last executing test programs:

2.984533541s ago: executing program 2 (id=1050):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x38, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7fff}, 0x18)
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r3 = fcntl$dupfd(r2, 0x0, r2)
write$sndseq(r3, &(0x7f0000000180)=[{0x0, 0x47, 0x0, 0x0, @tick, {0x40, 0xff}, {0x0, 0x9}, @queue={0xee, {0x7, 0xc9a}}}, {0x0, 0x0, 0x0, 0x0, @time={0x367f, 0xfffffffd}, {}, {0x80}, @time=@time={0x9, 0x1}}], 0x38)
read$snapshot(r3, 0x0, 0xffffffbf)
read$usbfs(r3, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r4}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r4, @ANYBLOB], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x10)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70800000000002c7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r9}, 0x10)
r10 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r10, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000500)=ANY=[@ANYBLOB="4c020000100013070000000000000000000000000000000000000000000000017f00000100000000000000000000000000000000000000000a0000005e000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="e0000002000000000000000000000000000004d432000000ac141400000000000000000000000000fdffffffffffffff00000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000100000000000000000000000000000000000010000000000000002000400000000000000000048000200656362286369706865725f6e756c6c29"], 0x24c}, 0x1, 0x0, 0x0, 0x20000011}, 0x0)
sendmsg$nl_xfrm(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000a00)=ANY=[@ANYBLOB="540100001a001307000000000000001cac141400"/64, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="ffffffff0000000000000000000000000000000032000000ac141417000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000048000200656362286369706865725f6e756c6c29000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c001c"], 0x154}}, 0x8040)
ioctl$SG_GET_PACK_ID(r3, 0x227c, &(0x7f0000000000))
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000000c0)='./file0\x00', 0x400, &(0x7f0000000100)=ANY=[@ANYBLOB="73686f72746e616d653d77696e6e742c757466383d302c636865636b3d7374726963742c646973636172642c757466383d312c757466383d312c73686f72746e616d653d77696e39352c73686f72746e616d653d6c6f7765722c757466383d312c00ef5c3556"], 0xfd, 0x2a8, &(0x7f0000000280)="$eJzs3E9rE08YwPGnaZOmKW1y+PEDBfFBL3pZ2vgKgrQgBpTaiHoQpnajIWtSsjESEdubV19H8ehNsL6BXrx5Fy9FELz0IF3pbrfZ1qW2te3W5vuBstOdeTKzfxKeXZhZu/fmab3qWlXTllRWJSXZJVkXKUhKQgNb25RfzkjUklwd/fH5wp37D26WyuWpGdXp0uy1oqqOX/zw/OXbSx/bo3ffjb8fltXCw7XvxS+r/6+eW9uYDT+92Vajc81m28w5ts7X3LqletuxjWtrreHarR31Vae5sNBV05gfyy20bNdV0+hq3e5qu6ntVlfNY1NrqGVZOpaTOJnYvWfD4IEjKsszM6Z0LINBEkbidrZaJTMYW1lZPolBAQCA0+X3/F9OJP9/UnO15mrjT/l/So42/0eUn/9vxCaNOBvSmw8AJZPb+v7uRP4PAAAAAAAAAAAAAAAAAAAAAMC/YN3z8p7n5cNt+DcsIlkRCf9Pepw4Hoe4/gMJDhdHLDJxLyvivO5UOpVgG9SXqlITR2yZSPtzibxtQXn6RnlqQn0FWXEWt+L9SYLDYXyoEB8/GcRrJH6xU0lLLtp/UfLyX3x8cVd8WkQ6lYxcuRyJtyQvnx5JUxyZ9+/rXvyrSdXrt8q7+h/x2wEAAAAAcBZYuq2w8/k3WE3SsjRcNmRXfbCz935A8vJzz/cDKisZ6cUPyfmh5I4bAAAAAIB+4nZf1I3j2K1+LozIwaP68dRZ2eCm2bOx53mLm43+vtOUiCR0pN9E5BSc8KMufH0WXMD9NE7yVwkAAADAcegl/UmPBAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/rXfxcPC9odZeyzS3WAyRwkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACcDr8CAAD//4DOGY4=")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)

2.910319663s ago: executing program 4 (id=1052):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003200)=ANY=[@ANYBLOB="1e0000000000000004000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
accept$unix(0xffffffffffffffff, 0x0, &(0x7f0000000080))

2.688211886s ago: executing program 4 (id=1055):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000140), &(0x7f0000000040)='%pI4   \x00'}, 0x2a)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r3, &(0x7f0000000040)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @local}}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000ac0)="ee", 0xffffff1f}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb71658bda99b49720fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x8205, &(0x7f0000001340)={[{@bh}, {@stripe}, {@grpid}, {@block_validity}, {@data_err_ignore}, {@noblock_validity}, {@minixdf}, {@min_batch_time={'min_batch_time', 0x3d, 0x13}}]}, 0x1, 0x60a, &(0x7f0000001c40)="$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")
r4 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$TIOCMIWAIT(r4, 0x545c, 0x0)

2.092837806s ago: executing program 2 (id=1060):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = openat$random(0xffffffffffffff9c, &(0x7f000000fe80), 0x40800, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x8, 0x3, 0x460, 0xf0, 0xffffffff, 0xffffffff, 0xf0, 0xffffffff, 0x390, 0xffffffff, 0xffffffff, 0x390, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00', {}, {}, 0x2f, 0x0, 0x3}, 0x0, 0xa8, 0xf0}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@local, 'nicvf0\x00', {0x3f66}}}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3d}}, [0xffffffff], [], 'wg1\x00', 'gre0\x00', {}, {0xff}}, 0x0, 0x258, 0x2a0, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x80ff, 0x0, 0x5, 0x563e4515, 0x0, 0x7, 0x3fc, 0x20}}}, @common=@inet=@hashlimit3={{0x158}, {'veth0_vlan\x00', {0x3, 0x0, 0x48, 0x0, 0x15ab, 0x1000, 0x6, 0x5}}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz0\x00', 0x2, 0x5, {0x6}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x4c0)
r6 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'sit0\x00', <r7=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="340000006800010000000000fedbdf250a00000000000000140006000000000000000000000000000000000108000500", @ANYRES32=r7, @ANYBLOB='F'], 0x34}}, 0x0)
ioctl$RNDADDENTROPY(r4, 0x40085203, &(0x7f000000fec0)=ANY=[@ANYBLOB="04000000000010"])
pipe(&(0x7f00000001c0)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
readv(r8, &(0x7f0000002a40)=[{&(0x7f00000007c0)=""/4096, 0x1000}], 0x1)
write$binfmt_script(r9, &(0x7f0000020240), 0x10010)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
fcntl$lock(r3, 0x6, &(0x7f0000000140)={0x1, 0x0, 0xb7400000000})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000440)={0x0, 0x0, 0x0, 0xa71})
gettid()
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, 0x0, 0x0)
mknod(&(0x7f0000000180)='./file0\x00', 0x1ffa, 0x0)
acct(&(0x7f0000000140)='./file0\x00')
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a30000000006c000000160a01020000000000000000010000000900010073797a30000000000900020073797a3000000000400003802c00038004000100766c616e31000000000000000000000014000100776c616e3100000000000000000000000800014000000000080002"], 0xfc}}, 0x0)

1.746243732s ago: executing program 4 (id=1065):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003200)=ANY=[@ANYBLOB="1e0000000000000004000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
accept$unix(0xffffffffffffffff, 0x0, &(0x7f0000000080))

