779f074d1621bdf31d4142902b64bea", 0x59}, {&(0x7f0000000600)="c58352e9b4ab6420065505eb0d7534a6e2fdc6c3a27f993e9d3a2b3ab1016962c810c5884913e4ec272c8627a2287c5aecadc5363d06be18c0d89e290ecf9de4a2652aeac90719c10d041e9f998d8680c95775ff61df5dd50e4b295fddc3d6b9a1f80d1ff4f5045fe1aafd3aca9d62a9008b0a2f5d9b7df80d812362774d6cdc808d2e56bdec80fc8d35", 0x8a}], 0x8, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000780)='mm_page_free\x00', r3}, 0x10)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0xa0001, 0x0)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r6, 0x84, 0x18, &(0x7f0000000080)={<r7=>0x0, 0x2}, &(0x7f00000000c0)=0x8)
r8 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r9 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCSTI(r9, 0x5412, &(0x7f0000000040))
ioctl$TIOCSTI(r9, 0x5412, &(0x7f00000000c0)=0x40)
ioctl$TIOCSTI(r8, 0x5412, &(0x7f0000000040))
ioctl$TIOCSTI(r8, 0x5412, &(0x7f0000000080)=0x9)
ioctl$TIOCSTI(r8, 0x5412, &(0x7f0000000000)=0x7f)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r6, 0x84, 0x9, &(0x7f0000000140)={r7, @in6={{0xa, 0x4e21, 0x8, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x6}}, 0x5, 0x8001, 0x2, 0x1, 0x20, 0x0, 0xad}, 0x9c)
sendfile(r5, r6, 0x0, 0x20000023896)

kernel console output (not intermixed with test programs):

ave_0 added
[   50.606983][ T4401] team0: Port device team_slave_1 added
[   50.621415][ T4401] batman_adv: batadv0: Adding interface: batadv_slave_0
[   50.628358][ T4401] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   50.654268][ T4401] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   50.665703][ T4401] batman_adv: batadv0: Adding interface: batadv_slave_1
[   50.672687][ T4401] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   50.698787][ T4401] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   50.719148][   T11] hsr_slave_0: left promiscuous mode
[   50.724923][   T11] hsr_slave_1: left promiscuous mode
[   50.730692][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   50.738120][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[   50.745554][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   50.752907][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[   50.761570][   T11] veth1_macvtap: left promiscuous mode
[   50.767196][   T11] veth0_macvtap: left promiscuous mode
[   50.772735][   T11] veth1_vlan: left promiscuous mode
[   50.778090][   T11] veth0_vlan: left promiscuous mode
[   50.847306][   T11] team0 (unregistering): Port device team_slave_1 removed
[   50.856929][   T11] team0 (unregistering): Port device team_slave_0 removed
[   50.901701][ T4401] hsr_slave_0: entered promiscuous mode
[   50.907777][ T4401] hsr_slave_1: entered promiscuous mode
[   50.914152][ T4401] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   50.921707][ T4401] Cannot create hsr debugfs directory
[   51.077561][ T4434] chnl_net:caif_netlink_parms(): no params data found
[   51.108702][ T4434] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.115780][ T4434] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.122862][ T4434] bridge_slave_0: entered allmulticast mode
[   51.129347][ T4434] bridge_slave_0: entered promiscuous mode
[   51.136135][ T4434] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.143238][ T4434] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.150358][ T4434] bridge_slave_1: entered allmulticast mode
[   51.156987][ T4434] bridge_slave_1: entered promiscuous mode
[   51.175666][ T4434] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   51.187238][ T4434] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   51.205734][ T4434] team0: Port device team_slave_0 added
[   51.212419][ T4434] team0: Port device team_slave_1 added
[   51.229353][ T4434] batman_adv: batadv0: Adding interface: batadv_slave_0
[   51.236358][ T4434] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   51.262300][ T4434] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   51.273616][ T4434] batman_adv: batadv0: Adding interface: batadv_slave_1
[   51.280830][ T4434] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   51.306735][ T4434] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   51.338130][ T4434] hsr_slave_0: entered promiscuous mode
[   51.345253][ T4434] hsr_slave_1: entered promiscuous mode
[   51.351285][ T4434] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   51.358978][ T4434] Cannot create hsr debugfs directory
[   51.375967][ T4401] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   51.386190][ T4401] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   51.396880][   T11] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.413903][ T4401] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   51.422111][ T4401] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   51.438572][   T11] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.469219][ T4456] loop4: detected capacity change from 0 to 512
[   51.479245][ T4456] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   51.488838][ T4456] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[   51.498792][ T4456] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[   51.508066][ T4456] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[   51.508888][   T11] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.517378][ T4456] System zones: 0-2, 18-18, 34-34
[   51.531821][ T4456] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended
[   51.547709][ T4456] EXT4-fs (loop4): 1 truncate cleaned up
[   51.554268][ T4456] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.555583][ T4401] 8021q: adding VLAN 0 to HW filter on device bond0
[   51.572985][ T4456] EXT4-fs warning (device loop4): ext4_group_extend:1890: can't read last block, resize aborted
[   51.577839][ T4401] 8021q: adding VLAN 0 to HW filter on device team0
[   51.593496][ T4456] No such timeout policy "syz0"
[   51.609571][ T3620] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.621508][   T11] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.637547][ T3269] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.640609][ T4459] loop4: detected capacity change from 0 to 1024
[   51.644622][ T3269] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.654575][ T3377] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.659487][ T4459] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   51.665261][ T3377] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.689151][ T4459] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.692320][ T4401] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   51.711973][ T4401] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   51.739707][ T3620] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.756805][   T11] bridge_slave_1: left allmulticast mode
[   51.762469][   T11] bridge_slave_1: left promiscuous mode
[   51.768264][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.776485][   T11] bridge_slave_0: left allmulticast mode
[   51.782160][   T11] bridge_slave_0: left promiscuous mode
[   51.787858][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.865910][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   51.875950][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   51.886721][   T11] bond0 (unregistering): Released all slaves
[   51.920307][ T4401] 8021q: adding VLAN 0 to HW filter on device batadv0
[   51.945956][ T4472] netlink: 12 bytes leftover after parsing attributes in process `syz.4.335'.
[   51.985503][   T11] hsr_slave_0: left promiscuous mode
[   51.991150][   T11] hsr_slave_1: left promiscuous mode
[   51.997523][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   52.005097][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[   52.013088][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   52.013712][ T4482] FAULT_INJECTION: forcing a failure.
[   52.013712][ T4482] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   52.020490][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[   52.040993][ T4482] CPU: 0 UID: 0 PID: 4482 Comm: syz.4.337 Not tainted 6.11.0-rc4-syzkaller-00033-g872cf28b8df9 #0
[   52.051607][ T4482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   52.061657][ T4482] Call Trace:
[   52.064976][ T4482]  <TASK>
[   52.067890][ T4482]  dump_stack_lvl+0xf2/0x150
[   52.072521][ T4482]  dump_stack+0x15/0x20
[   52.076674][ T4482]  should_fail_ex+0x229/0x230
[   52.081411][ T4482]  should_fail_alloc_page+0xfd/0x110
[   52.086679][ T4482]  __alloc_pages_noprof+0x109/0x360
[   52.091901][ T4482]  alloc_pages_mpol_noprof+0xb1/0x1e0
[   52.097283][ T4482]  folio_alloc_mpol_noprof+0x36/0x70
[   52.102546][ T4482]  shmem_get_folio_gfp+0x3eb/0xd80
[   52.107682][ T4482]  shmem_write_begin+0xa0/0x1c0
[   52.112512][ T4482]  generic_perform_write+0x1b4/0x580
[   52.117900][ T4482]  shmem_file_write_iter+0xc8/0xf0
[   52.122999][ T4482]  vfs_write+0x78f/0x900
[   52.127225][ T4482]  ? __pfx_shmem_file_write_iter+0x10/0x10
[   52.133102][ T4482]  ksys_write+0xeb/0x1b0
[   52.137406][ T4482]  __x64_sys_write+0x42/0x50
[   52.141975][ T4482]  x64_sys_call+0x27dd/0x2d60
[   52.146702][ T4482]  do_syscall_64+0xc9/0x1c0
[   52.151207][ T4482]  ? clear_bhb_loop+0x55/0xb0
[   52.155880][ T4482]  ? clear_bhb_loop+0x55/0xb0
[   52.160535][ T4482]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   52.166544][ T4482] RIP: 0033:0x7f38069e895f
[   52.170934][ T4482] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[   52.190513][ T4482] RSP: 002b:00007f3805666df0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   52.198907][ T4482] RAX: ffffffffffffffda RBX: 0000000000014800 RCX: 00007f38069e895f
[   52.206894][ T4482] RDX: 0000000000014800 RSI: 00007f37fd247000 RDI: 0000000000000006
[   52.214954][ T4482] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000005ac
[   52.222906][ T4482] R10: 0000000020000602 R11: 0000000000000293 R12: 0000000000000006
[   52.230859][ T4482] R13: 00007f3805666ef0 R14: 00007f3805666eb0 R15: 00007f37fd247000
[   52.238821][ T4482]  </TASK>
[   52.244969][   T11] veth1_macvtap: left promiscuous mode
[   52.250452][   T11] veth0_macvtap: left promiscuous mode
[   52.255978][   T11] veth1_vlan: left promiscuous mode
[   52.261252][   T11] veth0_vlan: left promiscuous mode
[   52.365627][ T4401] veth0_vlan: entered promiscuous mode
[   52.373647][ T4401] veth1_vlan: entered promiscuous mode
[   52.385610][ T4401] veth0_macvtap: entered promiscuous mode
[   52.395910][ T4401] veth1_macvtap: entered promiscuous mode
[   52.407000][ T4401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   52.417522][ T4401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.427327][ T4401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   52.437750][ T4401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.447565][ T4401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   52.458174][ T4401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.469095][ T4401] batman_adv: batadv0: Interface activated: batadv_slave_0
[   52.476403][ T4488] gre0: Master is either lo or non-ether device
[   52.490155][ T4401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   52.500682][ T4401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.510493][ T4401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   52.520997][ T4401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.526240][ T4495] loop2: detected capacity change from 0 to 512
[   52.530934][ T4401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   52.547641][ T4401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.555694][ T4495] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.559477][ T4401] batman_adv: batadv0: Interface activated: batadv_slave_1
[   52.570487][ T4495] ext4 filesystem being mounted at /44/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   52.578378][ T4401] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   52.596060][ T4401] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   52.604802][ T4401] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   52.613504][ T4401] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   52.636133][ T4495] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 3: comm syz.2.341: path /44/file1: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[   52.656699][ T4495] EXT4-fs (loop2): Remounting filesystem read-only
[   52.704035][ T4434] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   52.755167][ T4434] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   52.772695][ T4434] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   52.794553][ T4434] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   52.828923][ T4489] chnl_net:caif_netlink_parms(): no params data found
[   52.887515][ T4489] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.894770][ T4489] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.904188][ T4489] bridge_slave_0: entered allmulticast mode
[   52.910794][ T4489] bridge_slave_0: entered promiscuous mode
[   52.918280][ T4489] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.925356][ T4489] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.932994][ T4489] bridge_slave_1: entered allmulticast mode
[   52.939857][ T4489] bridge_slave_1: entered promiscuous mode
[   52.971964][ T4434] 8021q: adding VLAN 0 to HW filter on device bond0
[   52.981162][ T4489] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   52.991711][ T4489] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   53.027899][ T4434] 8021q: adding VLAN 0 to HW filter on device team0
[   53.036922][ T4489] team0: Port device team_slave_0 added
[   53.047418][ T4489] team0: Port device team_slave_1 added
[   53.059782][ T3377] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.066926][ T3377] bridge0: port 1(bridge_slave_0) entered forwarding state
[   53.085783][ T3377] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.092916][ T3377] bridge0: port 2(bridge_slave_1) entered forwarding state
[   53.102373][ T4489] batman_adv: batadv0: Adding interface: batadv_slave_0
[   53.109401][ T4489] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   53.135328][ T4489] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   53.157339][ T4434] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   53.167799][ T4434] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   53.188883][ T4489] batman_adv: batadv0: Adding interface: batadv_slave_1
[   53.195872][ T4489] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   53.221988][ T4489] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   53.293015][ T4489] hsr_slave_0: entered promiscuous mode
[   53.299624][ T4489] hsr_slave_1: entered promiscuous mode
[   53.306972][ T4489] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   53.314727][ T4489] Cannot create hsr debugfs directory
[   53.351687][ T4434] 8021q: adding VLAN 0 to HW filter on device batadv0
[   53.391696][ T3610] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.439295][ T4530] netlink: 44 bytes leftover after parsing attributes in process `syz.2.345'.
[   53.448305][ T4530] netlink: 43 bytes leftover after parsing attributes in process `syz.2.345'.
[   53.457246][ T4530] netlink: 'syz.2.345': attribute type 5 has an invalid length.
[   53.464878][ T4530] netlink: 43 bytes leftover after parsing attributes in process `syz.2.345'.
[   53.476085][ T4489] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.476676][ T4530] futex_wake_op: syz.2.345 tries to shift op by -1; fix this program
[   53.498015][   T29] kauditd_printk_skb: 165 callbacks suppressed
[   53.498090][   T29] audit: type=1400 audit(1724307877.574:575): avc:  denied  { ioctl } for  pid=4529 comm="syz.2.345" path="socket:[9629]" dev="sockfs" ino=9629 ioctlcmd=0x48e4 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   53.537555][ T4534] netlink: 8 bytes leftover after parsing attributes in process `syz.2.346'.