1.650436473s ago: executing program 4 (id=1068):
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = openat$random(0xffffffffffffff9c, &(0x7f000000fe80), 0x40800, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x8, 0x3, 0x460, 0xf0, 0xffffffff, 0xffffffff, 0xf0, 0xffffffff, 0x390, 0xffffffff, 0xffffffff, 0x390, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00', {}, {}, 0x2f, 0x0, 0x3}, 0x0, 0xa8, 0xf0}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@local, 'nicvf0\x00', {0x3f66}}}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3d}}, [0xffffffff], [], 'wg1\x00', 'gre0\x00', {}, {0xff}}, 0x0, 0x258, 0x2a0, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x80ff, 0x0, 0x5, 0x563e4515, 0x0, 0x7, 0x3fc, 0x20}}}, @common=@inet=@hashlimit3={{0x158}, {'veth0_vlan\x00', {0x3, 0x0, 0x48, 0x0, 0x15ab, 0x1000, 0x6, 0x5}}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz0\x00', 0x2, 0x5, {0x6}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x4c0)
r5 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'sit0\x00', <r6=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="340000006800010000000000fedbdf250a00000000000000140006000000000000000000000000000000000108000500", @ANYRES32=r6, @ANYBLOB='F'], 0x34}}, 0x0)
ioctl$RNDADDENTROPY(r3, 0x40085203, &(0x7f000000fec0)=ANY=[@ANYBLOB="04000000000010"])
pipe(&(0x7f00000001c0)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
readv(r7, &(0x7f0000002a40)=[{&(0x7f00000007c0)=""/4096, 0x1000}], 0x1)
write$binfmt_script(r8, &(0x7f0000020240), 0x10010)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
fcntl$lock(r2, 0x6, &(0x7f0000000140)={0x1, 0x0, 0xb7400000000})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000440)={0x0, 0x0, 0x0, 0xa71})
fcntl$lock(r9, 0x24, &(0x7f00000000c0)={0x1, 0x0, 0xffffffff, 0x5a60})
gettid()
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
prlimit64(0x0, 0xe, 0x0, 0x0)
mknod(&(0x7f0000000180)='./file0\x00', 0x1ffa, 0x0)
acct(&(0x7f0000000140)='./file0\x00')
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

1.649922793s ago: executing program 0 (id=1069):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e0000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000240000"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)={'ip6_vti0\x00', &(0x7f0000000240)={'syztnl1\x00', 0x0, 0x4, 0x81, 0x3, 0x1a6, 0x1, @private2, @loopback, 0x8, 0x7f01, 0x2, 0x1642}})
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0500000004000000080000000c"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000001080021850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x2042, 0x0)
ioctl$AUTOFS_IOC_FAIL(r2, 0x4c80, 0x7000000)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a000020095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000300)={[{@min_batch_time={'min_batch_time', 0x3d, 0xadb}}, {@bsdgroups}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@init_itable}, {@errors_remount}, {@noinit_itable}, {@nojournal_checksum}]}, 0x2, 0x464, &(0x7f0000000880)="$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")

1.621929654s ago: executing program 0 (id=1070):
pipe2$9p(&(0x7f0000001d40), 0x4c00)
quotactl$Q_GETFMT(0xffffffff80000401, &(0x7f0000000180)=@sg0, 0xee00, &(0x7f00000001c0))
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="0100000004000000e27f000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000d000000000000002018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000000000000008af8ff00000000bfa200000000000007020000d8ffff8867741518f9a12500b7040000000000008500000003000000954a58f47fe51a58c56c17d195c8473e0002ff54534ef68341888814d362a089814fa02e6a2f17333559427f0ddcc5bdbd28e58aa729ea766825da727622b9f265b2d61f844adcb3b4481b68a3f2f3bbca8b931ad4de95d8d59341e0d5a9386f250882356a78f1ac97ff58cfbde141f720950c847f17a215a669a17398240e15aaffb0d9250a1f64d0b171b5f7c12be17c1e4c08e885c5b8d5d9da7bb8968f6e2de094819ee369a3fb7b29220a9439850d0ad42ebcacda0607ac1117f2abd5373070dbacb933c4d6c8053c76aedcb16c36920d"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x4801})
r2 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3000010, &(0x7f0000000040)={[{@errors_remount}, {@discard}]}, 0x1, 0x512, &(0x7f0000000380)="$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")

1.579700514s ago: executing program 1 (id=1071):
prctl$PR_SET_NAME(0xf, &(0x7f0000000180)='wg1\x00')
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x5, &(0x7f00000003c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x48c, 0x0, 0x0, 0x0, 0x2}, [@map_idx={0x18, 0x6}]}, &(0x7f0000000400)='syzkaller\x00', 0x1000, 0x6e, &(0x7f0000000440)=""/110, 0x40f00, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000004c0)={0x1, 0x5}, 0x8, 0x10, &(0x7f0000000540)={0x4, 0x9, 0x100, 0x9}, 0x10, 0x0, 0x0, 0x8, 0x0, &(0x7f0000000580)=[{0x1, 0x4, 0xf, 0x7}, {0x0, 0x3, 0x1, 0xa}, {0x3, 0x4, 0xd, 0x5}, {0x0, 0x5, 0x8, 0x8}, {0x5, 0x4, 0xc, 0x3}, {0x2, 0x5, 0x10, 0x8}, {0x2, 0x3, 0x1, 0xa}, {0xfffffffe, 0x0, 0x7, 0x6}], 0x10, 0xfffffffa, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000380)='xen_mc_entry\x00', r0, 0x0, 0xb32b}, 0x18)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000024c0)={0x20, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='f2fs_gc_begin\x00', r1, 0x0, 0xc9}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x3804402, &(0x7f0000000700)={[{@user_xattr}, {@nouid32}, {@resuid}, {@user_xattr}, {@discard}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@discard}, {@noinit_itable}, {@nomblk_io_submit}, {@nodelalloc}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40000}}]}, 0x1, 0x55f, &(0x7f0000000c80)="$eJzs3d9rW+UbAPDnpO1+77sOxvgqIoVdOJlL19YfE7yYl6LDgd7PkmRlNFlGk461Dtwu3I03MgQRB+K1eu/l8B/wrxjoYMgoingTOelJl7VJm3XZmpnPB077vuec9D1Pznnevm9OQgIYWhPpj1zECxHxZRJxqG3baGQbJ1b3W3lwrZAuSTQaH/2RRJKta+2fZL/3Z5X/R8Qvn0ecyG1st7a0PD9bLpcWsvpkvXJ5sra0fPJiZXauNFe6ND0zc/qNmem333qzb7G+eu6vbz68897pL46tfP3TvcO3kjgTB7Jt7XE8gevtlYmYyJ6TsTizbsepPjQ2SJKdPgC2ZSTL87FI+4BDMZJlPfDf91lENIAhlch/GFKtcUBrbt+nefBz4/67qxOgjfGPrr42Enuac6N9K8kjM6N0vjveh/bTNn7+/fatdIn+vQ4BsKXrNyLi1Ojoxv4vyfq/7TvVwz7r29D/wbNzJx3/vNZp/JNbG/9Eh/HP/g65ux1b53/uXh+a6Sod/73Tcfy7dtNqfCSrHWyO+caSCxfLpbRv+19EHI+x3Wl9s/s5p1fuNrptax//pUvafmssmB3HvdHdjz6mOFuffZKY292/EfFix/Fvsnb+kw7nP30+zvXYxtHS7Ze7bds6/qer8X3EKx3P/8M7Wsnm9ycnm9fDZOuq2OjPm0d/7db+Tsefnv99q/H/nU0J18c/nrTfr609fhvf7fmn1G3bdq//XcnHzfKubN3V2Xp9YSpiV/LBxvXTDx/bqrf2T+M/fmzz/q/T9b83Ij7pMf6bR358afvxP11p/MXNr/915//xC3ff//Tbbu33dv5fb5aOZ2t66f96PcAnee4AAAAAAABg0OQi4kAkufxaOZfL51ff33Ek9uXK1Vr9xIXq4qViND8rOx5judad7kNt74eYyt4P26pPr6vPRMThiPhqZG+zni9Uy8WdDh4AAAAAAAAAAAAAAAAAAAAGxP4un/9P/Tay00cHPHW+8huG15b5349vegIGkv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX507ezZdGisPrhXSevHK0uJ89crJYqk2n68sFvKF6sLl/Fy1Olcu5QvVylZ/r1ytXp6ajsWrk/VSrT5ZW1o+X6kuXqqfv1j54WBEaeyZRAUAAAAAAAAAAAAAAAAAAADPl9rS8vxsuVxaUGgWdsdAHMZzVBgdjMNQ6HNhp3smAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHjo3wAAAP//waw5Ug==")
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
flock(r3, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
recvmmsg(0xffffffffffffffff, &(0x7f0000005400)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000014c0)=""/4096, 0x1000}}, {{0x0, 0x0, 0x0}, 0x6}, {{0x0, 0x22, &(0x7f0000005100)=[{0x0}, {&(0x7f0000004f40)=""/101, 0xa5}], 0x2}}], 0x3, 0x0, 0x0)
r4 = openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$selinux_context(r4, &(0x7f0000000180)='system_u:object_r:pam_var_run_t:s0\x00', 0x23)
r5 = socket(0x8, 0x4, 0x0)
r6 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r6, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
r7 = openat$tun(0xffffffffffffff9c, 0x0, 0x48241, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000d80)={0x11, 0xb, &(0x7f0000000880)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r9}, 0x10)
syz_read_part_table(0x5c9, &(0x7f0000000880)="$eJzs0jFoW0cYAOD/vaKoHYJFCLjQpRCTSUmKOiRQiVKMIrzYIaQhQ+dCMhQSyODBSFUyp8nULSGJDcaL6dBOhi7GMhgb5MnIq+dCvWkwr8h6XmxTCsZ13XzfoNP999/9d/wvONfS+CPLsiQisuJB7Md8JeLxF3+/+9uF+u2Jz+98c/deRBKPImLy2qPfBitJnnFw6i/5fCqfTxQr3bdr47sLpfUrm52x92lEYRC/EBGtwf7W7MjRekl8dfIn8z+yWFsZefb8SePFdO3hVmNmp5DHX918V23eH60+SIfzpfS43dkx39jJ6u+N3prbyKb+fH3xeqHT7VdW87xyctJK/Bct7mUDn2aD/n89s/PmcrvX7k9enX96o3ypt9x8ud/338/6mgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwAdgsbYy8uz5k8aL6drDrcbMzpffX6t/9lP9h1c331Wb90erD9Jh3lL679Qf696a28g+jtcXrxc6F/qV1TyvnJxOfc7W4f6/udzutfuTV+ef3ihf6i03XyY/Pz7rOwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA50v99nZE3L0XkcR3ETGelmYH8awYUdo+mj9VHI4TxUr37dr47kJp/cpmZ+z9nTy+lEa04pP9/7/u/04fOuGj4dCKiPT03sU/81cAAAD//xmKiIU=")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x6, 0x7ffc1ffb}]})
setsockopt$packet_tx_ring(r5, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r5, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r10 = dup3(r6, r5, 0x0)
recvmmsg(r10, 0x0, 0x0, 0x40000001, 0x0)

1.542796365s ago: executing program 0 (id=1072):
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000000)=<r0=>0x0)
syz_open_procfs(r0, &(0x7f00000001c0)='net/ptype\x00')
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b70400000000000085000000010000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x82000, 0x0)
r2 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r2, r1, 0x0, 0x3a)

1.521008945s ago: executing program 0 (id=1073):
unshare(0x2c020400)
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
r1 = signalfd4(r0, &(0x7f0000000400)={[0xfffffffffffffff5]}, 0x8, 0x80000)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000940)={r1, 0x20, &(0x7f0000000740)={&(0x7f0000000440)=""/80, 0x50, 0x0, &(0x7f0000000840)=""/241, 0xf1}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r2}, 0x10)
r3 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
syz_usb_disconnect(r3)

1.494847345s ago: executing program 1 (id=1074):
r0 = socket(0x10, 0x803, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000002c0)=ANY=[@ANYRES32=r1, @ANYBLOB="001100000000000040001280080001007369740034000280050009002900000008000200ac1414bb08000c000000010006000d"], 0x60}, 0x1, 0x0, 0x0, 0x8000}, 0x4040)

1.466065966s ago: executing program 1 (id=1075):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setrlimit(0x9, &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
io_setup(0x2004, &(0x7f0000000680))

1.445404216s ago: executing program 1 (id=1076):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c01803003a000b12d25a80648c2594f90324fc60100c034002a10100feff000037153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./bus\x00', 0x4010, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES16=<r3=>0xffffffffffffffff], 0x1, 0x11ee, &(0x7f0000002480)="$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")
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
write$cgroup_int(r4, &(0x7f0000000000)=0x10000000000000, 0xffffff6a)
r5 = creat(&(0x7f0000000580)='./bus\x00', 0x0)
io_setup(0x45, &(0x7f0000000200)=<r6=>0x0)
getresgid(&(0x7f0000000240), &(0x7f0000000340), &(0x7f0000000440))
io_submit(r6, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x15, 0x0, 0x0, 0x1, 0x0, r5, &(0x7f0000000000), 0x1a00001a}])
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000005c0)={'dummy0\x00'})
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYRES32=r3], 0x48)
removexattr(&(0x7f00000002c0)='./cgroup.cpu/cgroup.procs\x00', &(0x7f00000004c0)=@known='user.incfs.metadata\x00')
setsockopt(r5, 0x9, 0x5, &(0x7f0000000380)="31660e3cf939028a3a4567d3ba412a4857634cd0eaa2454c63eb5be5264e33f2ec6b4b81737af1ebdc794b029a43db009b6f5c67aaebca824a4f5102da3efe5c51abd8d7fd1a888c6dbf7db14be116b8d3857670f93529803f7a9c1011c9fc756b8e79b13699227a3b88", 0x6a)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000004c0)='sched_switch\x00', r0}, 0x18)
r7 = openat$cgroup_ro(r4, &(0x7f0000000280)='memory.events\x00', 0x275a, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x100000c, 0x110, r7, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f00001d8000/0x2000)=nil, 0x2000, 0x8, 0x12, r8, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
perf_event_open(&(0x7f00000004c0)={0x8, 0x80, 0x0, 0xf, 0x0, 0x0, 0x82, 0x200000000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000080), 0x9}, 0x18204, 0x0, 0x3, 0x0, 0x0, 0x5338c7af, 0x0, 0x0, 0x1, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), r5)
socket$inet_udp(0x2, 0x2, 0x0)
socket(0x2, 0x80805, 0x0)

1.23702818s ago: executing program 2 (id=1077):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$kcm(0x10, 0x3, 0x10)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r2 = creat(&(0x7f0000000580)='./bus\x00', 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000005c0)={'dummy0\x00'})
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYRES32], 0x48)
setsockopt(r2, 0x9, 0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000004c0)='sched_switch\x00', r0}, 0x18)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000280)='memory.events\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000540), 0x84)
perf_event_open(&(0x7f00000004c0)={0x8, 0x80, 0x0, 0xf, 0x0, 0x0, 0x82, 0x200000000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000080), 0x9}, 0x18204, 0x0, 0x3, 0x0, 0x0, 0x5338c7af, 0x0, 0x0, 0x1, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), r2)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f00000002c0)={'ip6tnl0\x00', &(0x7f0000000340)=@ethtool_eeprom={0xb, 0x4, 0x1}})
socket(0x2, 0x80805, 0x0)

1.150795501s ago: executing program 3 (id=1079):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000380)='sys_enter\x00', r1}, 0x10)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x200000000000000)