[   53.547494][ T4434] veth0_vlan: entered promiscuous mode
[   53.563208][ T4489] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.584212][ T4536] loop2: detected capacity change from 0 to 1024
[   53.591758][ T4434] veth1_vlan: entered promiscuous mode
[   53.597224][ T4536] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   53.607910][ T4536] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.621820][ T4434] veth0_macvtap: entered promiscuous mode
[   53.629705][ T4434] veth1_macvtap: entered promiscuous mode
[   53.648474][ T4489] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.681040][ T4434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   53.691571][ T4434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   53.701440][ T4434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   53.711945][ T4434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   53.721849][ T4434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   53.721862][ T4434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   53.721881][ T4434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   53.752839][ T4434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   53.765085][ T3610] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.766501][ T4434] batman_adv: batadv0: Interface activated: batadv_slave_0
[   53.781931][ T4541] gre0: Master is either lo or non-ether device
[   53.790334][ T4434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   53.800819][ T4434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   53.810771][ T4434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   53.821267][ T4434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   53.831081][ T4434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   53.841539][ T4434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   53.851358][ T4434] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   53.861771][ T4434] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   53.873117][ T4434] batman_adv: batadv0: Interface activated: batadv_slave_1
[   53.885696][ T4543] loop2: detected capacity change from 0 to 512
[   53.894278][ T4543] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.350: corrupted in-inode xattr: invalid ea_ino
[   53.908776][ T4489] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.923434][ T4543] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.350: couldn't read orphan inode 15 (err -117)
[   53.928203][ T4434] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   53.944117][ T4434] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   53.952794][ T4434] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   53.961604][ T4434] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   53.972623][ T4543] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.991309][ T4543] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[   54.003153][ T4543] EXT4-fs error (device loop2): ext4_lookup:1815: inode #2: comm syz.2.350: deleted inode referenced: 15
[   54.035826][ T3610] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.037165][ T4489] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   54.053724][   T29] audit: type=1400 audit(1724307878.134:576): avc:  denied  { getopt } for  pid=4545 comm="syz.3.351" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   54.079329][ T4551] loop0: detected capacity change from 0 to 1024
[   54.081180][ T4489] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   54.095941][ T4546] netlink: 8 bytes leftover after parsing attributes in process `syz.3.351'.
[   54.105252][ T4489] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   54.114134][   T29] audit: type=1400 audit(1724307878.194:577): avc:  denied  { ioctl } for  pid=4545 comm="syz.3.351" path="socket:[9836]" dev="sockfs" ino=9836 ioctlcmd=0x89f0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   54.116953][ T4489] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   54.165126][ T4551] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   54.173921][ T4551] EXT4-fs (loop0): blocks per group (5120) and clusters per group (32) inconsistent
[   54.219156][ T4489] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.238032][ T4489] 8021q: adding VLAN 0 to HW filter on device team0
[   54.241222][ T4559] loop0: detected capacity change from 0 to 1024
[   54.254425][   T50] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.258291][ T4561] loop4: detected capacity change from 0 to 2048
[   54.261467][   T50] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.277636][ T4559] EXT4-fs: Ignoring removed nobh option
[   54.284999][ T4561] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.294642][   T50] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.298601][ T4559] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   54.304145][   T50] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.355695][ T4559] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #11: comm syz.0.356: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   54.375206][ T4559] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.356: couldn't read orphan inode 11 (err -117)
[   54.390127][ T4559] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.406747][ T4559] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.356: Invalid block bitmap block 0 in block_group 0
[   54.429970][ T3620] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.439087][ T4489] 8021q: adding VLAN 0 to HW filter on device batadv0
[   54.449960][ T4559] Quota error (device loop0): write_blk: dquota write failed
[   54.457400][ T4559] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[   54.476269][ T4559] EXT4-fs error (device loop0): ext4_acquire_dquot:6848: comm syz.0.356: Failed to acquire dquot type 0
[   54.561060][ T4434] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.602438][ T4587] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   54.611271][ T4489] veth0_vlan: entered promiscuous mode
[   54.620461][ T4587] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   54.629366][ T4587] 9pnet_fd: Insufficient options for proto=fd
[   54.637324][ T4489] veth1_vlan: entered promiscuous mode
[   54.662607][ T4489] veth0_macvtap: entered promiscuous mode
[   54.670350][ T4489] veth1_macvtap: entered promiscuous mode
[   54.678512][ T4592] netlink: 'syz.3.364': attribute type 21 has an invalid length.
[   54.693274][ T4489] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   54.696128][ T4592] netlink: 24 bytes leftover after parsing attributes in process `syz.3.364'.
[   54.703811][ T4489] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   54.703824][ T4489] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   54.703838][ T4489] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   54.703849][ T4489] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   54.753250][ T4489] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   54.763143][ T4489] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   54.773585][ T4489] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   54.783417][ T4489] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   54.793880][ T4489] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   54.806662][ T4489] batman_adv: batadv0: Interface activated: batadv_slave_0
[   54.819075][ T4489] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   54.829540][ T4489] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   54.839351][ T4489] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   54.849772][ T4489] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   54.859580][ T4489] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   54.870013][ T4489] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   54.879878][ T4489] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   54.890298][ T4489] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   54.900096][ T4489] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   54.910534][ T4489] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   54.924804][ T4489] batman_adv: batadv0: Interface activated: batadv_slave_1
[   54.938143][ T4489] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.946915][ T4489] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.955614][ T4489] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.964463][ T4489] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   55.058423][   T29] audit: type=1400 audit(1724307879.134:578): avc:  denied  { getopt } for  pid=4596 comm="syz.1.365" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   55.124769][   T29] audit: type=1400 audit(1724307879.204:579): avc:  denied  { setopt } for  pid=4596 comm="syz.1.365" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   55.130523][ T4601] loop3: detected capacity change from 0 to 512
[   55.173080][   T29] audit: type=1400 audit(1724307879.244:580): avc:  denied  { write } for  pid=4604 comm="syz.1.368" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   55.174676][ T4601] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   55.216805][   T29] audit: type=1400 audit(1724307879.284:581): avc:  denied  { block_suspend } for  pid=4606 comm="syz.0.369" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   55.245854][ T4610] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = -1476395009, id = 0
[   55.286298][ T4615] loop3: detected capacity change from 0 to 1024
[   55.293134][ T4615] EXT4-fs: Ignoring removed mblk_io_submit option
[   55.306407][ T4615] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.332368][ T4401] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.407169][ T4624] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[   55.705041][ T4655] FAULT_INJECTION: forcing a failure.
[   55.705041][ T4655] name failslab, interval 1, probability 0, space 0, times 0
[   55.717773][ T4655] CPU: 1 UID: 0 PID: 4655 Comm: syz.2.379 Not tainted 6.11.0-rc4-syzkaller-00033-g872cf28b8df9 #0
[   55.728406][ T4655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   55.738474][ T4655] Call Trace:
[   55.741776][ T4655]  <TASK>
[   55.744706][ T4655]  dump_stack_lvl+0xf2/0x150
[   55.749341][ T4655]  dump_stack+0x15/0x20
[   55.753516][ T4655]  should_fail_ex+0x229/0x230
[   55.758202][ T4655]  ? skb_clone+0x154/0x1f0
[   55.762630][ T4655]  should_failslab+0x8f/0xb0
[   55.767231][ T4655]  kmem_cache_alloc_noprof+0x4c/0x290
[   55.772609][ T4655]  skb_clone+0x154/0x1f0
[   55.776901][ T4655]  __netlink_deliver_tap+0x2bd/0x4c0
[   55.782291][ T4655]  netlink_unicast+0x64a/0x670
[   55.787112][ T4655]  netlink_sendmsg+0x5cc/0x6e0
[   55.791977][ T4655]  ? __pfx_netlink_sendmsg+0x10/0x10
[   55.797261][ T4655]  __sock_sendmsg+0x140/0x180
[   55.801953][ T4655]  ____sys_sendmsg+0x312/0x410
[   55.806760][ T4655]  __sys_sendmsg+0x1e9/0x280
[   55.811365][ T4655]  __x64_sys_sendmsg+0x46/0x50
[   55.816140][ T4655]  x64_sys_call+0x2689/0x2d60
[   55.820836][ T4655]  do_syscall_64+0xc9/0x1c0
[   55.825370][ T4655]  ? clear_bhb_loop+0x55/0xb0
[   55.830117][ T4655]  ? clear_bhb_loop+0x55/0xb0
[   55.834874][ T4655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.840818][ T4655] RIP: 0033:0x7f02a1889e79
[   55.845230][ T4655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.864858][ T4655] RSP: 002b:00007f02a04c5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   55.873408][ T4655] RAX: ffffffffffffffda RBX: 00007f02a1a26130 RCX: 00007f02a1889e79
[   55.881401][ T4655] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000004
[   55.889372][ T4655] RBP: 00007f02a04c5090 R08: 0000000000000000 R09: 0000000000000000
[   55.897334][ T4655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   55.905303][ T4655] R13: 0000000000000001 R14: 00007f02a1a26130 R15: 00007ffec3a67908
[   55.913268][ T4655]  </TASK>
[   56.057444][ T4662] delete_channel: no stack
[   56.178709][ T4688] loop1: detected capacity change from 0 to 2048
[   56.195537][ T4688] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   56.207841][ T4688] ext4 filesystem being mounted at /7/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.227495][ T4489] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.310694][   T29] audit: type=1400 audit(1724307880.384:582): avc:  denied  { ioctl } for  pid=4699 comm="syz.3.396" path="mnt:[4026532384]" dev="nsfs" ino=4026532384 ioctlcmd=0xb702 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   56.335756][ T4700] netlink: 'syz.3.396': attribute type 26 has an invalid length.
[   56.453697][ T4709] syz.2.401[4709] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   56.541659][ T4720] FAULT_INJECTION: forcing a failure.
[   56.541659][ T4720] name failslab, interval 1, probability 0, space 0, times 0
[   56.563631][ T4710] loop3: detected capacity change from 0 to 512
[   56.565594][ T4720] CPU: 0 UID: 0 PID: 4720 Comm: syz.4.403 Not tainted 6.11.0-rc4-syzkaller-00033-g872cf28b8df9 #0
[   56.582348][ T4720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   56.592471][ T4720] Call Trace:
[   56.593962][ T4710] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #12: comm syz.3.400: corrupted in-inode xattr: invalid ea_ino
[   56.595730][ T4720]  <TASK>
[   56.595738][ T4720]  dump_stack_lvl+0xf2/0x150
[   56.616513][ T4720]  dump_stack+0x15/0x20
[   56.620687][ T4720]  should_fail_ex+0x229/0x230
[   56.625443][ T4720]  ? vm_area_alloc+0x2c/0x130
[   56.630143][ T4720]  should_failslab+0x8f/0xb0
[   56.633892][ T4710] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.400: couldn't read orphan inode 12 (err -117)
[   56.634729][ T4720]  kmem_cache_alloc_noprof+0x4c/0x290
[   56.651770][ T4720]  vm_area_alloc+0x2c/0x130
[   56.656311][ T4720]  mmap_region+0x88b/0x1620
[   56.660888][ T4720]  ? security_mmap_addr+0x4c/0x70
[   56.665917][ T4720]  ? __get_unmapped_area+0x2d1/0x300
[   56.667344][ T4710] EXT4-fs (loop3): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.671190][ T4720]  do_mmap+0x72a/0xb70
[   56.671214][ T4720]  ? security_mmap_file+0x128/0x150
[   56.671310][ T4720]  vm_mmap_pgoff+0x133/0x290
[   56.697623][ T4720]  ksys_mmap_pgoff+0xd0/0x340
[   56.702352][ T4720]  ? fpregs_assert_state_consistent+0x83/0xa0
[   56.708441][ T4720]  x64_sys_call+0x1884/0x2d60
[   56.713151][ T4720]  do_syscall_64+0xc9/0x1c0
[   56.714793][ T4710] EXT4-fs error (device loop3): ext4_add_entry:2435: inode #2: comm syz.3.400: Directory hole found for htree leaf block 0
[   56.717653][ T4720]  ? clear_bhb_loop+0x55/0xb0
[   56.735086][ T4720]  ? clear_bhb_loop+0x55/0xb0
[   56.739764][ T4720]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.745699][ T4720] RIP: 0033:0x7f38069e9eb3
[   56.750101][ T4720] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[   56.769783][ T4720] RSP: 002b:00007f3805666e18 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   56.778199][ T4720] RAX: ffffffffffffffda RBX: 00000000000004ea RCX: 00007f38069e9eb3
[   56.786165][ T4720] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
[   56.794135][ T4720] RBP: 0000000020000302 R08: 00000000ffffffff R09: 0000000000000000
[   56.802098][ T4720] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000004
[   56.810063][ T4720] R13: 00007f3805666ef0 R14: 00007f3805666eb0 R15: 00000000200002c0
[   56.818039][ T4720]  </TASK>
[   56.896288][ T4401] EXT4-fs (loop3): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[   56.927434][ T4730] netlink: 4 bytes leftover after parsing attributes in process `syz.3.406'.
[   56.980858][ T4733] netlink: 24 bytes leftover after parsing attributes in process `syz.0.408'.
[   56.989636][ T4730] loop3: detected capacity change from 0 to 4096
[   57.034746][ T4730] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.051112][ T4740] netlink: 32 bytes leftover after parsing attributes in process `syz.2.410'.
[   57.085987][ T4730] netlink: 60 bytes leftover after parsing attributes in process `syz.3.406'.
[   57.114946][ T4739] loop0: detected capacity change from 0 to 512
[   57.132762][ T4739] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[   57.134194][ T4748] loop1: detected capacity change from 0 to 128
[   57.147357][ T4745] loop2: detected capacity change from 0 to 128
[   57.149431][ T4401] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.154677][ T4748] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[   57.164649][ T4745] vfat: Unknown parameter 'tlb_flush'
[   57.171797][ T4748] FAT-fs (loop1): FAT read failed (blocknr 255)
[   57.183925][ T4739] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #15: comm syz.0.409: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 24833, max 4(4), depth 0(0)
[   57.202671][ T4739] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.409: couldn't read orphan inode 15 (err -117)
[   57.231408][ T4748] loop1: detected capacity change from 0 to 512
[   57.235303][ T4754] loop4: detected capacity change from 0 to 2048
[   57.240024][ T4739] ext2 filesystem being mounted at /7/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.257946][ T4748] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   57.271035][ T4748] loop1: detected capacity change from 0 to 128
[   57.293716][ T4754]  loop4: p1 < > p3 p4 < >
[   57.348445][ T4754] loop4: p3 start 4284289 is beyond EOD, truncated
[   57.378287][ T4754] xt_socket: unknown flags 0x50
[   57.456874][ T4789] FAULT_INJECTION: forcing a failure.