1.150177931s ago: executing program 2 (id=1080):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={0x0, r0, 0x0, 0xffffffffffffffff}, 0x18)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r2 = fcntl$dupfd(r1, 0x0, r1)
write$sndseq(r2, &(0x7f0000000180)=[{0x0, 0x2, 0x4, 0x8f, @tick=0xf27, {0x1, 0x31}, {}, @raw32={[0x0, 0xc]}}, {0x2, 0x0, 0x80, 0x0, @time={0x1b, 0x4}, {}, {0x0, 0x1}, @result={0x1, 0x7ff}}], 0x38)

1.109508122s ago: executing program 2 (id=1081):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x38, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7fff}, 0x18)
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r3 = fcntl$dupfd(r2, 0x0, r2)
write$sndseq(r3, &(0x7f0000000180)=[{0x0, 0x47, 0x0, 0x0, @tick, {0x40, 0xff}, {0x0, 0x9}, @queue={0xee, {0x7, 0xc9a}}}, {0x0, 0x0, 0x0, 0x0, @time={0x367f, 0xfffffffd}, {}, {0x80}, @time=@time={0x9, 0x1}}], 0x38)
read$snapshot(r3, 0x0, 0xffffffbf)
read$usbfs(r3, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, 0x0, &(0x7f0000000740), 0x1, r4}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x10)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70800000000002c7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r9}, 0x10)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000500)=ANY=[@ANYBLOB="4c020000100013070000000000000000000000000000000000000000000000017f00000100000000000000000000000000000000000000000a0000005e000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="e0000002000000000000000000000000000004d432000000ac141400000000000000000000000000fdffffffffffffff00000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000100000000000000000000000000000000000010000000000000002000400000000000000000048000200656362286369706865725f6e756c6c29"], 0x24c}, 0x1, 0x0, 0x0, 0x20000011}, 0x0)
sendmsg$nl_xfrm(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000a00)=ANY=[@ANYBLOB="540100001a001307000000000000001cac141400"/64, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="ffffffff0000000000000000000000000000000032000000ac141417000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000048000200656362286369706865725f6e756c6c29000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c001c"], 0x154}}, 0x8040)
ioctl$SG_GET_PACK_ID(r3, 0x227c, &(0x7f0000000000))
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000000c0)='./file0\x00', 0x400, &(0x7f0000000100)=ANY=[@ANYBLOB="73686f72746e616d653d77696e6e742c757466383d302c636865636b3d7374726963742c646973636172642c757466383d312c757466383d312c73686f72746e616d653d77696e39352c73686f72746e616d653d6c6f7765722c757466383d312c00ef5c3556"], 0xfd, 0x2a8, &(0x7f0000000280)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)

1.089127142s ago: executing program 3 (id=1082):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b00"/13], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r2}, 0x10)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000b00)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="796104000000fbdbdf257e0000000800", @ANYRES32=0x0, @ANYBLOB="f559edd7b0f2d7cf3a43498913806991a2145a3f9ae3db85d355a119650ceb02c762ed1625d7e200832d891136ebd1984298e288b28c2f6b78b99d2a4a6d7b90a96b5a9aca"], 0x1c}}, 0x0)

1.046882033s ago: executing program 3 (id=1083):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x8, 0xdd18b, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, @perf_config_ext={0x4, 0x100000003}, 0x3323, 0x4, 0x3, 0x0, 0x9, 0x800001, 0xfff7, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r1 = accept4(0xffffffffffffffff, &(0x7f0000000000)=@phonet, &(0x7f0000000080)=0x80, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
r2 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x2)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x2050, r2, 0x8000000)
r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1000001, 0x40010, r2, 0x10000000)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000140)=@IORING_OP_SENDMSG={0x9, 0x1, 0x0, r1, 0x0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000500)="603f356546b329866bcb507872c6c0a12e5121383dc264d5b0443dc05de9994faca76fc2b78ae6b4ddce05160fb2d82f7e43953b3b1f0c944427a43def7895a0d9780406737507b8400685e383f5e21de6a1a51009cc4e7622fba772b7f35c08f50ad424f8377404660dac6ce29f9547d2c426ca84f1dfcfc203f3068d028b9aa7664146763a6669c2d8f83a0e4739bfa0afd4b9eb8cdca5759c066d0b152ea0ed64ceca1fcf13e5db56f49e1cb381035c0e6ab5986790d2e1eecafcdc1605aec4e53549902f86266f0325067d0bf1f038f53a21e2092a5f62dea0ceab84daab925f60b020f63d6e811b1bb6cb25", 0xee}, {&(0x7f0000000640)="8fd3ddb9d819b5cb4c7244b4852cb47ea0392ddce27296ac1bfce26b53449c335bdf7de66f5bba50700cdffef91b01beb10d311213b89dc76a3de3df4ed009c94a98b99b534d47d73bc411318fcd035ae2cd41e37994f1f9ccf88555fb82f8e505a78ff0d9cf6f36b0e1", 0x6a}], 0x2, &(0x7f0000001900)=[{0xa0, 0x114, 0x3, "e63a00cc6c69a214b339a04dc88120b94c612ca269a968274a7366b329c53662b7b2a4ef6a41c6fe10d102461df0e000e610846850a56168c7dae8d43186e92fc75007d9b3496e660d3e316abb5d2b406cea8924e61245d8a0dddb5cc15166d77cc9ca15bc116b134b1bbe02b6bc2b9271f5b02137c86db599afbb62c900ce5feeb5d0c788541d7adc"}, {0xf8, 0x84, 0x1, "8fa68ffb27b8d7964309c6973fbc38c6a7af8188eda28f770c526f534d2810126afddfe45224c07ce393ae85f7c620f6771eb8309ad7c00947f0befef045e0fc8688979e5b64d4b456c254747e57e9eb346f6836d66c8af8a66add861af16efdac5e04e9e2381a6bed4319603a3a862853bf6fe1b41e3e768b0d3c47afcd23fa5eb605b84ebc23fb57d8ae35fd8852773b5542d9e66ae0afa2d335597a895cef946800e19f7714d776bb24a921076cf3075e32c248096cebf2a180fd0b2a6ec2becc0f526471e26229a12f61924e18576cc47c5a189dc6a75f4da02128db6fd0571747ab127a8d"}, {0xd0, 0x116, 0x5, "6871870e646d68a7efa5a544fbf523dbdcb7f50adfabc5df612764b0f93247034228935835228c2fab9998792e8634a3beb5304dd2d7d8073bd995c2504e179076eecf1c475ee25fecbd0ee7d567eea2fbf864c3fa38712a3d2e2d800b6197c7abbee608ea38b26d2edc093fcbca2d9fba9b1cb576a5b8d588dd743235ed516900a3a11d3e1797515d9fd4b0ab4766274ddb71a0662c6f899fc6d90e190b07daad870e829954dc97ab25f50d394c64a8cb224633c93721921b6726534682e1"}, {0xf0, 0x10b, 0x9, "d1e965a347e500df8658b7c364a009e4462b3b2f286e24059d112f2babc2e9aef37abbc1162ca4a48b047ad1248402d8db7f5e3a98de46bce37cd37f261d1e0cfeefd28064cad94ee84c429a2ed9d46c9503cfd6254b1d02491015813d8c68d09b82572e1687003335117f4d8112711442f89cf0b429c87c6990d98fc3676c06b7016f4e58e3a369cb03c1ab5fbb1dfc9da52e76f6197341bebaca85a911d06c28f3f03d57a7e59fdf817cbb34c61bc6779172dc204388be44eeb10a45db2a9d4248584e49e4f5c5ddbafa2b00e2969ad1a2be84df7d764860707460489db7"}, {0x100, 0x84, 0xb2b5, "1fa44df62481d41101f8b2bec2dd8c70a28118c1432f3f4979cc31e0110ce8e1b0c5cf66f93d241329991f1dfce3c400ac4fd708408af234e1bde029986807d9e1bf71016ab61003ef130e843aa64d067efe8c35ca13c73b797ebdd1baf38fa4cf3e2578f1f630b32612e3bad43fe31a2ce5ffdb58c29be677af8fe4ab3ab7b09e1eb6e9f2ee1caa709f9efadd70cdeea23b4c84124fb438603b4309cbc615ace955d770e7c0d7c0dff107d734aab15005ff19f2c0800a2deb2452ec849a2bac0dc2c99f70f73365eaff1bc26cb12855cd3f494cac35309250905b961cf6ede3da9d7aeb5ad8ce3c19003c"}], 0x458}, 0x0, 0x8000, 0x1, {0x0, r5}})
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./bus\x00', 0x1c5902, 0x2d)
write(r7, &(0x7f0000004200)='t', 0x1)
sendfile(r7, r6, 0x0, 0x7ffff000)
fallocate(r2, 0x0, 0x0, 0x1001f0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r8}, &(0x7f0000000080), &(0x7f0000000340)=r9}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x10)
readv(0xffffffffffffffff, &(0x7f0000000600)=[{0x0}, {&(0x7f0000000240)=""/108, 0x6c}], 0x2)

813.351447ms ago: executing program 4 (id=1084):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000380)='sys_enter\x00', r1}, 0x10)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x200000000000000) (fail_nth: 1)

777.956137ms ago: executing program 3 (id=1085):
prctl$PR_SET_NAME(0xf, &(0x7f0000000180)='wg1\x00')
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x5, &(0x7f00000003c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x48c, 0x0, 0x0, 0x0, 0x2}, [@map_idx={0x18, 0x6}]}, &(0x7f0000000400)='syzkaller\x00', 0x1000, 0x6e, &(0x7f0000000440)=""/110, 0x40f00, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000004c0)={0x1, 0x5}, 0x8, 0x10, &(0x7f0000000540)={0x4, 0x9, 0x100, 0x9}, 0x10, 0x0, 0x0, 0x8, 0x0, &(0x7f0000000580)=[{0x1, 0x4, 0xf, 0x7}, {0x0, 0x3, 0x1, 0xa}, {0x3, 0x4, 0xd, 0x5}, {0x0, 0x5, 0x8, 0x8}, {0x5, 0x4, 0xc, 0x3}, {0x2, 0x5, 0x10, 0x8}, {0x2, 0x3, 0x1, 0xa}, {0xfffffffe, 0x0, 0x7, 0x6}], 0x10, 0xfffffffa, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000380)='xen_mc_entry\x00', r0, 0x0, 0xb32b}, 0x18)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000024c0)={0x20, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='f2fs_gc_begin\x00', r1, 0x0, 0xc9}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x3804402, &(0x7f0000000700)={[{@user_xattr}, {@nouid32}, {@resuid}, {@user_xattr}, {@discard}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@discard}, {@noinit_itable}, {@nomblk_io_submit}, {@nodelalloc}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40000}}]}, 0x1, 0x55f, &(0x7f0000000c80)="$eJzs3d9rW+UbAPDnpO1+77sOxvgqIoVdOJlL19YfE7yYl6LDgd7PkmRlNFlGk461Dtwu3I03MgQRB+K1eu/l8B/wrxjoYMgoingTOelJl7VJm3XZmpnPB077vuec9D1Pznnevm9OQgIYWhPpj1zECxHxZRJxqG3baGQbJ1b3W3lwrZAuSTQaH/2RRJKta+2fZL/3Z5X/R8Qvn0ecyG1st7a0PD9bLpcWsvpkvXJ5sra0fPJiZXauNFe6ND0zc/qNmem333qzb7G+eu6vbz68897pL46tfP3TvcO3kjgTB7Jt7XE8gevtlYmYyJ6TsTizbsepPjQ2SJKdPgC2ZSTL87FI+4BDMZJlPfDf91lENIAhlch/GFKtcUBrbt+nefBz4/67qxOgjfGPrr42Enuac6N9K8kjM6N0vjveh/bTNn7+/fatdIn+vQ4BsKXrNyLi1Ojoxv4vyfq/7TvVwz7r29D/wbNzJx3/vNZp/JNbG/9Eh/HP/g65ux1b53/uXh+a6Sod/73Tcfy7dtNqfCSrHWyO+caSCxfLpbRv+19EHI+x3Wl9s/s5p1fuNrptax//pUvafmssmB3HvdHdjz6mOFuffZKY292/EfFix/Fvsnb+kw7nP30+zvXYxtHS7Ze7bds6/qer8X3EKx3P/8M7Wsnm9ycnm9fDZOuq2OjPm0d/7db+Tsefnv99q/H/nU0J18c/nrTfr609fhvf7fmn1G3bdq//XcnHzfKubN3V2Xp9YSpiV/LBxvXTDx/bqrf2T+M/fmzz/q/T9b83Ij7pMf6bR358afvxP11p/MXNr/915//xC3ff//Tbbu33dv5fb5aOZ2t66f96PcAnee4AAAAAAABg0OQi4kAkufxaOZfL51ff33Ek9uXK1Vr9xIXq4qViND8rOx5judad7kNt74eYyt4P26pPr6vPRMThiPhqZG+zni9Uy8WdDh4AAAAAAAAAAAAAAAAAAAAGxP4un/9P/Tay00cHPHW+8huG15b5349vegIGkv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX507ezZdGisPrhXSevHK0uJ89crJYqk2n68sFvKF6sLl/Fy1Olcu5QvVylZ/r1ytXp6ajsWrk/VSrT5ZW1o+X6kuXqqfv1j54WBEaeyZRAUAAAAAAAAAAAAAAAAAAADPl9rS8vxsuVxaUGgWdsdAHMZzVBgdjMNQ6HNhp3smAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHjo3wAAAP//waw5Ug==")
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
flock(r3, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
recvmmsg(0xffffffffffffffff, &(0x7f0000005400)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000014c0)=""/4096, 0x1000}}, {{0x0, 0x0, 0x0}, 0x6}, {{0x0, 0x22, &(0x7f0000005100)=[{0x0}, {&(0x7f0000004f40)=""/101, 0xa5}], 0x2}}], 0x3, 0x0, 0x0)
r4 = openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$selinux_context(r4, &(0x7f0000000180)='system_u:object_r:pam_var_run_t:s0\x00', 0x23)
r5 = socket(0x8, 0x4, 0x0)
r6 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r6, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
r7 = openat$tun(0xffffffffffffff9c, 0x0, 0x48241, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000d80)={0x11, 0xb, &(0x7f0000000880)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r9}, 0x10)
syz_read_part_table(0x5c9, &(0x7f0000000880)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x6, 0x7ffc1ffb}]})
setsockopt$packet_tx_ring(r5, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r5, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r10 = dup3(r6, r5, 0x0)
recvmmsg(r10, 0x0, 0x0, 0x40000001, 0x0)

777.430097ms ago: executing program 0 (id=1086):
r0 = socket(0x10, 0x803, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="001100000000000040001280080001007369740034000280050009002900000008000200ac1414bb08000c000000010006000d"], 0x60}, 0x1, 0x0, 0x0, 0x8000}, 0x4040)

510.118881ms ago: executing program 4 (id=1087):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sys_enter\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000000)={0x0, 0x0}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket(0x1d, 0x2, 0x6)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r2, 0x6a, 0x3, 0x0, &(0x7f0000000840)=0xffffffffffffffd9)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100003020702500000000002020207b1af8ff00000000bfa1000000000000070100003affffffb702000008000000b7030000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000400)='kfree\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00'}, 0x10)
r4 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x0, 0xbfdffffc}, &(0x7f00000003c0)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r4, 0x0, &(0x7f0000000040)='./file0\x00', 0x64, 0x183000, 0x23456})
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
io_uring_enter(r4, 0x47f6, 0x0, 0x2, 0x0, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000040)={0x1000, 0x4, 0x10000000, 0xc}, 0x10)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
timerfd_gettime(0xffffffffffffffff, 0x0)