[   57.456874][ T4789] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   57.470257][ T4789] CPU: 0 UID: 0 PID: 4789 Comm: syz.4.426 Not tainted 6.11.0-rc4-syzkaller-00033-g872cf28b8df9 #0
[   57.480840][ T4789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   57.490881][ T4789] Call Trace:
[   57.494226][ T4789]  <TASK>
[   57.497189][ T4789]  dump_stack_lvl+0xf2/0x150
[   57.501793][ T4789]  dump_stack+0x15/0x20
[   57.505982][ T4789]  should_fail_ex+0x229/0x230
[   57.510668][ T4789]  should_fail+0xb/0x10
[   57.514854][ T4789]  should_fail_usercopy+0x1a/0x20
[   57.519952][ T4789]  _copy_from_user+0x1e/0xd0
[   57.524543][ T4789]  restore_altstack+0x48/0xd0
[   57.529224][ T4789]  __do_sys_rt_sigreturn+0xd3/0x150
[   57.534488][ T4789]  x64_sys_call+0x28e1/0x2d60
[   57.539215][ T4789]  do_syscall_64+0xc9/0x1c0
[   57.543720][ T4789]  ? clear_bhb_loop+0x55/0xb0
[   57.548420][ T4789]  ? clear_bhb_loop+0x55/0xb0
[   57.553100][ T4789]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.559037][ T4789] RIP: 0033:0x7f38069e9e77
[   57.563450][ T4789] Code: ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89
[   57.583048][ T4789] RSP: 002b:00007f3805667038 EFLAGS: 00000246
[   57.589128][ T4789] RAX: 0000000000000000 RBX: 00007f3806b85f80 RCX: 00007f38069e9e79
[   57.597162][ T4789] RDX: 0000000000000039 RSI: 00000000200002c0 RDI: 0000000000000005
[   57.605127][ T4789] RBP: 00007f3805667090 R08: 0000000000000000 R09: 0000000000000000
[   57.613099][ T4789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   57.621063][ T4789] R13: 0000000000000000 R14: 00007f3806b85f80 R15: 00007ffe33f257b8
[   57.629030][ T4789]  </TASK>
[   57.634714][ T4792] loop3: detected capacity change from 0 to 256
[   57.641248][ T4792] vfat: Bad value for 'uni_xlate'
[   57.654633][ T4794] loop4: detected capacity change from 0 to 1024
[   57.661216][ T4794] EXT4-fs: Ignoring removed mblk_io_submit option
[   57.703446][ T4804] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[   57.842422][ T4825] netlink: 'syz.4.439': attribute type 1 has an invalid length.
[   57.853161][ T4825] loop4: detected capacity change from 0 to 512
[   57.865159][ T4825] ext4 filesystem being mounted at /87/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.941731][ T4849] loop2: detected capacity change from 0 to 164
[   57.948719][ T4849] Unable to read rock-ridge attributes
[   57.985913][ T4849] Unable to read rock-ridge attributes
[   58.006220][ T4859] loop3: detected capacity change from 0 to 2048
[   58.113267][ T4870] Cannot find map_set index 0 as target
[   58.116642][ T4873] loop3: detected capacity change from 0 to 1024
[   58.125815][ T4873] EXT4-fs: Ignoring removed oldalloc option
[   58.131925][ T4873] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   58.141540][ T4873] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   58.152529][ T4873] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[   58.163719][ T4873] EXT4-fs (loop3): can't mount with journal_checksum, fs mounted w/o journal
[   58.243898][ T4894] FAULT_INJECTION: forcing a failure.
[   58.243898][ T4894] name failslab, interval 1, probability 0, space 0, times 0
[   58.256586][ T4896] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[   58.265786][ T4894] CPU: 0 UID: 0 PID: 4894 Comm: syz.2.463 Not tainted 6.11.0-rc4-syzkaller-00033-g872cf28b8df9 #0
[   58.276376][ T4894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   58.286426][ T4894] Call Trace:
[   58.289696][ T4894]  <TASK>
[   58.292617][ T4894]  dump_stack_lvl+0xf2/0x150
[   58.297226][ T4894]  dump_stack+0x15/0x20
[   58.301390][ T4894]  should_fail_ex+0x229/0x230
[   58.306068][ T4894]  ? prog_array_map_alloc+0x33/0x120
[   58.311351][ T4894]  should_failslab+0x8f/0xb0
[   58.316045][ T4894]  __kmalloc_cache_noprof+0x4b/0x2a0
[   58.321415][ T4894]  prog_array_map_alloc+0x33/0x120
[   58.326535][ T4894]  map_create+0x83c/0xb90
[   58.330931][ T4894]  __sys_bpf+0x667/0x7a0
[   58.335181][ T4894]  __x64_sys_bpf+0x43/0x50
[   58.339722][ T4894]  x64_sys_call+0x2625/0x2d60
[   58.344400][ T4894]  do_syscall_64+0xc9/0x1c0
[   58.348977][ T4894]  ? clear_bhb_loop+0x55/0xb0
[   58.353693][ T4894]  ? clear_bhb_loop+0x55/0xb0
[   58.358373][ T4894]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.364279][ T4894] RIP: 0033:0x7f02a1889e79
[   58.368750][ T4894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.379205][ T4890] loop0: detected capacity change from 0 to 512
[   58.388413][ T4894] RSP: 002b:00007f02a0507038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   58.388434][ T4894] RAX: ffffffffffffffda RBX: 00007f02a1a25f80 RCX: 00007f02a1889e79
[   58.388448][ T4894] RDX: 0000000000000048 RSI: 00000000200009c0 RDI: 0000000000000000
[   58.388460][ T4894] RBP: 00007f02a0507090 R08: 0000000000000000 R09: 0000000000000000
[   58.388472][ T4894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.388484][ T4894] R13: 0000000000000000 R14: 00007f02a1a25f80 R15: 00007ffec3a67908
[   58.388500][ T4894]  </TASK>
[   58.452387][ T4890] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   58.482457][ T4890] EXT4-fs (loop0): warning: maximal mount count reached, running e2fsck is recommended
[   58.496081][ T4890] EXT4-fs error (device loop0): ext4_orphan_get:1391: comm syz.0.461: inode #15: comm syz.0.461: iget: illegal inode #
[   58.510138][ T4890] EXT4-fs (loop0): Remounting filesystem read-only
[   58.520570][ T4890] SELinux: (dev loop0, type ext4) getxattr errno 5
[   58.574441][ T4916] ip6tnl0: Master is either lo or non-ether device
[   58.677445][ T4926] loop1: detected capacity change from 0 to 128
[   58.686195][ T4926] vfat: Unknown parameter 'ÿÿÿÿ00000000000000000003'
[   58.692778][ T4933] loop2: detected capacity change from 0 to 1024
[   58.703990][ T4926] loop1: detected capacity change from 0 to 2048
[   58.710214][ T4933] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   58.715631][ T4942] loop3: detected capacity change from 0 to 128
[   58.721235][ T4933] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   58.807317][ T4936] loop4: detected capacity change from 0 to 512
[   58.815573][ T4936] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   58.826240][ T4933] jbd2_journal_init_inode: Cannot locate journal superblock
[   58.833813][ T4933] EXT4-fs (loop2): Could not load journal inode
[   58.896606][ T4936] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #17: comm syz.4.479: iget: bad i_size value: -6917529027641081756
[   58.911293][ T4936] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.479: couldn't read orphan inode 17 (err -117)
[   59.295359][ T4933] loop2: detected capacity change from 0 to 1024
[   59.302044][ T4933] EXT4-fs (loop2): first meta block group too large: 7 (group descriptor block count 1)
[   59.322986][ T4953] __nla_validate_parse: 10 callbacks suppressed
[   59.322997][ T4953] netlink: 24 bytes leftover after parsing attributes in process `syz.1.484'.
[   59.339846][   T29] kauditd_printk_skb: 35 callbacks suppressed
[   59.339857][   T29] audit: type=1400 audit(1724307883.394:616): avc:  denied  { shutdown } for  pid=4952 comm="syz.1.484" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   59.397183][   T29] audit: type=1400 audit(1724307883.474:617): avc:  denied  { execute_no_trans } for  pid=4956 comm="syz.4.485" path="/89/file1" dev="tmpfs" ino=494 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   59.462017][ T4962] ip6tnl0: Master is either lo or non-ether device
[   59.477408][ T4965] FAULT_INJECTION: forcing a failure.
[   59.477408][ T4965] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   59.490577][ T4965] CPU: 0 UID: 0 PID: 4965 Comm: syz.0.489 Not tainted 6.11.0-rc4-syzkaller-00033-g872cf28b8df9 #0
[   59.499717][ T4967] loop4: detected capacity change from 0 to 2048
[   59.501230][ T4965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   59.501242][ T4965] Call Trace:
[   59.501254][ T4965]  <TASK>
[   59.523751][ T4965]  dump_stack_lvl+0xf2/0x150
[   59.528344][ T4965]  dump_stack+0x15/0x20
[   59.532522][ T4965]  should_fail_ex+0x229/0x230
[   59.537191][ T4965]  should_fail+0xb/0x10
[   59.541337][ T4965]  should_fail_usercopy+0x1a/0x20
[   59.546382][ T4965]  _copy_from_user+0x1e/0xd0
[   59.551045][ T4965]  copy_msghdr_from_user+0x54/0x2a0
[   59.556240][ T4965]  __sys_sendmsg+0x17d/0x280
[   59.560863][ T4965]  __x64_sys_sendmsg+0x46/0x50
[   59.565692][ T4965]  x64_sys_call+0x2689/0x2d60
[   59.570430][ T4965]  do_syscall_64+0xc9/0x1c0
[   59.575003][ T4965]  ? clear_bhb_loop+0x55/0xb0
[   59.579672][ T4965]  ? clear_bhb_loop+0x55/0xb0
[   59.584341][ T4965]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.590277][ T4965] RIP: 0033:0x7f4a51ed9e79
[   59.594681][ T4965] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.614344][ T4965] RSP: 002b:00007f4a50b57038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   59.622742][ T4965] RAX: ffffffffffffffda RBX: 00007f4a52075f80 RCX: 00007f4a51ed9e79
[   59.630772][ T4965] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[   59.638791][ T4965] RBP: 00007f4a50b57090 R08: 0000000000000000 R09: 0000000000000000
[   59.646747][ T4965] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.654775][ T4965] R13: 0000000000000000 R14: 00007f4a52075f80 R15: 00007ffcd9866848
[   59.662751][ T4965]  </TASK>
[   59.708951][   T29] audit: type=1400 audit(1724307883.774:618): avc:  denied  { bind } for  pid=4975 comm="syz.2.494" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   59.728308][   T29] audit: type=1400 audit(1724307883.774:619): avc:  denied  { listen } for  pid=4975 comm="syz.2.494" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   59.760386][   T29] audit: type=1400 audit(1724307883.814:620): avc:  denied  { bind } for  pid=4982 comm="syz.2.495" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   59.780090][   T29] audit: type=1400 audit(1724307883.824:621): avc:  denied  { execute } for  pid=4966 comm="syz.4.491" path="/91/file0/cgroup.stat" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   59.803488][   T29] audit: type=1400 audit(1724307883.834:622): avc:  denied  { create } for  pid=4966 comm="syz.4.491" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   59.823545][   T29] audit: type=1400 audit(1724307883.834:623): avc:  denied  { getopt } for  pid=4966 comm="syz.4.491" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   59.843610][   T29] audit: type=1400 audit(1724307883.834:624): avc:  denied  { ioctl } for  pid=4966 comm="syz.4.491" path="socket:[11649]" dev="sockfs" ino=11649 ioctlcmd=0x660b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   59.879584][ T4997] FAULT_INJECTION: forcing a failure.
[   59.879584][ T4997] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   59.892971][ T4997] CPU: 0 UID: 0 PID: 4997 Comm: syz.2.499 Not tainted 6.11.0-rc4-syzkaller-00033-g872cf28b8df9 #0
[   59.903586][ T4997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   59.913676][ T4997] Call Trace:
[   59.916930][ T4997]  <TASK>
[   59.919835][ T4997]  dump_stack_lvl+0xf2/0x150
[   59.924414][ T4997]  dump_stack+0x15/0x20
[   59.928575][ T4997]  should_fail_ex+0x229/0x230
[   59.933243][ T4997]  should_fail+0xb/0x10
[   59.937413][ T4997]  should_fail_usercopy+0x1a/0x20
[   59.942605][ T4997]  _copy_from_user+0x1e/0xd0
[   59.947205][ T4997]  copy_msghdr_from_user+0x54/0x2a0
[   59.952469][ T4997]  __sys_sendmsg+0x17d/0x280
[   59.957115][ T4997]  __x64_sys_sendmsg+0x46/0x50
[   59.961857][ T4997]  x64_sys_call+0x2689/0x2d60
[   59.966514][ T4997]  do_syscall_64+0xc9/0x1c0
[   59.971141][ T4997]  ? clear_bhb_loop+0x55/0xb0
[   59.975826][ T4997]  ? clear_bhb_loop+0x55/0xb0
[   59.980539][ T4997]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.986436][ T4997] RIP: 0033:0x7f02a1889e79
[   59.990827][ T4997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.997983][   T29] audit: type=1400 audit(1724307884.074:625): avc:  denied  { append } for  pid=4980 comm="syz.1.493" name="001" dev="devtmpfs" ino=123 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   60.010402][ T4997] RSP: 002b:00007f02a0507038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   60.010423][ T4997] RAX: ffffffffffffffda RBX: 00007f02a1a25f80 RCX: 00007f02a1889e79
[   60.010436][ T4997] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003
[   60.010447][ T4997] RBP: 00007f02a0507090 R08: 0000000000000000 R09: 0000000000000000
[   60.010458][ T4997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.010468][ T4997] R13: 0000000000000000 R14: 00007f02a1a25f80 R15: 00007ffec3a67908
[   60.010482][ T4997]  </TASK>
[   60.035923][ T4995] vlan2: entered promiscuous mode
[   60.089798][ T4995] team0: entered promiscuous mode
[   60.094847][ T4995] team_slave_0: entered promiscuous mode
[   60.100569][ T4995] team_slave_1: entered promiscuous mode
[   60.106265][ T4995] vlan2: entered allmulticast mode
[   60.111352][ T4995] team0: entered allmulticast mode
[   60.116578][ T4995] team_slave_0: entered allmulticast mode
[   60.122419][ T4995] team_slave_1: entered allmulticast mode
[   60.130202][ T4995] team0: left allmulticast mode
[   60.135083][ T4995] team_slave_0: left allmulticast mode
[   60.140532][ T4995] team_slave_1: left allmulticast mode
[   60.146060][ T4995] team0: left promiscuous mode
[   60.149198][  T327] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, 
[   60.150804][ T4995] team_slave_0: left promiscuous mode
[   60.150858][ T4995] team_slave_1: left promiscuous mode
[   60.159076][  T327] block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   60.178795][  T327] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   60.191028][  T327] EXT4-fs (loop4): This should not happen!! Data will be lost
[   60.191028][  T327] 
[   60.200821][  T327] EXT4-fs (loop4): Total free blocks count 0
[   60.206909][  T327] EXT4-fs (loop4): Free/Dirty block details
[   60.212810][  T327] EXT4-fs (loop4): free_blocks=2415919104
[   60.218645][  T327] EXT4-fs (loop4): dirty_blocks=16
[   60.223742][  T327] EXT4-fs (loop4): Block reservation details
[   60.229761][  T327] EXT4-fs (loop4): i_reserved_data_blocks=1
[   60.248482][ T5005] loop4: detected capacity change from 0 to 512
[   60.256038][ T5005] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[   60.286171][ T5005] EXT4-fs (loop4): failed to open journal device unknown-block(0,0) -6
[   60.288121][ T5011] loop1: detected capacity change from 0 to 1024
[   60.301584][ T5011] EXT4-fs: Ignoring removed nobh option
[   60.307559][ T5011] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   60.318781][ T5011] EXT4-fs error (device loop1): ext4_ext_check_inode:520: inode #11: comm syz.1.502: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   60.340586][ T5011] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.502: couldn't read orphan inode 11 (err -117)
[   60.341132][ T5016] ip6tnl0: Master is either lo or non-ether device
[   60.360233][ T5011] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.502: Invalid block bitmap block 0 in block_group 0
[   60.374271][ T5011] EXT4-fs error (device loop1): ext4_acquire_dquot:6848: comm syz.1.502: Failed to acquire dquot type 0
[   60.430691][ T5030] netlink: 16 bytes leftover after parsing attributes in process `syz.3.510'.