482.370112ms ago: executing program 0 (id=1088):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
syz_usbip_server_init(0x1)

337.393744ms ago: executing program 3 (id=1089):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000004080)={{r0}, &(0x7f0000004000), &(0x7f0000004040)}, 0x20)
io_submit(0x0, 0x1, &(0x7f0000000400)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000140)='*\"', 0x2}])

129.269868ms ago: executing program 2 (id=1090):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = openat$random(0xffffffffffffff9c, &(0x7f000000fe80), 0x40800, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x8, 0x3, 0x460, 0xf0, 0xffffffff, 0xffffffff, 0xf0, 0xffffffff, 0x390, 0xffffffff, 0xffffffff, 0x390, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00', {}, {}, 0x2f, 0x0, 0x3}, 0x0, 0xa8, 0xf0}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@local, 'nicvf0\x00', {0x3f66}}}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3d}}, [0xffffffff], [], 'wg1\x00', 'gre0\x00', {}, {0xff}}, 0x0, 0x258, 0x2a0, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x80ff, 0x0, 0x5, 0x563e4515, 0x0, 0x7, 0x3fc, 0x20}}}, @common=@inet=@hashlimit3={{0x158}, {'veth0_vlan\x00', {0x3, 0x0, 0x48, 0x0, 0x15ab, 0x1000, 0x6, 0x5}}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz0\x00', 0x2, 0x5, {0x6}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x4c0)
r6 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'sit0\x00', <r7=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="340000006800010000000000fedbdf250a00000000000000140006000000000000000000000000000000000108000500", @ANYRES32=r7, @ANYBLOB='F'], 0x34}}, 0x0)
ioctl$RNDADDENTROPY(r4, 0x40085203, &(0x7f000000fec0)=ANY=[@ANYBLOB="04000000000010"])
pipe(&(0x7f00000001c0)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
readv(r8, &(0x7f0000002a40)=[{&(0x7f00000007c0)=""/4096, 0x1000}], 0x1)
write$binfmt_script(r9, &(0x7f0000020240), 0x10010)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
fcntl$lock(r3, 0x6, &(0x7f0000000140)={0x1, 0x0, 0xb7400000000})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000440)={0x0, 0x0, 0x0, 0xa71})
gettid()
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, 0x0, 0x0)
mknod(&(0x7f0000000180)='./file0\x00', 0x1ffa, 0x0)
acct(&(0x7f0000000140)='./file0\x00')
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a30000000006c000000160a01020000000000000000010000000900010073797a30000000000900020073797a3000000000400003802c00038004000100766c616e31000000000000000000000014000100776c616e3100000000000000000000000800014000000000080002"], 0xfc}}, 0x0)

90.561808ms ago: executing program 1 (id=1091):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={0x0, r0, 0x0, 0xffffffffffffffff}, 0x18)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r2 = fcntl$dupfd(r1, 0x0, r1)
write$sndseq(r2, &(0x7f0000000180)=[{0x0, 0x2, 0x4, 0x8f, @tick=0xf27, {0x1, 0x31}, {}, @raw32={[0x0, 0xc]}}, {0x2, 0x0, 0x80, 0x0, @time={0x1b, 0x4}, {}, {0x0, 0x1}, @result={0x1, 0x7ff}}], 0x38)

27.177129ms ago: executing program 3 (id=1092):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
syz_usbip_server_init(0x1)

0s ago: executing program 1 (id=1093):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b00"/13], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r2}, 0x10)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000b00)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="796104000000fbdbdf257e0000000800", @ANYRES32=0x0, @ANYBLOB="f559edd7b0f2d7cf3a43498913806991a2145a3f9ae3db85d355a119650ceb02c762ed1625d7e200832d891136ebd1984298e288b28c2f6b78b99d2a4a6d7b90a96b5a9aca"], 0x1c}}, 0x0)

kernel console output (not intermixed with test programs):