[   60.450377][ T5032] netlink: 'syz.3.511': attribute type 10 has an invalid length.
[   60.461725][ T5032] 8021q: adding VLAN 0 to HW filter on device team0
[   60.474750][ T5033] loop4: detected capacity change from 0 to 256
[   60.479902][ T5032] bond0: (slave team0): Enslaving as an active interface with an up link
[   60.485954][ T5033] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   60.502118][ T5033] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   60.530132][ T5042] loop3: detected capacity change from 0 to 512
[   60.544677][ T5042] ext4 filesystem being mounted at /53/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.557233][ T5042] capability: warning: `syz.3.514' uses 32-bit capabilities (legacy support in use)
[   60.570686][ T5048] FAULT_INJECTION: forcing a failure.
[   60.570686][ T5048] name failslab, interval 1, probability 0, space 0, times 0
[   60.583322][ T5048] CPU: 0 UID: 0 PID: 5048 Comm: syz.1.516 Not tainted 6.11.0-rc4-syzkaller-00033-g872cf28b8df9 #0
[   60.583663][ T5049] FAULT_INJECTION: forcing a failure.
[   60.583663][ T5049] name fail_futex, interval 1, probability 0, space 0, times 0
[   60.593966][ T5048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   60.593978][ T5048] Call Trace:
[   60.593986][ T5048]  <TASK>
[   60.622967][ T5048]  dump_stack_lvl+0xf2/0x150
[   60.627700][ T5048]  dump_stack+0x15/0x20
[   60.631858][ T5048]  should_fail_ex+0x229/0x230
[   60.636564][ T5048]  ? security_inode_alloc+0x32/0xd0
[   60.641748][ T5048]  should_failslab+0x8f/0xb0
[   60.646350][ T5048]  kmem_cache_alloc_noprof+0x4c/0x290
[   60.651719][ T5048]  security_inode_alloc+0x32/0xd0
[   60.656740][ T5048]  inode_init_always+0x439/0x480
[   60.661755][ T5048]  ? __pfx_shmem_alloc_inode+0x10/0x10
[   60.667206][ T5048]  alloc_inode+0x7d/0x160
[   60.671522][ T5048]  new_inode+0x1e/0x100
[   60.675757][ T5048]  shmem_get_inode+0x258/0x740
[   60.680589][ T5048]  __shmem_file_setup+0x127/0x1f0
[   60.685606][ T5048]  shmem_file_setup+0x3b/0x50
[   60.690309][ T5048]  __se_sys_memfd_create+0x31d/0x600
[   60.695667][ T5048]  __x64_sys_memfd_create+0x31/0x40
[   60.700894][ T5048]  x64_sys_call+0x2891/0x2d60
[   60.705638][ T5048]  do_syscall_64+0xc9/0x1c0
[   60.710132][ T5048]  ? clear_bhb_loop+0x55/0xb0
[   60.714801][ T5048]  ? clear_bhb_loop+0x55/0xb0
[   60.719467][ T5048]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.725362][ T5048] RIP: 0033:0x7f93c6be9e79
[   60.729759][ T5048] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.749388][ T5048] RSP: 002b:00007f93c5866d68 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   60.757915][ T5048] RAX: ffffffffffffffda RBX: 000000000000105a RCX: 00007f93c6be9e79
[   60.765940][ T5048] RDX: 00007f93c5866dec RSI: 0000000000000000 RDI: 00007f93c6c58109
[   60.773898][ T5048] RBP: 0000000020000000 R08: 00007f93c5866b07 R09: 0000000000000000
[   60.781856][ T5048] R10: 000000000000000a R11: 0000000000000202 R12: 0000000000000001
[   60.789813][ T5048] R13: 00007f93c5866dec R14: 00007f93c5866df0 R15: 00007ffe533193a8
[   60.797772][ T5048]  </TASK>
[   60.800798][ T5049] CPU: 1 UID: 0 PID: 5049 Comm: syz.0.509 Not tainted 6.11.0-rc4-syzkaller-00033-g872cf28b8df9 #0
[   60.811383][ T5049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   60.821471][ T5049] Call Trace:
[   60.824805][ T5049]  <TASK>
[   60.827731][ T5049]  dump_stack_lvl+0xf2/0x150
[   60.832456][ T5049]  dump_stack+0x15/0x20
[   60.836614][ T5049]  should_fail_ex+0x229/0x230
[   60.841382][ T5049]  should_fail+0xb/0x10
[   60.845552][ T5049]  should_fail_futex+0x50/0x60
[   60.850405][ T5049]  futex_lock_pi_atomic+0x417/0x9d0
[   60.855667][ T5049]  futex_requeue+0x671/0xea0
[   60.860258][ T5049]  do_futex+0x304/0x370
[   60.864413][ T5049]  __se_sys_futex+0x25d/0x3a0
[   60.869088][ T5049]  ? fput+0x13b/0x180
[   60.873061][ T5049]  __x64_sys_futex+0x78/0x90
[   60.877705][ T5049]  x64_sys_call+0x23c4/0x2d60
[   60.882463][ T5049]  do_syscall_64+0xc9/0x1c0
[   60.886964][ T5049]  ? clear_bhb_loop+0x55/0xb0
[   60.891635][ T5049]  ? clear_bhb_loop+0x55/0xb0
[   60.896393][ T5049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.902366][ T5049] RIP: 0033:0x7f4a51ed9e79
[   60.906829][ T5049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.926425][ T5049] RSP: 002b:00007f4a50b36038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[   60.934938][ T5049] RAX: ffffffffffffffda RBX: 00007f4a52076058 RCX: 00007f4a51ed9e79
[   60.942916][ T5049] RDX: 0000000000000001 RSI: 000000000000000c RDI: 000000002000cffc
[   60.950945][ T5049] RBP: 00007f4a50b36090 R08: 0000000020048000 R09: 0000000000000000
[   60.958919][ T5049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   60.966889][ T5049] R13: 0000000000000001 R14: 00007f4a52076058 R15: 00007ffcd9866848
[   60.974853][ T5049]  </TASK>
[   60.997414][ T5053] loop1: detected capacity change from 0 to 2048
[   60.998003][ T5055] loop2: detected capacity change from 0 to 1024
[   61.004032][ T5053] EXT4-fs: Ignoring removed mblk_io_submit option
[   61.010407][ T5055] EXT4-fs: Ignoring removed nobh option
[   61.023197][ T5055] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   61.035418][ T5055] EXT4-fs error (device loop2): ext4_ext_check_inode:520: inode #11: comm syz.2.518: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   61.048383][ T5053] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.517: bg 0: block 234: padding at end of block bitmap is not set
[   61.054230][ T5055] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.518: couldn't read orphan inode 11 (err -117)
[   61.081143][ T5053] EXT4-fs (loop1): Remounting filesystem read-only
[   61.093359][ T5055] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.518: Invalid block bitmap block 0 in block_group 0
[   61.115822][ T5055] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.518: Failed to acquire dquot type 0
[   61.118371][ T5053] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   61.142718][ T5053] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   61.158176][ T5071] loop0: detected capacity change from 0 to 128
[   61.165958][ T5053] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   61.178321][ T5071] ext4 filesystem being mounted at /20/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.192713][ T5053] syz.1.517 (5053) used greatest stack depth: 9848 bytes left
[   61.229545][ T5075] loop4: detected capacity change from 0 to 8192
[   61.260041][ T5076] loop2: detected capacity change from 0 to 8192
[   61.282972][ T5085] No such timeout policy "syz0"
[   61.294972][ T5087] loop0: detected capacity change from 0 to 256
[   61.302858][ T5087] FAT-fs (loop0): Directory bread(block 1285) failed
[   61.320403][ T5087] FAT-fs (loop0): Directory bread(block 1285) failed
[   61.329889][ T5091] SELinux:  truncated policydb string identifier
[   61.330580][ T5089] netlink: 16 bytes leftover after parsing attributes in process `syz.4.529'.
[   61.345162][ T5091] SELinux: failed to load policy
[   61.345340][ T5087] FAT-fs (loop0): Directory bread(block 1285) failed
[   61.356970][ T5087] FAT-fs (loop0): Directory bread(block 1285) failed
[   61.373557][ T5096] FAT-fs (loop0): Directory bread(block 1285) failed
[   61.380262][ T5096] FAT-fs (loop0): Directory bread(block 1285) failed
[   61.420923][ T5096] FAT-fs (loop0): Directory bread(block 1285) failed
[   61.434573][ T5105] loop1: detected capacity change from 0 to 1024
[   61.441107][ T5105] EXT4-fs: Ignoring removed nobh option
[   61.447663][ T5087] FAT-fs (loop0): Directory bread(block 1285) failed
[   61.448391][ T5105] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   61.454403][ T5087] FAT-fs (loop0): Directory bread(block 1285) failed
[   61.454533][ T5087] FAT-fs (loop0): Directory bread(block 1285) failed
[   61.467103][ T5105] EXT4-fs error (device loop1): ext4_ext_check_inode:520: inode #11: comm syz.1.535: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   61.496833][ T5105] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.535: couldn't read orphan inode 11 (err -117)
[   61.516854][ T5105] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.535: Invalid block bitmap block 0 in block_group 0
[   61.532152][ T5105] EXT4-fs error (device loop1): ext4_acquire_dquot:6848: comm syz.1.535: Failed to acquire dquot type 0
[   61.534140][ T5109] pim6reg: entered allmulticast mode
[   61.585998][ T5117] loop1: detected capacity change from 0 to 512
[   61.589219][ T5109] pim6reg: left allmulticast mode
[   61.602393][ T5117] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   61.617245][ T5121] netlink: 256 bytes leftover after parsing attributes in process `syz.4.542'.
[   61.623002][ T5124] loop2: detected capacity change from 0 to 2048
[   61.626223][ T5121] netlink: 72 bytes leftover after parsing attributes in process `syz.4.542'.
[   61.655582][ T5117] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.540: iget: bad extra_isize 7 (inode size 256)
[   61.655963][ T5117] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.540: couldn't read orphan inode 15 (err -117)
[   61.657340][ T5118] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   61.657473][ T5117] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   61.657505][ T5118] vhci_hcd: default hub control req: 4012 v0007 i0006 l0
[   61.698675][ T5124] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.543: bad orphan inode 8192
[   61.708573][ T5128] syz_tun: entered promiscuous mode
[   61.724010][ T5128] vlan2: entered promiscuous mode
[   61.733019][ T5128] syz_tun: left promiscuous mode
[   61.771039][ T5132] team0: Port device syz_tun added
[   61.777973][ T5134] ip6gre0: Master is either lo or non-ether device
[   61.814677][ T5141] FAULT_INJECTION: forcing a failure.
[   61.814677][ T5141] name failslab, interval 1, probability 0, space 0, times 0
[   61.827321][ T5141] CPU: 0 UID: 0 PID: 5141 Comm: syz.3.548 Not tainted 6.11.0-rc4-syzkaller-00033-g872cf28b8df9 #0
[   61.837983][ T5141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   61.848015][ T5141] Call Trace:
[   61.851352][ T5141]  <TASK>
[   61.854259][ T5141]  dump_stack_lvl+0xf2/0x150
[   61.858903][ T5141]  dump_stack+0x15/0x20
[   61.863067][ T5141]  should_fail_ex+0x229/0x230
[   61.867755][ T5141]  ? nsim_fib_event_nb+0x244/0xd40
[   61.872893][ T5141]  should_failslab+0x8f/0xb0
[   61.877555][ T5141]  __kmalloc_noprof+0xa5/0x370
[   61.882327][ T5141]  nsim_fib_event_nb+0x244/0xd40
[   61.887261][ T5141]  ? fib6_add_1+0x785/0xae0
[   61.891800][ T5141]  ? kmem_cache_alloc_noprof+0x20d/0x290
[   61.897438][ T5141]  ? __pfx_nsim_fib_event_nb+0x10/0x10
[   61.903064][ T5141]  atomic_notifier_call_chain+0x76/0x1d0
[   61.908779][ T5141]  ? fib6_add_1+0x97e/0xae0
[   61.913298][ T5141]  call_fib_notifiers+0x66/0xa0
[   61.918148][ T5141]  call_fib6_notifiers+0x32/0x40
[   61.923161][ T5141]  fib6_add+0xea9/0x21b0
[   61.927488][ T5141]  ? __ipv6_addr_type+0x143/0x210
[   61.932526][ T5141]  ? ip6_route_info_create+0xabd/0xba0
[   61.938016][ T5141]  ip6_route_add+0x71/0x120
[   61.942573][ T5141]  ipv6_route_ioctl+0x28b/0x2d0
[   61.947421][ T5141]  inet6_ioctl+0x153/0x190
[   61.951857][ T5141]  sock_do_ioctl+0x81/0x260
[   61.956368][ T5141]  sock_ioctl+0x470/0x640
[   61.960710][ T5141]  ? __pfx_sock_ioctl+0x10/0x10
[   61.965660][ T5141]  __se_sys_ioctl+0xd3/0x150
[   61.970293][ T5141]  __x64_sys_ioctl+0x43/0x50
[   61.974881][ T5141]  x64_sys_call+0x15cc/0x2d60
[   61.979559][ T5141]  do_syscall_64+0xc9/0x1c0
[   61.984071][ T5141]  ? clear_bhb_loop+0x55/0xb0
[   61.988749][ T5141]  ? clear_bhb_loop+0x55/0xb0
[   61.993447][ T5141]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.999423][ T5141] RIP: 0033:0x7f0148d49e79
[   62.003831][ T5141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.023474][ T5141] RSP: 002b:00007f01479c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   62.031882][ T5141] RAX: ffffffffffffffda RBX: 00007f0148ee5f80 RCX: 00007f0148d49e79
[   62.039958][ T5141] RDX: 0000000020000000 RSI: 000000000000890b RDI: 0000000000000004
[   62.047960][ T5141] RBP: 00007f01479c7090 R08: 0000000000000000 R09: 0000000000000000
[   62.055921][ T5141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.063877][ T5141] R13: 0000000000000000 R14: 00007f0148ee5f80 R15: 00007ffca3166858
[   62.071860][ T5141]  </TASK>
[   62.092499][ T5146] netlink: 45 bytes leftover after parsing attributes in process `syz.2.546'.