596111][ T5484] team0: entered allmulticast mode
[   91.597027][ T5488] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.601455][ T5484] team_slave_0: entered allmulticast mode
[   91.619164][ T5484] team_slave_1: entered allmulticast mode
[   91.626898][ T5484] bridge0: port 3(team0) entered blocking state
[   91.633311][ T5484] bridge0: port 3(team0) entered forwarding state
[   91.744760][ T5492] sg_write: data in/out 3843/14 bytes for SCSI command 0x4-- guessing data in;
[   91.744760][ T5492]    program syz.4.582 not setting count and/or reply_len properly
[   91.861041][ T5499] sg_write: data in/out 3843/14 bytes for SCSI command 0x4-- guessing data in;
[   91.861041][ T5499]    program syz.4.584 not setting count and/or reply_len properly
[   91.877934][ T5501] netlink: 'syz.0.585': attribute type 1 has an invalid length.
[   91.896834][   T29] kauditd_printk_skb: 352 callbacks suppressed
[   91.896853][   T29] audit: type=1400 audit(1749602744.459:4237): avc:  denied  { cpu } for  pid=5500 comm="syz.0.585" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   91.900019][ T5503] netlink: 'syz.4.586': attribute type 1 has an invalid length.
[   91.932671][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.995185][ T5508] loop3: detected capacity change from 0 to 512
[   92.007842][   T29] audit: type=1400 audit(1749602744.569:4238): avc:  denied  { mounton } for  pid=5507 comm="+}[@" path="/126/file0" dev="tmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   92.032394][ T5510] loop1: detected capacity change from 0 to 512
[   92.055621][ T5508] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   92.064348][ T5508] EXT4-fs (loop3): orphan cleanup on readonly fs
[   92.072343][ T5508] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm +}[@: corrupted inode contents
[   92.084086][   T29] audit: type=1326 audit(1749602744.639:4239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5516 comm="syz.0.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f894ce4e929 code=0x7ffc0000
[   92.107573][   T29] audit: type=1326 audit(1749602744.639:4240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5516 comm="syz.0.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=158 compat=0 ip=0x7f894ce4e929 code=0x7ffc0000
[   92.109802][ T5508] EXT4-fs (loop3): Remounting filesystem read-only
[   92.131189][   T29] audit: type=1326 audit(1749602744.639:4241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5516 comm="syz.0.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f894ce4e929 code=0x7ffc0000
[   92.164080][ T5510] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   92.172219][ T5510] EXT4-fs (loop1): orphan cleanup on readonly fs
[   92.190616][ T5510] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #16: comm syz.1.588: corrupted inode contents
[   92.222627][ T5508] EXT4-fs (loop3): 1 truncate cleaned up
[   92.232467][ T3530] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   92.243395][ T3530] Quota error (device loop3): write_blk: dquota write failed
[   92.250810][ T3530] Quota error (device loop3): remove_free_dqentry: Can't write block (5) with free entries
[   92.260854][ T3530] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   92.271508][ T3530] Quota error (device loop3): write_blk: dquota write failed
[   92.279045][ T3530] Quota error (device loop3): free_dqentry: Can't move quota data block (5) to free list
[   92.285093][ T5510] EXT4-fs (loop1): Remounting filesystem read-only
[   92.297017][ T5510] EXT4-fs (loop1): 1 truncate cleaned up
[   92.302863][ T3530] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[   92.313155][ T3530] Quota error (device loop3): v2_write_file_info: Can't write info structure
[   92.329383][ T3530] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   92.340304][ T3530] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   92.351324][ T3530] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[   92.362398][ T5508] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   92.375934][ T5508] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.385939][ T5510] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   92.422588][ T5532] sg_write: data in/out 3843/14 bytes for SCSI command 0x4-- guessing data in;
[   92.422588][ T5532]    program syz.2.596 not setting count and/or reply_len properly
[   92.504721][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.516773][ T5535] netlink: 'syz.2.598': attribute type 1 has an invalid length.
[   92.524529][ T5535] __nla_validate_parse: 10 callbacks suppressed
[   92.524543][ T5535] netlink: 161700 bytes leftover after parsing attributes in process `syz.2.598'.
[   92.549774][ T5537] netlink: 16 bytes leftover after parsing attributes in process `syz.4.600'.
[   92.750295][ T5558] loop3: detected capacity change from 0 to 2048
[   92.766532][ T5561] loop1: detected capacity change from 0 to 2048
[   92.792311][ T5561] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   92.902979][ T3298] Alternate GPT is invalid, using primary GPT.
[   92.909385][ T3298]  loop3: p1 p2 p3
[   92.929148][ T5558] Alternate GPT is invalid, using primary GPT.
[   92.935802][ T5558]  loop3: p1 p2 p3
[   93.038619][ T3298] udevd[3298]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   93.038763][ T3532] udevd[3532]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[   93.059828][ T3539] udevd[3539]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   93.084228][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.108881][ T5572] netlink: 4 bytes leftover after parsing attributes in process `syz.3.612'.
[   93.157756][ T5574] netlink: 16 bytes leftover after parsing attributes in process `syz.1.613'.
[   93.260888][ T5581] loop4: detected capacity change from 0 to 1024
[   93.261774][ T5579] loop1: detected capacity change from 0 to 2048
[   93.270548][ T5581] EXT4-fs: Ignoring removed nomblk_io_submit option
[   93.295618][ T5581] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   93.342992][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.377940][ T5589] loop1: detected capacity change from 0 to 512
[   93.419752][ T5596] netlink: 'syz.0.621': attribute type 1 has an invalid length.
[   93.427653][ T5596] netlink: 161700 bytes leftover after parsing attributes in process `syz.0.621'.
[   93.437951][ T5589] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   93.447865][ T5589] EXT4-fs (loop1): orphan cleanup on readonly fs
[   93.466134][ T5589] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #16: comm syz.1.618: corrupted inode contents
[   93.497022][ T5589] EXT4-fs (loop1): Remounting filesystem read-only
[   93.503959][ T5589] EXT4-fs (loop1): 1 truncate cleaned up
[   93.509935][   T12] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   93.520569][   T12] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   93.531539][   T12] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[   93.542517][ T5589] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   93.555541][ T5589] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.634554][ T5606] xt_hashlimit: size too large, truncated to 1048576
[   93.641343][ T5606] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[   93.654382][ T5609] Zero length message leads to an empty skb
[   93.745274][ T5609] loop1: detected capacity change from 0 to 8192
[   94.188091][ T5618] netlink: 16 bytes leftover after parsing attributes in process `syz.0.626'.
[   94.264867][ T5622] xt_hashlimit: size too large, truncated to 1048576
[   94.271707][ T5622] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[   94.605169][ T5651] netlink: 'syz.4.635': attribute type 1 has an invalid length.
[   94.613016][ T5651] netlink: 161700 bytes leftover after parsing attributes in process `syz.4.635'.
[   94.700761][ T5651] loop4: detected capacity change from 0 to 8192
[   94.724377][ T5667] wireguard0: entered promiscuous mode
[   94.729952][ T5667] wireguard0: entered allmulticast mode
[   94.743192][ T5670] loop1: detected capacity change from 0 to 2048
[   94.785938][ T5670] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.049028][ T5686] netlink: 16 bytes leftover after parsing attributes in process `syz.0.639'.
[   95.062482][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.148735][ T5692] loop1: detected capacity change from 0 to 1024
[   95.158566][ T5692] EXT4-fs: Ignoring removed nomblk_io_submit option
[   95.186097][ T5692] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.210222][ T5701] xt_hashlimit: size too large, truncated to 1048576
[   95.217133][ T5701] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[   95.279325][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.328694][ T5703] syzkaller1: entered promiscuous mode
[   95.334261][ T5703] syzkaller1: entered allmulticast mode
[   95.400879][ T5709] loop1: detected capacity change from 0 to 512
[   95.428979][ T5709] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   95.441092][ T5711] loop3: detected capacity change from 0 to 512
[   95.442173][ T5709] EXT4-fs (loop1): orphan cleanup on readonly fs
[   95.461865][ T5709] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #16: comm +}[@: corrupted inode contents
[   95.475477][ T5709] EXT4-fs (loop1): Remounting filesystem read-only
[   95.493750][ T5709] EXT4-fs (loop1): 1 truncate cleaned up
[   95.499909][ T5711] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   95.508294][ T3530] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   95.509992][ T5711] EXT4-fs (loop3): orphan cleanup on readonly fs
[   95.518863][ T3530] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   95.527309][ T5711] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.649: corrupted inode contents
[   95.548430][ T5711] EXT4-fs (loop3): Remounting filesystem read-only
[   95.555461][ T5711] EXT4-fs (loop3): 1 truncate cleaned up
[   95.561257][ T3530] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[   95.572690][ T3530] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   95.583625][ T3530] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   95.608217][ T3530] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[   95.619234][ T5709] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   95.635224][ T5709] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.645058][ T5711] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   95.668813][ T5719] sg_write: data in/out 3843/14 bytes for SCSI command 0x4-- guessing data in;
[   95.668813][ T5719]    program syz.2.651 not setting count and/or reply_len properly
[   95.720166][ T5721] netlink: 16 bytes leftover after parsing attributes in process `syz.2.652'.