[   62.132838][ T5149] loop1: detected capacity change from 0 to 1024
[   62.143548][ T5149] EXT4-fs: Ignoring removed nobh option
[   62.150360][ T5158] FAULT_INJECTION: forcing a failure.
[   62.150360][ T5158] name failslab, interval 1, probability 0, space 0, times 0
[   62.163006][ T5158] CPU: 0 UID: 0 PID: 5158 Comm: syz.4.553 Not tainted 6.11.0-rc4-syzkaller-00033-g872cf28b8df9 #0
[   62.173596][ T5158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   62.183640][ T5158] Call Trace:
[   62.186916][ T5158]  <TASK>
[   62.189511][ T5160] loop3: detected capacity change from 0 to 512
[   62.189833][ T5158]  dump_stack_lvl+0xf2/0x150
[   62.200660][ T5158]  dump_stack+0x15/0x20
[   62.204895][ T5158]  should_fail_ex+0x229/0x230
[   62.209627][ T5158]  ? vm_area_dup+0x98/0x130
[   62.214197][ T5158]  should_failslab+0x8f/0xb0
[   62.218827][ T5158]  kmem_cache_alloc_noprof+0x4c/0x290
[   62.219181][ T5160] EXT4-fs: EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[   62.224247][ T5158]  vm_area_dup+0x98/0x130
[   62.224277][ T5158]  copy_mm+0x60b/0x10e0
[   62.242247][ T5158]  copy_process+0xee1/0x1fc0
[   62.246830][ T5158]  kernel_clone+0x167/0x5e0
[   62.251329][ T5158]  ? vfs_write+0x5a5/0x900
[   62.255749][ T5158]  __x64_sys_clone+0xe8/0x120
[   62.260425][ T5158]  x64_sys_call+0x2d23/0x2d60
[   62.265170][ T5158]  do_syscall_64+0xc9/0x1c0
[   62.265966][ T5149] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   62.269668][ T5158]  ? clear_bhb_loop+0x55/0xb0
[   62.284556][ T5158]  ? clear_bhb_loop+0x55/0xb0
[   62.289293][ T5158]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.295193][ T5158] RIP: 0033:0x7f38069e9e79
[   62.299647][ T5158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.319260][ T5158] RSP: 002b:00007f3805666fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[   62.327693][ T5158] RAX: ffffffffffffffda RBX: 00007f3806b85f80 RCX: 00007f38069e9e79
[   62.335658][ T5158] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   62.343629][ T5158] RBP: 00007f3805667090 R08: 0000000000000000 R09: 0000000000000000
[   62.351589][ T5158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   62.357868][ T5163] 9pnet_virtio: no channels available for device 
[   62.359541][ T5158] R13: 0000000000000000 R14: 00007f3806b85f80 R15: 00007ffe33f257b8
[   62.359561][ T5158]  </TASK>
[   62.386415][ T5149] EXT4-fs error (device loop1): ext4_ext_check_inode:520: inode #11: comm syz.1.550: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   62.407501][ T5149] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.550: couldn't read orphan inode 11 (err -117)
[   62.441270][ T5169] ip6gre0: Master is either lo or non-ether device
[   62.450534][ T5149] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.550: Invalid block bitmap block 0 in block_group 0
[   62.473791][ T5149] EXT4-fs error (device loop1): ext4_acquire_dquot:6848: comm syz.1.550: Failed to acquire dquot type 0
[   62.510445][ T5177] loop4: detected capacity change from 0 to 512
[   62.523684][ T5177] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   62.541156][ T5177] EXT4-fs (loop4): 1 truncate cleaned up
[   62.605237][ T5186] loop3: detected capacity change from 0 to 128
[   62.660688][ T5189] loop4: detected capacity change from 0 to 2048
[   62.684434][ T5192] team0: Device ipvlan2 failed to register rx_handler
[   62.719128][ T5196] loop0: detected capacity change from 0 to 2048
[   62.748406][ T5196] EXT4-fs error (device loop0): ext4_orphan_get:1417: comm syz.0.569: bad orphan inode 8192
[   62.772872][ T5201] ip6gre0: Master is either lo or non-ether device
[   62.789559][ T5207] netlink: 180 bytes leftover after parsing attributes in process `syz.4.573'.
[   62.790185][ T5204] loop1: detected capacity change from 0 to 2048
[   62.798641][ T5207] netlink: 56 bytes leftover after parsing attributes in process `syz.4.573'.
[   62.857496][ T5211] loop4: detected capacity change from 0 to 2048
[   62.858799][ T5204] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   62.887455][ T4434] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz-executor: corrupted in-inode xattr: e_name out of bounds
[   62.902819][ T4434] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz-executor: corrupted in-inode xattr: e_name out of bounds
[   62.959402][ T4434] team0: Port device syz_tun removed
[   62.990555][ T5225] loop4: detected capacity change from 0 to 128
[   63.016101][   T11] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.073585][   T11] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.133365][   T11] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.174015][ T5241] loop1: detected capacity change from 0 to 1024
[   63.190782][ T5241] EXT4-fs: Ignoring removed orlov option
[   63.201783][   T11] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.223804][ T5241] EXT4-fs (loop1): can't mount with journal_checksum, fs mounted w/o journal
[   63.252875][ T5241] loop1: detected capacity change from 0 to 1024
[   63.270983][ T5232] chnl_net:caif_netlink_parms(): no params data found
[   63.309863][ T4489] EXT4-fs error (device loop1): ext4_readdir:260: inode #11: block 38: comm syz-executor: path /54/file1/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=327680, rec_len=0, size=1024 fake=0
[   63.348587][ T4489] EXT4-fs error (device loop1): ext4_empty_dir:3126: inode #11: block 38: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=327680, rec_len=0, size=1024 fake=0
[   63.370973][   T11] bridge_slave_1: left allmulticast mode
[   63.376659][   T11] bridge_slave_1: left promiscuous mode
[   63.382288][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.392053][   T11] bridge_slave_0: left allmulticast mode
[   63.397764][   T11] bridge_slave_0: left promiscuous mode
[   63.403484][ T4489] EXT4-fs error (device loop1): ext4_readdir:260: inode #11: block 38: comm syz-executor: path /54/file1/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=327680, rec_len=0, size=1024 fake=0
[   63.403587][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.433717][ T4489] EXT4-fs error (device loop1): ext4_empty_dir:3126: inode #11: block 38: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=327680, rec_len=0, size=1024 fake=0
[   63.454459][ T4489] EXT4-fs error (device loop1): ext4_readdir:260: inode #11: block 38: comm syz-executor: path /54/file1/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=327680, rec_len=0, size=1024 fake=0
[   63.478890][ T4489] EXT4-fs error (device loop1): ext4_empty_dir:3126: inode #11: block 38: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=327680, rec_len=0, size=1024 fake=0
[   63.527812][ T4489] EXT4-fs error (device loop1): ext4_readdir:260: inode #11: block 38: comm syz-executor: path /54/file1/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=327680, rec_len=0, size=1024 fake=0
[   63.572465][ T4489] EXT4-fs error (device loop1): ext4_empty_dir:3126: inode #11: block 38: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=327680, rec_len=0, size=1024 fake=0
[   63.594223][ T4489] EXT4-fs error (device loop1): ext4_readdir:260: inode #11: block 38: comm syz-executor: path /54/file1/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=327680, rec_len=0, size=1024 fake=0
[   63.617683][ T4489] EXT4-fs error (device loop1): ext4_empty_dir:3126: inode #11: block 38: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=327680, rec_len=0, size=1024 fake=0
[   63.642187][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   63.666890][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   63.714561][   T11] bond0 (unregistering): Released all slaves
[   63.753651][ T5232] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.760725][ T5232] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.769100][ T5232] bridge_slave_0: entered allmulticast mode
[   63.775529][ T5232] bridge_slave_0: entered promiscuous mode
[   63.804832][ T5209] kexec: Could not allocate control_code_buffer
[   63.820435][ T5232] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.827748][ T5232] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.838714][ T5232] bridge_slave_1: entered allmulticast mode
[   63.846232][ T5232] bridge_slave_1: entered promiscuous mode
[   63.864387][ T5232] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   63.875236][ T5232] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   63.898194][ T5232] team0: Port device team_slave_0 added
[   63.907201][ T5232] team0: Port device team_slave_1 added
[   63.946172][   T11] hsr_slave_0: left promiscuous mode
[   63.954929][   T11] hsr_slave_1: left promiscuous mode
[   63.966585][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   63.974157][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[   63.981834][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   63.989242][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[   63.998461][   T11] veth1_macvtap: left promiscuous mode
[   64.004217][   T11] veth0_macvtap: left promiscuous mode
[   64.009895][   T11] veth1_vlan: left promiscuous mode
[   64.015131][   T11] veth0_vlan: left promiscuous mode
[   64.174738][   T11] team0 (unregistering): Port device team_slave_1 removed
[   64.194652][   T11] team0 (unregistering): Port device team_slave_0 removed
[   64.247806][ T5232] batman_adv: batadv0: Adding interface: batadv_slave_0
[   64.254846][ T5232] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.281346][ T5232] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   64.324732][ T5232] batman_adv: batadv0: Adding interface: batadv_slave_1
[   64.331742][ T5232] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.357670][ T5232] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   64.452557][ T5232] hsr_slave_0: entered promiscuous mode
[   64.458914][ T5232] hsr_slave_1: entered promiscuous mode
[   64.465010][ T5232] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   64.472541][ T5232] Cannot create hsr debugfs directory
[   64.590390][ T5294] chnl_net:caif_netlink_parms(): no params data found
[   64.638821][ T5294] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.645925][ T5294] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.654587][ T5294] bridge_slave_0: entered allmulticast mode
[   64.661075][ T5294] bridge_slave_0: entered promiscuous mode
[   64.668205][ T5294] bridge0: port 2(bridge_slave_1) entered blocking state
[   64.675406][ T5294] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.682734][ T5294] bridge_slave_1: entered allmulticast mode
[   64.689247][ T5294] bridge_slave_1: entered promiscuous mode
[   64.710859][ T5294] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   64.722481][ T5294] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   64.736283][   T11] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.761653][ T5294] team0: Port device team_slave_0 added
[   64.768172][ T5294] team0: Port device team_slave_1 added
[   64.784086][ T5294] batman_adv: batadv0: Adding interface: batadv_slave_0
[   64.791132][ T5294] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.817092][ T5294] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   64.831889][   T11] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.843795][ T5294] batman_adv: batadv0: Adding interface: batadv_slave_1
[   64.850765][ T5294] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.876726][ T5294] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   64.909869][ T5294] hsr_slave_0: entered promiscuous mode
[   64.917322][ T5294] hsr_slave_1: entered promiscuous mode
[   64.919587][ T5316] loop3: detected capacity change from 0 to 256
[   64.929836][ T5316] FAT-fs (loop3): Directory bread(block 1285) failed
[   64.930434][ T5294] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   64.937455][ T5316] FAT-fs (loop3): Directory bread(block 1285) failed
[   64.944641][ T5294] Cannot create hsr debugfs directory
[   64.952383][ T5316] FAT-fs (loop3): Directory bread(block 1285) failed
[   64.962958][ T5316] FAT-fs (loop3): Directory bread(block 1285) failed
[   64.970910][   T11] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.977766][ T5316] FAT-fs (loop3): Directory bread(block 1285) failed
[   64.987967][ T5316] FAT-fs (loop3): Directory bread(block 1285) failed
[   64.994766][ T5316] FAT-fs (loop3): Directory bread(block 1285) failed
[   65.005709][ T5316] FAT-fs (loop3): Directory bread(block 1285) failed
[   65.007393][ T5232] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   65.012473][ T5316] FAT-fs (loop3): Directory bread(block 1285) failed
[   65.025841][ T5316] FAT-fs (loop3): Directory bread(block 1285) failed
[   65.027770][ T5232] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   65.050690][   T11] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.069915][ T5232] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   65.083732][ T5232] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   65.092189][   T29] kauditd_printk_skb: 27 callbacks suppressed
[   65.092202][   T29] audit: type=1326 audit(1724307889.164:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5318 comm="syz.3.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0148d49e79 code=0x7ffc0000
[   65.121770][ T5319] loop3: detected capacity change from 0 to 128
[   65.122794][   T29] audit: type=1326 audit(1724307889.174:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5318 comm="syz.3.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=126 compat=0 ip=0x7f0148d49e79 code=0x7ffc0000
[   65.151328][   T29] audit: type=1326 audit(1724307889.174:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5318 comm="syz.3.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0148d49e79 code=0x7ffc0000
[   65.174611][   T29] audit: type=1326 audit(1724307889.174:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5318 comm="syz.3.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0148d49e79 code=0x7ffc0000
[   65.197818][   T29] audit: type=1326 audit(1724307889.174:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5318 comm="syz.3.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f0148d49e79 code=0x7ffc0000
[   65.221036][   T29] audit: type=1326 audit(1724307889.174:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5318 comm="syz.3.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0148d49e79 code=0x7ffc0000
[   65.244361][   T29] audit: type=1326 audit(1724307889.174:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5318 comm="syz.3.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0148d49e79 code=0x7ffc0000
[   65.267712][   T29] audit: type=1326 audit(1724307889.174:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5318 comm="syz.3.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0148d49e79 code=0x7ffc0000
[   65.290975][   T29] audit: type=1326 audit(1724307889.174:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5318 comm="syz.3.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f0148d49eb3 code=0x7ffc0000
[   65.314106][   T29] audit: type=1326 audit(1724307889.174:654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5318 comm="syz.3.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f0148d4895f code=0x7ffc0000
[   65.380733][   T11] bridge_slave_1: left allmulticast mode
[   65.386457][   T11] bridge_slave_1: left promiscuous mode
[   65.387604][ T5324] loop3: detected capacity change from 0 to 128
[   65.392052][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.408893][   T11] bridge_slave_0: left allmulticast mode
[   65.414643][   T11] bridge_slave_0: left promiscuous mode
[   65.420544][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.458144][ T5329] block device autoloading is deprecated and will be removed.
[   65.535976][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   65.546198][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   65.558020][   T11] bond0 (unregistering): Released all slaves
[   65.581549][ T5338] netlink: 12 bytes leftover after parsing attributes in process `syz.4.607'.
[   65.602608][ T5232] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.617230][ T5232] 8021q: adding VLAN 0 to HW filter on device team0
[   65.626862][  T327] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.633926][  T327] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.650255][ T3276] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.657393][ T3276] bridge0: port 2(bridge_slave_1) entered forwarding state
[   65.677477][   T11] hsr_slave_0: left promiscuous mode
[   65.682977][   T11] hsr_slave_1: left promiscuous mode
[   65.688864][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   65.696376][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[   65.704564][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   65.712026][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[   65.720885][   T11] veth1_macvtap: left promiscuous mode
[   65.726393][   T11] veth0_macvtap: left promiscuous mode
[   65.731972][   T11] veth1_vlan: left promiscuous mode
[   65.737198][   T11] veth0_vlan: left promiscuous mode
[   65.810482][   T11] team0 (unregistering): Port device team_slave_1 removed
[   65.820443][   T11] team0 (unregistering): Port device team_slave_0 removed
[   65.884458][ T5232] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   65.938977][ T5232] 8021q: adding VLAN 0 to HW filter on device batadv0
[   65.975956][ T5368] netlink: 36 bytes leftover after parsing attributes in process `syz.3.616'.
[   65.985630][ T5294] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   65.996768][ T5294] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   66.005320][ T5294] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   66.013933][ T5294] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   66.066558][ T5375] netlink: 20 bytes leftover after parsing attributes in process `syz.3.617'.
[   66.084050][ T5232] veth0_vlan: entered promiscuous mode
[   66.089789][ T5375] netlink: 20 bytes leftover after parsing attributes in process `syz.3.617'.
[   66.102513][ T5232] veth1_vlan: entered promiscuous mode
[   66.112242][ T5294] 8021q: adding VLAN 0 to HW filter on device bond0
[   66.126512][ T5232] veth0_macvtap: entered promiscuous mode
[   66.136286][ T5232] veth1_macvtap: entered promiscuous mode
[   66.150178][ T5294] 8021q: adding VLAN 0 to HW filter on device team0
[   66.169203][ T3377] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.176401][ T3377] bridge0: port 1(bridge_slave_0) entered forwarding state
[   66.186924][ T5232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   66.198731][ T5232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.208991][ T5232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   66.219504][ T5232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.229364][ T5232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   66.239784][ T5232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.249661][ T5232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   66.260136][ T5232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.271295][ T5232] batman_adv: batadv0: Interface activated: batadv_slave_0
[   66.279587][ T5232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   66.290149][ T5232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.300015][ T5232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   66.310439][ T5232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.320283][ T5232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   66.330745][ T5232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.340761][ T5232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   66.351412][ T5232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.362509][ T5232] batman_adv: batadv0: Interface activated: batadv_slave_1
[   66.394573][ T5232] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   66.403281][ T5232] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   66.412043][ T5232] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   66.420765][ T5232] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   66.445334][   T50] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.452407][   T50] bridge0: port 2(bridge_slave_1) entered forwarding state
[   66.542293][ T5388] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   66.554636][ T5384] netlink: 'syz.3.621': attribute type 15 has an invalid length.
[   66.562358][ T5384] netlink: 'syz.3.621': attribute type 7 has an invalid length.
[   66.590513][ T5294] 8021q: adding VLAN 0 to HW filter on device batadv0
[   66.592656][ T5382] loop4: detected capacity change from 0 to 32768
[   66.616183][ T5393] loop0: detected capacity change from 0 to 512
[   66.625290][ T5393] EXT4-fs (loop0): corrupt root inode, run e2fsck
[   66.626510][ T5384] syzkaller0: entered promiscuous mode
[   66.631726][ T5393] EXT4-fs (loop0): mount failed
[   66.637197][ T5384] syzkaller0: entered allmulticast mode
[   66.656577][ T5382]  loop4: p1 p2 p3 < p5 p6 > p4
[   66.659213][ T5393] loop0: detected capacity change from 0 to 1024
[   66.661474][ T5382] loop4: p1 size 242222080 extends beyond EOD, truncated
[   66.670410][ T5393] EXT4-fs mount: 46 callbacks suppressed
[   66.670422][ T5393] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.682074][ T5384] syzkaller0: refused to change device tx_queue_len
[   66.696446][ T5382] loop4: p2 start 4294967295 is beyond EOD, truncated
[   66.788631][ T5294] veth0_vlan: entered promiscuous mode
[   66.799993][ T5294] veth1_vlan: entered promiscuous mode
[   66.812952][ T5404] netlink: 28 bytes leftover after parsing attributes in process `syz.4.623'.
[   66.821917][ T5404] netlink: 28 bytes leftover after parsing attributes in process `syz.4.623'.
[   66.838165][ T5232] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.855281][ T5406] bridge: RTM_DELNEIGH with unconfigured vlan 2 on bridge_slave_0
[   66.865461][ T5294] veth0_macvtap: entered promiscuous mode
[   66.869970][ T5406] FAULT_INJECTION: forcing a failure.
[   66.869970][ T5406] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   66.874272][ T5294] veth1_macvtap: entered promiscuous mode
[   66.884212][ T5406] CPU: 0 UID: 0 PID: 5406 Comm: syz.4.625 Not tainted 6.11.0-rc4-syzkaller-00033-g872cf28b8df9 #0
[   66.900443][ T5410] loop0: detected capacity change from 0 to 2048
[   66.900472][ T5406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   66.911063][ T5294] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   66.916793][ T5406] Call Trace:
[   66.916801][ T5406]  <TASK>
[   66.916807][ T5406]  dump_stack_lvl+0xf2/0x150
[   66.927241][ T5294] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.930437][ T5406]  dump_stack+0x15/0x20
[   66.933341][ T5294] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   66.937903][ T5406]  should_fail_ex+0x229/0x230
[   66.947739][ T5294] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.951847][ T5406]  should_fail+0xb/0x10
[   66.962336][ T5294] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   66.966956][ T5406]  should_fail_usercopy+0x1a/0x20
[   66.976740][ T5294] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.976753][ T5294] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   66.980957][ T5406]  _copy_from_user+0x1e/0xd0
[   66.981023][ T5406]  kstrtouint_from_user+0x76/0xe0
[   66.991439][ T5294] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.996382][ T5406]  proc_fail_nth_write+0x4f/0x160
[   67.006168][ T5294] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   67.016526][ T5406]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   67.021089][ T5294] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   67.026079][ T5406]  vfs_write+0x28b/0x900
[   67.039356][ T5294] batman_adv: batadv0: Interface activated: batadv_slave_0
[   67.040844][ T5406]  ? __fget_files+0x1da/0x210
[   67.052155][ T5294] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   67.056818][ T5406]  ksys_write+0xeb/0x1b0
[   67.066609][ T5294] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   67.070804][ T5406]  __x64_sys_write+0x42/0x50
[   67.077971][ T5294] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   67.082601][ T5406]  x64_sys_call+0x27dd/0x2d60
[   67.093049][ T5294] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   67.097177][ T5406]  do_syscall_64+0xc9/0x1c0
[   67.106962][ T5294] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   67.106974][ T5294] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   67.106984][ T5294] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   67.111557][ T5406]  ? clear_bhb_loop+0x55/0xb0
[   67.121936][ T5294] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   67.126610][ T5406]  ? clear_bhb_loop+0x55/0xb0
[   67.136414][ T5294] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   67.140852][ T5406]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.151233][ T5294] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   67.160987][ T5406] RIP: 0033:0x7f38069e895f
[   67.161004][ T5406] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[   67.173797][ T5294] batman_adv: batadv0: Interface activated: batadv_slave_1
[   67.176009][ T5406] RSP: 002b:00007f3805667030 EFLAGS: 00000293
[   67.197374][ T5294] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.200817][ T5406]  ORIG_RAX: 0000000000000001
[   67.206705][ T5294] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.216441][ T5406] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f38069e895f
[   67.216456][ T5406] RDX: 0000000000000001 RSI: 00007f38056670a0 RDI: 0000000000000006
[   67.220840][ T5294] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.240407][ T5406] RBP: 00007f3805667090 R08: 0000000000000000 R09: 0000000000000000
[   67.240420][ T5406] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[   67.240432][ T5406] R13: 0000000000000000 R14: 00007f3806b85f80 R15: 00007ffe33f257b8
[   67.247687][ T5294] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.253625][ T5406]  </TASK>
[   67.342488][ T5414] loop4: detected capacity change from 0 to 1024
[   67.349918][ T5414] EXT4-fs: Ignoring removed nobh option
[   67.356215][ T5410] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.385463][ T5414] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   67.403757][ T5232] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.405016][ T5414] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #11: comm syz.4.627: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   67.450998][ T5414] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.627: couldn't read orphan inode 11 (err -117)
[   67.464592][ T5414] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.472488][ T5422] loop0: detected capacity change from 0 to 128
[   67.498828][ T5426] loop1: detected capacity change from 0 to 512
[   67.499894][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[   67.516341][ T5422] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   67.529133][ T5426] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   67.529278][ T5422] ext4 filesystem being mounted at /3/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.539560][ T5426] EXT4-fs (loop1): orphan cleanup on readonly fs
[   67.555501][ T5426] EXT4-fs warning (device loop1): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   67.573185][ T3620] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.576011][ T5426] EXT4-fs (loop1): Cannot turn on quotas: error -117
[   67.595767][ T5426] EXT4-fs (loop1): 1 truncate cleaned up
[   67.596067][ T5434] af_packet: tpacket_rcv: packet too big, clamped from 28 to 4294967272. macoff=96
[   67.601773][ T5426] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   67.623723][ T5232] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   67.642097][ T5438] loop0: detected capacity change from 0 to 128
[   67.650982][ T5438] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   67.663240][ T5438] ext4 filesystem being mounted at /4/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   67.732936][ T5294] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.752139][ T5455] loop1: detected capacity change from 0 to 512
[   67.759087][ T5438] loop0: detected capacity change from 128 to 64
[   67.759328][ T5457] loop3: detected capacity change from 0 to 1024
[   67.765715][ T5455] EXT4-fs: Ignoring removed mblk_io_submit option
[   67.773985][ T5438] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5810: Out of memory
[   67.779260][ T5455] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   67.789689][ T5438] EXT4-fs error (device loop0): ext4_dirty_inode:6014: inode #12: comm syz.0.634: mark_inode_dirty error
[   67.800842][ T5457] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.810917][ T5438] FAULT_INJECTION: forcing a failure.
[   67.810917][ T5438] name failslab, interval 1, probability 0, space 0, times 0
[   67.821884][ T5455] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.638: corrupted in-inode xattr: e_value out of bounds
[   67.833193][ T5438] CPU: 1 UID: 0 PID: 5438 Comm: syz.0.634 Not tainted 6.11.0-rc4-syzkaller-00033-g872cf28b8df9 #0
[   67.833219][ T5438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   67.833231][ T5438] Call Trace:
[   67.848486][ T5455] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.638: couldn't read orphan inode 15 (err -117)
[   67.857656][ T5438]  <TASK>
[   67.857724][ T5438]  dump_stack_lvl+0xf2/0x150
[   67.857758][ T5438]  dump_stack+0x15/0x20
[   67.869522][ T5455] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.871059][ T5438]  should_fail_ex+0x229/0x230
[   67.871089][ T5438]  ? ext4_mb_new_blocks+0x7ad/0x2020
[   67.871131][ T5438]  should_failslab+0x8f/0xb0
[   67.921181][ T5438]  kmem_cache_alloc_noprof+0x4c/0x290
[   67.926655][ T5438]  ext4_mb_new_blocks+0x7ad/0x2020
[   67.931790][ T5438]  ? bdev_getblk+0x367/0x3b0
[   67.936379][ T5438]  ext4_new_meta_blocks+0xc1/0x1a0
[   67.941483][ T5438]  ext4_ind_map_blocks+0xb91/0x14f0
[   67.946693][ T5438]  ext4_map_blocks+0x6de/0xf50
[   67.951439][ T5438]  _ext4_get_block+0x104/0x370
[   67.956183][ T5438]  ext4_get_block+0x39/0x50
[   67.960663][ T5438]  __block_write_begin_int+0x417/0xfa0
[   67.966106][ T5438]  ? __pfx_ext4_get_block+0x10/0x10
[   67.971360][ T5438]  ? __pfx_ext4_get_block+0x10/0x10
[   67.976537][ T5438]  __block_write_begin+0x5e/0x110
[   67.981548][ T5438]  ext4_write_begin+0x41e/0xbb0
[   67.986453][ T5438]  ? __rcu_read_unlock+0x4e/0x70
[   67.991368][ T5438]  ext4_da_write_begin+0x1ba/0x550
[   67.996531][ T5438]  generic_perform_write+0x1b4/0x580
[   68.001806][ T5438]  ext4_buffered_write_iter+0x1f6/0x380
[   68.007380][ T5438]  ext4_file_write_iter+0x29f/0xe30
[   68.012575][ T5438]  ? kstrtouint+0x77/0xc0
[   68.016882][ T5438]  ? kstrtouint_from_user+0xb0/0xe0
[   68.022063][ T5438]  ? avc_policy_seqno+0x15/0x20
[   68.026913][ T5438]  ? selinux_file_permission+0x22c/0x360
[   68.032575][ T5438]  vfs_write+0x78f/0x900
[   68.036801][ T5438]  ? __pfx_ext4_file_write_iter+0x10/0x10
[   68.042589][ T5438]  ksys_write+0xeb/0x1b0
[   68.046864][ T5438]  __x64_sys_write+0x42/0x50
[   68.051441][ T5438]  x64_sys_call+0x27dd/0x2d60
[   68.056098][ T5438]  do_syscall_64+0xc9/0x1c0
[   68.060583][ T5438]  ? clear_bhb_loop+0x55/0xb0
[   68.065242][ T5438]  ? clear_bhb_loop+0x55/0xb0
[   68.069928][ T5438]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.075806][ T5438] RIP: 0033:0x7f38f49b9e79
[   68.080264][ T5438] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.099865][ T5438] RSP: 002b:00007f38f3637038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   68.108268][ T5438] RAX: ffffffffffffffda RBX: 00007f38f4b55f80 RCX: 00007f38f49b9e79
[   68.116221][ T5438] RDX: 0000000000000018 RSI: 0000000020000040 RDI: 0000000000000004
[   68.124187][ T5438] RBP: 00007f38f3637090 R08: 0000000000000000 R09: 0000000000000000
[   68.132142][ T5438] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.140098][ T5438] R13: 0000000000000000 R14: 00007f38f4b55f80 R15: 00007ffda5bc7c68
[   68.148127][ T5438]  </TASK>
[   68.154413][ T5438] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5810: Out of memory
[   68.164753][ T5438] EXT4-fs error (device loop0): ext4_dirty_inode:6014: inode #12: comm syz.0.634: mark_inode_dirty error
[   68.164899][ T4401] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.176152][ T5438] EXT4-fs error (device loop0): ext4_free_branches:1043: inode #12: block 39: comm syz.0.634: Read failure
[   68.196936][ T5438] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5810: Out of memory
[   68.206138][ T5438] EXT4-fs error (device loop0): ext4_truncate:4241: inode #12: comm syz.0.634: mark_inode_dirty error
[   68.221376][   T24] IPVS: starting estimator thread 0...
[   68.228465][ T5294] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.243893][ T5232] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5810: Out of memory
[   68.263537][ T5232] EXT4-fs error (device loop0): ext4_dirty_inode:6014: inode #2: comm syz-executor: mark_inode_dirty error
[   68.305767][ T5473] loop3: detected capacity change from 0 to 256
[   68.313569][ T5466] IPVS: using max 2880 ests per chain, 144000 per kthread
[   68.335356][ T5475] loop1: detected capacity change from 0 to 256
[   68.417985][ T5477] netlink: 24 bytes leftover after parsing attributes in process `syz.3.645'.
[   68.538892][ T5490] loop4: detected capacity change from 0 to 2048
[   68.547642][ T5494] netlink: 28 bytes leftover after parsing attributes in process `syz.1.653'.
[   68.557748][ T5490] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.569909][ T5490] ext4 filesystem being mounted at /129/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.574672][ T5498] loop1: detected capacity change from 0 to 1024
[   68.588381][ T5498] EXT4-fs: Ignoring removed nobh option
[   68.594950][ T3620] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.607513][ T5498] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.637196][ T5294] EXT4-fs error (device loop1): ext4_readdir:260: inode #11: block 32: comm syz-executor: path /12/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[   68.645682][ T5502] loop4: detected capacity change from 0 to 4096
[   68.659128][ T5294] EXT4-fs error (device loop1): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[   68.685130][ T5294] EXT4-fs warning (device loop1): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[   68.686848][ T5502] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.697703][ T5294] EXT4-fs error (device loop1): ext4_readdir:260: inode #11: block 32: comm syz-executor: path /12/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[   68.730844][ T5294] EXT4-fs error (device loop1): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[   68.750170][ T5294] EXT4-fs warning (device loop1): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[   68.751175][ T3620] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.763143][ T5294] EXT4-fs error (device loop1): ext4_readdir:260: inode #11: block 32: comm syz-executor: path /12/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[   68.793597][ T5294] EXT4-fs error (device loop1): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[   68.812808][ T5294] EXT4-fs warning (device loop1): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[   68.826583][ T5294] EXT4-fs error (device loop1): ext4_readdir:260: inode #11: block 32: comm syz-executor: path /12/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[   68.826671][ T5508] loop4: detected capacity change from 0 to 512
[   68.848920][ T5294] EXT4-fs error (device loop1): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[   68.873367][ T5508] EXT4-fs (loop4): can't mount with commit=127, fs mounted w/o journal
[   68.874446][ T5294] EXT4-fs warning (device loop1): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[   68.893295][ T5294] EXT4-fs error (device loop1): ext4_readdir:260: inode #11: block 32: comm syz-executor: path /12/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[   68.915223][ T5294] EXT4-fs error (device loop1): ext4_empty_dir:3094: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[   68.922538][ T5507] loop4: detected capacity change from 0 to 8192
[   68.935530][ T5294] EXT4-fs warning (device loop1): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[   68.952754][ T5294] EXT4-fs warning (device loop1): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[   68.964592][ T5294] EXT4-fs warning (device loop1): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[   68.976638][ T5294] EXT4-fs warning (device loop1): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[   68.988494][ T5294] EXT4-fs warning (device loop1): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[   69.003720][ T5294] EXT4-fs warning (device loop1): ext4_empty_dir:3096: inode #11: comm syz-executor: directory missing '.'
[   69.181188][ T5531] loop3: detected capacity change from 0 to 512
[   69.181594][ T5533] xt_l2tp: wrong L2TP version: 0
[   69.189944][ T5531] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.663: casefold flag without casefold feature
[   69.206888][ T5531] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.663: couldn't read orphan inode 15 (err -117)
[   69.219331][ T5531] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.243351][ T5531] can: request_module (can-proto-0) failed.
[   69.299436][ T4401] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.315651][ T5541] netlink: 28 bytes leftover after parsing attributes in process `syz.3.667'.
[   69.324700][ T5541] netlink: 32 bytes leftover after parsing attributes in process `syz.3.667'.
[   69.422908][ T5560] FAULT_INJECTION: forcing a failure.
[   69.422908][ T5560] name failslab, interval 1, probability 0, space 0, times 0
[   69.435588][ T5560] CPU: 0 UID: 0 PID: 5560 Comm: syz.4.666 Not tainted 6.11.0-rc4-syzkaller-00033-g872cf28b8df9 #0
[   69.446236][ T5560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   69.456274][ T5560] Call Trace:
[   69.459534][ T5560]  <TASK>
[   69.462450][ T5560]  dump_stack_lvl+0xf2/0x150
[   69.467066][ T5560]  dump_stack+0x15/0x20
[   69.471215][ T5560]  should_fail_ex+0x229/0x230
[   69.475940][ T5560]  ? rtnl_newlink+0x5d/0x1690
[   69.480605][ T5560]  should_failslab+0x8f/0xb0
[   69.485187][ T5560]  __kmalloc_cache_noprof+0x4b/0x2a0
[   69.490506][ T5560]  rtnl_newlink+0x5d/0x1690
[   69.494995][ T5560]  ? xa_load+0xb9/0xe0
[   69.499049][ T5560]  ? __memcg_slab_free_hook+0xc9/0x1e0
[   69.504499][ T5560]  ? __rcu_read_unlock+0x4e/0x70
[   69.509437][ T5560]  ? avc_has_perm_noaudit+0x1cc/0x210
[   69.514819][ T5560]  ? selinux_capable+0x1f2/0x260
[   69.519744][ T5560]  ? security_capable+0x64/0x80
[   69.524599][ T5560]  ? ns_capable+0x7d/0xb0
[   69.528919][ T5560]  ? __pfx_rtnl_newlink+0x10/0x10
[   69.534150][ T5560]  rtnetlink_rcv_msg+0x6aa/0x710
[   69.539077][ T5560]  ? ref_tracker_free+0x3a5/0x410
[   69.544187][ T5560]  ? __dev_queue_xmit+0x161/0x1fe0
[   69.549289][ T5560]  netlink_rcv_skb+0x12c/0x230
[   69.554109][ T5560]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   69.559559][ T5560]  rtnetlink_rcv+0x1c/0x30
[   69.563968][ T5560]  netlink_unicast+0x599/0x670
[   69.568784][ T5560]  netlink_sendmsg+0x5cc/0x6e0
[   69.573535][ T5560]  ? __pfx_netlink_sendmsg+0x10/0x10
[   69.578876][ T5560]  __sock_sendmsg+0x140/0x180
[   69.583544][ T5560]  ____sys_sendmsg+0x312/0x410
[   69.588412][ T5560]  __sys_sendmsg+0x1e9/0x280
[   69.593013][ T5560]  __x64_sys_sendmsg+0x46/0x50
[   69.597791][ T5560]  x64_sys_call+0x2689/0x2d60
[   69.602510][ T5560]  do_syscall_64+0xc9/0x1c0
[   69.607078][ T5560]  ? clear_bhb_loop+0x55/0xb0
[   69.611743][ T5560]  ? clear_bhb_loop+0x55/0xb0
[   69.616472][ T5560]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.622356][ T5560] RIP: 0033:0x7f38069e9e79
[   69.626753][ T5560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.646345][ T5560] RSP: 002b:00007f3805625038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   69.654770][ T5560] RAX: ffffffffffffffda RBX: 00007f3806b86130 RCX: 00007f38069e9e79
[   69.662724][ T5560] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000004
[   69.670740][ T5560] RBP: 00007f3805625090 R08: 0000000000000000 R09: 0000000000000000
[   69.678692][ T5560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.686754][ T5560] R13: 0000000000000001 R14: 00007f3806b86130 R15: 00007ffe33f257b8
[   69.694805][ T5560]  </TASK>
[   69.818913][ T5571] loop3: detected capacity change from 0 to 8192
[   69.873917][ T5571]  loop3: p1 < > p2 < p5 > p4
[   69.884637][ T5571] loop3: p4 size 16776960 extends beyond EOD, truncated
[   69.892043][ T5571] loop3: p5 size 16776960 extends beyond EOD, truncated
[   69.980232][ T5578] loop3: detected capacity change from 0 to 1024
[   69.986804][ T5578] EXT4-fs: Ignoring removed orlov option
[   69.992632][ T5578] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   70.001118][ T5578] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   70.012129][ T5578] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[   70.021849][ T5578] EXT4-fs error (device loop3): ext4_get_journal_inode:5740: inode #32: comm syz.3.677: iget: special inode unallocated
[   70.034765][ T5578] EXT4-fs (loop3): no journal found
[   70.040037][ T5578] EXT4-fs (loop3): can't get journal size
[   70.048928][ T5578] EXT4-fs error (device loop3): __ext4_iget:4985: inode #2: block 127754: comm syz.3.677: invalid block
[   70.060249][ T5578] EXT4-fs (loop3): get root inode failed
[   70.065898][ T5578] EXT4-fs (loop3): mount failed
[   70.998697][ T5595] __nla_validate_parse: 1 callbacks suppressed
[   70.998712][ T5595] netlink: 24 bytes leftover after parsing attributes in process `syz.4.683'.
[   71.026167][ T5595] loop4: detected capacity change from 0 to 2048
[   71.034559][ T5595] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.048527][ T5595] loop7: detected capacity change from 0 to 16384
[   71.107856][ T5594] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   71.117541][ T5594] Buffer I/O error on dev loop7, logical block 0, lost async page write
[   71.125871][ T5594] Buffer I/O error on dev loop7, logical block 1, lost async page write
[   71.134202][ T5594] Buffer I/O error on dev loop7, logical block 2, lost async page write
[   71.142512][ T5594] Buffer I/O error on dev loop7, logical block 3, lost async page write
[   71.150883][ T5594] Buffer I/O error on dev loop7, logical block 4, lost async page write
[   71.159229][ T5594] Buffer I/O error on dev loop7, logical block 5, lost async page write
[   71.167545][ T5594] Buffer I/O error on dev loop7, logical block 6, lost async page write
[   71.175913][ T5594] Buffer I/O error on dev loop7, logical block 7, lost async page write
[   71.184229][ T5594] Buffer I/O error on dev loop7, logical block 8, lost async page write
[   71.192592][ T5594] Buffer I/O error on dev loop7, logical block 9, lost async page write
[   71.202887][ T5594] I/O error, dev loop7, sector 1024 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   71.216204][ T5594] I/O error, dev loop7, sector 2048 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   71.228226][ T5594] I/O error, dev loop7, sector 3072 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   71.240654][ T5594] I/O error, dev loop7, sector 4096 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   71.252720][ T5594] I/O error, dev loop7, sector 5120 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   71.265127][ T5594] I/O error, dev loop7, sector 6144 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   71.276922][ T5594] I/O error, dev loop7, sector 7168 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   71.288641][ T5594] I/O error, dev loop7, sector 8192 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   71.300706][ T5594] I/O error, dev loop7, sector 9216 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   71.342979][ T3620] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.360458][ T5601] netlink: 12 bytes leftover after parsing attributes in process `syz.4.684'.
[   71.373418][ T5601] loop4: detected capacity change from 0 to 512
[   71.379978][ T5601] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   71.391414][ T5601] EXT4-fs (loop4): 1 orphan inode deleted
[   71.397345][ T5601] EXT4-fs (loop4): 1 truncate cleaned up
[   71.403213][ T5601] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.416449][ T5601] EXT4-fs error (device loop4): ext4_lookup:1811: inode #15: comm syz.4.684: iget: bad extra_isize 46 (inode size 256)
[   71.429124][ T5601] EXT4-fs (loop4): Remounting filesystem read-only
[   71.499306][ T5601] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[   71.508137][ T5601] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[   71.549636][ T3620] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.625241][ T5606] loop4: detected capacity change from 0 to 2048
[   71.634999][ T5606] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.647813][   T29] kauditd_printk_skb: 69 callbacks suppressed
[   71.647826][   T29] audit: type=1400 audit(1724307895.724:723): avc:  denied  { watch } for  pid=5604 comm="syz.4.685" path="/144/file0" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   71.940525][ T5615] geneve2: entered promiscuous mode
[   71.945758][ T5615] geneve2: entered allmulticast mode
[   72.405030][ T3620] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.547495][ T5621] FAULT_INJECTION: forcing a failure.
[   72.547495][ T5621] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   72.560559][ T5621] CPU: 0 UID: 0 PID: 5621 Comm: syz.4.690 Not tainted 6.11.0-rc4-syzkaller-00033-g872cf28b8df9 #0
[   72.571199][ T5621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   72.581231][ T5621] Call Trace:
[   72.584486][ T5621]  <TASK>
[   72.587401][ T5621]  dump_stack_lvl+0xf2/0x150
[   72.591997][ T5621]  dump_stack+0x15/0x20
[   72.596212][ T5621]  should_fail_ex+0x229/0x230
[   72.600948][ T5621]  should_fail+0xb/0x10
[   72.605083][ T5621]  should_fail_usercopy+0x1a/0x20
[   72.610103][ T5621]  copy_fpstate_to_sigframe+0x575/0x720
[   72.615695][ T5621]  ? copy_fpstate_to_sigframe+0xde/0x720
[   72.621332][ T5621]  ? _raw_spin_unlock_irq+0x14/0x50
[   72.626506][ T5621]  ? fpu__alloc_mathframe+0x95/0xd0
[   72.631746][ T5621]  get_sigframe+0x295/0x350
[   72.636246][ T5621]  x64_setup_rt_frame+0xa7/0x570
[   72.641163][ T5621]  arch_do_signal_or_restart+0x287/0x4b0
[   72.646785][ T5621]  syscall_exit_to_user_mode+0x59/0x130
[   72.652406][ T5621]  do_syscall_64+0xd6/0x1c0
[   72.656908][ T5621]  ? clear_bhb_loop+0x55/0xb0
[   72.661628][ T5621]  ? clear_bhb_loop+0x55/0xb0
[   72.666320][ T5621]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.672244][ T5621] RIP: 0033:0x7f38069e9e77
[   72.676642][ T5621] Code: ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89
[   72.696236][ T5621] RSP: 002b:00007f3805667038 EFLAGS: 00000246
[   72.702361][ T5621] RAX: 0000000000000000 RBX: 00007f3806b85f80 RCX: 00007f38069e9e79
[   72.710317][ T5621] RDX: 0000000000000039 RSI: 00000000200002c0 RDI: 0000000000000005
[   72.718272][ T5621] RBP: 00007f3805667090 R08: 0000000000000000 R09: 0000000000000000
[   72.726261][ T5621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   72.734216][ T5621] R13: 0000000000000000 R14: 00007f3806b85f80 R15: 00007ffe33f257b8
[   72.742171][ T5621]  </TASK>
[   72.748020][ T5232] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   72.769891][ T3377] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.782710][ T5623] loop4: detected capacity change from 0 to 1764
[   72.790679][   T29] audit: type=1400 audit(1724307896.864:724): avc:  denied  { mounton } for  pid=5622 comm="syz.4.691" path="/147/file0" dev="tmpfs" ino=811 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   72.817053][ T5626] FAULT_INJECTION: forcing a failure.
[   72.817053][ T5626] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   72.824572][ T5623] netlink: 260 bytes leftover after parsing attributes in process `syz.4.691'.
[   72.830170][ T5626] CPU: 0 UID: 0 PID: 5626 Comm: syz.3.694 Not tainted 6.11.0-rc4-syzkaller-00033-g872cf28b8df9 #0
[   72.849655][ T5626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   72.859806][ T5626] Call Trace:
[   72.863067][ T5626]  <TASK>
[   72.866033][ T5626]  dump_stack_lvl+0xf2/0x150
[   72.870618][ T5626]  dump_stack+0x15/0x20
[   72.874824][ T5626]  should_fail_ex+0x229/0x230
[   72.879503][ T5626]  should_fail+0xb/0x10
[   72.883648][ T5626]  should_fail_usercopy+0x1a/0x20
[   72.888720][ T5626]  _copy_from_user+0x1e/0xd0
[   72.893303][ T5626]  snd_seq_ioctl+0x121/0x2a0
[   72.897951][ T5626]  ? __pfx_snd_seq_ioctl+0x10/0x10
[   72.903056][ T5626]  __se_sys_ioctl+0xd3/0x150
[   72.907723][ T5626]  __x64_sys_ioctl+0x43/0x50
[   72.912379][ T5626]  x64_sys_call+0x15cc/0x2d60
[   72.917127][ T5626]  do_syscall_64+0xc9/0x1c0
[   72.921629][ T5626]  ? clear_bhb_loop+0x55/0xb0
[   72.926314][ T5626]  ? clear_bhb_loop+0x55/0xb0
[   72.931100][ T5626]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.937056][ T5626] RIP: 0033:0x7f0148d49e79
[   72.941579][ T5626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.961190][ T5626] RSP: 002b:00007f01479c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   72.969587][ T5626] RAX: ffffffffffffffda RBX: 00007f0148ee5f80 RCX: 00007f0148d49e79
[   72.977549][ T5626] RDX: 00000000200005c0 RSI: 00000000c0a85320 RDI: 0000000000000008
[   72.985548][ T5626] RBP: 00007f01479c7090 R08: 0000000000000000 R09: 0000000000000000
[   72.993505][ T5626] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.001486][ T5626] R13: 0000000000000000 R14: 00007f0148ee5f80 R15: 00007ffca3166858
[   73.009443][ T5626]  </TASK>
[   73.019519][   T29] audit: type=1400 audit(1724307897.094:725): avc:  denied  { execute } for  pid=5625 comm="syz.3.694" path="/110/memory.events" dev="tmpfs" ino=604 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   73.045007][ T5626] netlink: 'syz.3.694': attribute type 10 has an invalid length.
[   73.055235][ T5626] team0: Port device netdevsim1 added
[   73.071008][ T3377] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.136551][ T3377] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.177917][ T5642] ==================================================================
[   73.186005][ T5642] BUG: KCSAN: data-race in hrtimer_interrupt / print_cpu
[   73.193024][ T5642] 
[   73.195325][ T5642] read-write to 0xffff888237c1ff54 of 4 bytes by interrupt on cpu 0:
[   73.203364][ T5642]  hrtimer_interrupt+0x72/0x7b0
[   73.208209][ T5642]  __sysvec_apic_timer_interrupt+0x5c/0x1a0
[   73.214089][ T5642]  sysvec_apic_timer_interrupt+0x6e/0x80
[   73.219713][ T5642]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   73.225673][ T5642]  insert_header+0x6c3/0x930
[   73.230243][ T5642]  __register_sysctl_table+0xd38/0xdb0
[   73.235689][ T5642]  register_net_sysctl_sz+0x199/0x1b0
[   73.241056][ T5642]  neigh_sysctl_register+0x330/0x3a0
[   73.246334][ T5642]  addrconf_sysctl_register+0x86/0x130
[   73.251780][ T5642]  ipv6_add_dev+0x8fb/0xab0
[   73.256277][ T5642]  addrconf_notify+0x407/0x950
[   73.261030][ T5642]  raw_notifier_call_chain+0x6f/0x1d0
[   73.266396][ T5642]  call_netdevice_notifiers_info+0xae/0x100
[   73.272281][ T5642]  register_netdevice+0xca9/0xe30
[   73.277299][ T5642]  tun_set_iff+0x5da/0x820
[   73.281707][ T5642]  __tun_chr_ioctl+0x652/0x1860
[   73.286547][ T5642]  tun_chr_ioctl+0x27/0x30
[   73.290948][ T5642]  __se_sys_ioctl+0xd3/0x150
[   73.295531][ T5642]  __x64_sys_ioctl+0x43/0x50
[   73.300114][ T5642]  x64_sys_call+0x15cc/0x2d60
[   73.304781][ T5642]  do_syscall_64+0xc9/0x1c0
[   73.309285][ T5642]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.315170][ T5642] 
[   73.317477][ T5642] read to 0xffff888237c1ff54 of 4 bytes by task 5642 on cpu 1:
[   73.325004][ T5642]  print_cpu+0x348/0x670
[   73.329233][ T5642]  timer_list_show+0x115/0x180
[   73.333983][ T5642]  seq_read_iter+0x65b/0x940
[   73.338562][ T5642]  proc_reg_read_iter+0x11e/0x190
[   73.343583][ T5642]  copy_splice_read+0x3a4/0x5d0
[   73.348419][ T5642]  splice_direct_to_actor+0x26c/0x670
[   73.353779][ T5642]  do_splice_direct+0xd7/0x150
[   73.358535][ T5642]  do_sendfile+0x3ab/0x950
[   73.362940][ T5642]  __x64_sys_sendfile64+0x110/0x150
[   73.368123][ T5642]  x64_sys_call+0xed5/0x2d60
[   73.372702][ T5642]  do_syscall_64+0xc9/0x1c0
[   73.377197][ T5642]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.383079][ T5642] 
[   73.385382][ T5642] value changed: 0x0000cccb -> 0x0000ccce
[   73.391078][ T5642] 
[   73.393385][ T5642] Reported by Kernel Concurrency Sanitizer on:
[   73.399516][ T5642] CPU: 1 UID: 0 PID: 5642 Comm: syz.4.697 Not tainted 6.11.0-rc4-syzkaller-00033-g872cf28b8df9 #0
[   73.410087][ T5642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   73.420125][ T5642] ==================================================================
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[   73.433358][   T29] audit: type=1400 audit(1724307897.504:726): avc:  denied  { write } for  pid=3245 comm="syz-executor" path="pipe:[548]" dev="pipefs" ino=548 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[   73.495821][ T3377] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.573818][ T5636] syzkaller0: entered promiscuous mode
[   73.579566][ T5636] syzkaller0: entered allmulticast mode
[   73.630433][ T3377] bridge_slave_1: left allmulticast mode
[   73.636390][ T3377] bridge_slave_1: left promiscuous mode
[   73.642120][ T3377] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.665956][ T3377] bridge_slave_0: left allmulticast mode
[   73.671820][ T3377] bridge_slave_0: left promiscuous mode
[   73.677555][ T3377] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.744287][ T5294] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.825480][ T3377] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   73.836528][ T3377] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   73.846903][ T3377] bond0 (unregistering): Released all slaves
[   74.026353][ T3377] hsr_slave_0: left promiscuous mode
[   74.031949][ T3377] hsr_slave_1: left promiscuous mode
[   74.038802][ T3377] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   74.046422][ T3377] batman_adv: batadv0: Removing interface: batadv_slave_0
[   74.053978][ T3377] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   74.061350][ T3377] batman_adv: batadv0: Removing interface: batadv_slave_1
[   74.070110][ T3377] veth1_macvtap: left promiscuous mode
[   74.075665][ T3377] veth0_macvtap: left promiscuous mode
[   74.081166][ T3377] veth1_vlan: left promiscuous mode
[   74.086423][ T3377] veth0_vlan: left promiscuous mode
[   74.156126][ T3377] team0 (unregistering): Port device team_slave_1 removed
[   74.167633][ T3377] team0 (unregistering): Port device team_slave_0 removed
[   74.537829][ T3377] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.586650][ T3377] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.646000][ T3377] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.695644][ T3377] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.775602][ T3377] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.815762][ T3377] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.875474][ T3377] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.925890][ T3377] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.976306][ T3377] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.036063][ T3377] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.086640][ T3377] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.156607][ T3377] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.214123][ T3377] bridge_slave_1: left allmulticast mode
[   75.219895][ T3377] bridge_slave_1: left promiscuous mode
[   75.225541][ T3377] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.233039][ T3377] bridge_slave_0: left allmulticast mode
[   75.238688][ T3377] bridge_slave_0: left promiscuous mode
[   75.244491][ T3377] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.252399][ T3377] bridge_slave_1: left allmulticast mode
[   75.258097][ T3377] bridge_slave_1: left promiscuous mode
[   75.263799][ T3377] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.271497][ T3377] bridge_slave_0: left allmulticast mode
[   75.277192][ T3377] bridge_slave_0: left promiscuous mode
[   75.282887][ T3377] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.290629][ T3377] bridge_slave_1: left allmulticast mode
[   75.296279][ T3377] bridge_slave_1: left promiscuous mode
[   75.301927][ T3377] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.309523][ T3377] bridge_slave_0: left allmulticast mode
[   75.315184][ T3377] bridge_slave_0: left promiscuous mode
[   75.320749][ T3377] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.575524][ T3377] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   75.585565][ T3377] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   75.595108][ T3377] bond0 (unregistering): Released all slaves
[   75.603350][ T3377] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   75.613114][ T3377] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   75.622928][ T3377] bond0 (unregistering): Released all slaves
[   75.631304][ T3377] bond1 (unregistering): Released all slaves
[   75.639918][ T3377] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   75.650144][ T3377] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   75.659780][ T3377] bond0 (unregistering): Released all slaves
[   75.774650][ T3377] IPVS: stopping backup sync thread 3823 ...
[   75.782088][ T3377] hsr_slave_0: left promiscuous mode
[   75.787826][ T3377] hsr_slave_1: left promiscuous mode
[   75.794812][ T3377] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   75.802313][ T3377] batman_adv: batadv0: Removing interface: batadv_slave_0
[   75.809852][ T3377] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   75.817254][ T3377] batman_adv: batadv0: Removing interface: batadv_slave_1
[   75.826114][ T3377] hsr_slave_0: left promiscuous mode
[   75.831582][ T3377] hsr_slave_1: left promiscuous mode
[   75.837411][ T3377] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   75.844819][ T3377] batman_adv: batadv0: Removing interface: batadv_slave_0
[   75.852276][ T3377] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   75.859654][ T3377] batman_adv: batadv0: Removing interface: batadv_slave_1
[   75.868602][ T3377] hsr_slave_0: left promiscuous mode
[   75.874202][ T3377] hsr_slave_1: left promiscuous mode
[   75.879841][ T3377] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   75.887228][ T3377] batman_adv: batadv0: Removing interface: batadv_slave_0
[   75.894850][ T3377] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   75.902223][ T3377] batman_adv: batadv0: Removing interface: batadv_slave_1
[   75.912578][ T3377] veth1_macvtap: left promiscuous mode
[   75.918148][ T3377] veth0_macvtap: left promiscuous mode
[   75.923716][ T3377] veth1_vlan: left promiscuous mode
[   75.928948][ T3377] veth0_vlan: left promiscuous mode
[   75.934609][ T3377] veth1_macvtap: left promiscuous mode
[   75.940102][ T3377] veth0_macvtap: left promiscuous mode
[   75.945646][ T3377] veth0_vlan: left promiscuous mode
[   75.951222][ T3377] veth1_macvtap: left promiscuous mode
[   75.956686][ T3377] veth0_macvtap: left promiscuous mode
[   75.962166][ T3377] veth1_vlan: left promiscuous mode
[   75.967405][ T3377] veth0_vlan: left promiscuous mode
[   76.106904][ T3377] team0 (unregistering): Port device team_slave_1 removed
[   76.118136][ T3377] team0 (unregistering): Port device team_slave_0 removed
[   76.175781][ T3377] team0 (unregistering): Port device team_slave_1 removed
[   76.184918][ T3377] team0 (unregistering): Port device team_slave_0 removed
[   76.239031][ T3377] team0 (unregistering): Port device team_slave_1 removed
[   76.248598][ T3377] team0 (unregistering): Port device team_slave_0 removed