[   95.745197][ T5723] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[   95.751933][ T5723] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   95.759584][ T5723] vhci_hcd vhci_hcd.0: Device attached
[   95.775097][ T5724] vhci_hcd: connection closed
[   95.775356][ T3530] vhci_hcd: stop threads
[   95.784503][ T3530] vhci_hcd: release socket
[   95.788945][ T3530] vhci_hcd: disconnect device
[   95.795815][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.822339][ T5728] netlink: 'syz.1.654': attribute type 10 has an invalid length.
[   95.852676][ T5728] team0: left promiscuous mode
[   95.858646][ T5728] team_slave_0: left promiscuous mode
[   95.864251][ T5728] team_slave_1: left promiscuous mode
[   95.895002][ T5735] xt_hashlimit: size too large, truncated to 1048576
[   95.899471][ T5728] batman_adv: batadv0: Adding interface: team0
[   95.901753][ T5735] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[   95.912944][ T5736] netlink: 'syz.1.654': attribute type 10 has an invalid length.
[   95.915107][ T5728] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   95.922944][ T5736] netlink: 2 bytes leftover after parsing attributes in process `syz.1.654'.
[   95.948212][ T5728] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[   96.015988][ T5736] team0: entered promiscuous mode
[   96.025257][ T5736] team_slave_0: entered promiscuous mode
[   96.031123][ T5736] team_slave_1: entered promiscuous mode
[   96.046952][ T5736] 8021q: adding VLAN 0 to HW filter on device team0
[   96.054629][ T5736] batman_adv: batadv0: Interface activated: team0
[   96.061194][ T5736] batman_adv: batadv0: Interface deactivated: team0
[   96.067975][ T5736] batman_adv: batadv0: Removing interface: team0
[   96.081776][ T5743] loop3: detected capacity change from 0 to 512
[   96.127996][ T5743] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   96.139785][ T5743] EXT4-fs (loop3): orphan cleanup on readonly fs
[   96.150985][ T5749] xt_hashlimit: size too large, truncated to 1048576
[   96.157899][ T5749] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[   96.165142][ T5743] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.661: corrupted inode contents
[   96.186592][ T5743] EXT4-fs (loop3): Remounting filesystem read-only
[   96.200971][ T5743] EXT4-fs (loop3): 1 truncate cleaned up
[   96.209533][ T3530] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   96.220204][ T3530] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   96.241968][ T3530] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[   96.252642][ T5743] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   96.381063][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.742714][ T5787] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[   96.749284][ T5787] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   96.756908][ T5787] vhci_hcd vhci_hcd.0: Device attached
[   96.763261][ T5788] vhci_hcd: connection closed
[   96.763335][ T3530] vhci_hcd: stop threads
[   96.772491][ T3530] vhci_hcd: release socket
[   96.777030][ T3530] vhci_hcd: disconnect device
[   96.908792][   T29] kauditd_printk_skb: 855 callbacks suppressed
[   96.908806][   T29] audit: type=1326 audit(1749602749.469:5066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5759 comm="syz.2.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4a00ec58e7 code=0x7ffc0000
[   96.939031][   T29] audit: type=1326 audit(1749602749.469:5067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5759 comm="syz.2.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4a00e6ab19 code=0x7ffc0000
[   96.962369][   T29] audit: type=1326 audit(1749602749.469:5068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5759 comm="syz.2.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4a00ece929 code=0x7ffc0000
[   96.985779][   T29] audit: type=1326 audit(1749602749.499:5069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5759 comm="syz.2.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4a00ec58e7 code=0x7ffc0000
[   97.009629][   T29] audit: type=1326 audit(1749602749.499:5070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5759 comm="syz.2.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4a00e6ab19 code=0x7ffc0000
[   97.033201][   T29] audit: type=1326 audit(1749602749.499:5071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5759 comm="syz.2.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4a00ec58e7 code=0x7ffc0000
[   97.056603][   T29] audit: type=1326 audit(1749602749.499:5072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5759 comm="syz.2.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4a00e6ab19 code=0x7ffc0000
[   97.080182][   T29] audit: type=1326 audit(1749602749.499:5073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5759 comm="syz.2.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4a00ece929 code=0x7ffc0000
[   97.103636][   T29] audit: type=1326 audit(1749602749.519:5074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5759 comm="syz.2.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4a00ec58e7 code=0x7ffc0000
[   97.127240][   T29] audit: type=1326 audit(1749602749.519:5075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5759 comm="syz.2.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4a00e6ab19 code=0x7ffc0000
[   97.178842][ T5797] sg_write: data in/out 3843/14 bytes for SCSI command 0x4-- guessing data in;
[   97.178842][ T5797]    program syz.0.679 not setting count and/or reply_len properly
[   97.379324][ T5811] loop4: detected capacity change from 0 to 2048
[   97.388580][ T5804] xt_hashlimit: size too large, truncated to 1048576
[   97.452179][ T3298] Alternate GPT is invalid, using primary GPT.
[   97.458644][ T3298]  loop4: p1 p2 p3
[   97.521274][ T5820] loop3: detected capacity change from 0 to 128
[   97.528881][ T5820] FAT-fs (loop3): Directory bread(block 162) failed
[   97.537199][ T5820] FAT-fs (loop3): Directory bread(block 163) failed
[   97.547164][ T5820] FAT-fs (loop3): Directory bread(block 164) failed
[   97.568335][ T5820] FAT-fs (loop3): Directory bread(block 165) failed
[   97.590681][ T5820] FAT-fs (loop3): Directory bread(block 166) failed
[   97.605636][ T5820] FAT-fs (loop3): Directory bread(block 167) failed
[   97.612763][ T5820] FAT-fs (loop3): Directory bread(block 168) failed
[   97.621249][ T5820] FAT-fs (loop3): Directory bread(block 169) failed
[   97.632231][ T5819] FAT-fs (loop3): Directory bread(block 162) failed
[   97.640683][ T5819] FAT-fs (loop3): Directory bread(block 163) failed
[   97.656405][ T5819] syz.3.687: attempt to access beyond end of device
[   97.656405][ T5819] loop3: rw=3, sector=226, nr_sectors = 6 limit=128
[   97.685073][ T5819] syz.3.687: attempt to access beyond end of device
[   97.685073][ T5819] loop3: rw=2051, sector=232, nr_sectors = 2 limit=128
[   97.819981][ T5826] wireguard0: entered promiscuous mode
[   97.825597][ T5826] wireguard0: entered allmulticast mode
[   97.951906][ T5811] Alternate GPT is invalid, using primary GPT.
[   97.958428][ T5811]  loop4: p1 p2 p3
[   98.087970][ T3298] udevd[3298]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   98.098441][ T3539] udevd[3539]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   98.114989][ T3532] udevd[3532]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   98.233518][ T5835] __nla_validate_parse: 3 callbacks suppressed
[   98.233536][ T5835] netlink: 276 bytes leftover after parsing attributes in process `syz.4.691'.
[   98.299632][ T5835] netlink: 4 bytes leftover after parsing attributes in process `syz.4.691'.
[   98.335579][ T5834] loop4: detected capacity change from 0 to 128
[   98.399638][ T5834] FAT-fs (loop4): Directory bread(block 162) failed
[   98.404086][ T5840] sg_write: data in/out 3843/14 bytes for SCSI command 0x4-- guessing data in;
[   98.404086][ T5840]    program syz.0.693 not setting count and/or reply_len properly
[   98.410790][ T5834] FAT-fs (loop4): Directory bread(block 163) failed
[   98.448576][ T5834] FAT-fs (loop4): Directory bread(block 164) failed
[   98.462962][ T5834] FAT-fs (loop4): Directory bread(block 165) failed
[   98.477322][ T5834] FAT-fs (loop4): Directory bread(block 166) failed
[   98.493449][ T5834] FAT-fs (loop4): Directory bread(block 167) failed
[   98.527150][ T5834] FAT-fs (loop4): Directory bread(block 168) failed
[   98.553413][ T5834] FAT-fs (loop4): Directory bread(block 169) failed
[   98.588285][ T5834] FAT-fs (loop4): Directory bread(block 162) failed
[   98.626709][ T5834] FAT-fs (loop4): Directory bread(block 163) failed
[   98.662114][ T5834] syz.4.691: attempt to access beyond end of device
[   98.662114][ T5834] loop4: rw=3, sector=226, nr_sectors = 6 limit=128
[   98.736592][ T5834] syz.4.691: attempt to access beyond end of device
[   98.736592][ T5834] loop4: rw=2051, sector=232, nr_sectors = 2 limit=128
[   98.756889][ T5867] sg_write: data in/out 3843/14 bytes for SCSI command 0x4-- guessing data in;
[   98.756889][ T5867]    program syz.0.705 not setting count and/or reply_len properly
[   98.789994][ T5865] loop1: detected capacity change from 0 to 2048
[   98.804196][ T5861] loop3: detected capacity change from 0 to 1024
[   98.812738][ T5861] EXT4-fs: Ignoring removed bh option
[   98.825907][ T5861] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   98.839733][ T5861] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   98.849454][ T5861] EXT4-fs (loop3): orphan cleanup on readonly fs
[   98.862021][ T5861] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz.3.703: Invalid inode table block 0 in block_group 0
[   98.877576][ T5865] Alternate GPT is invalid, using primary GPT.
[   98.883885][ T5865]  loop1: p1 p2 p3
[   98.888194][ T5861] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   98.905309][ T5861] EXT4-fs error (device loop3): ext4_quota_write:7322: inode #3: comm syz.3.703: mark_inode_dirty error
[   98.939154][ T5861] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.703: Failed to acquire dquot type 0
[   98.956269][ T5861] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz.3.703: Invalid inode table block 0 in block_group 0
[   99.010658][ T5877] random: crng reseeded on system resumption
[   99.036090][ T5861] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   99.057126][ T3532] udevd[3532]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[   99.068304][ T5861] EXT4-fs error (device loop3): ext4_ext_truncate:4475: inode #15: comm syz.3.703: mark_inode_dirty error
[   99.071741][ T3298] udevd[3298]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   99.091520][ T3539] udevd[3539]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[   99.111304][ T5861] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz.3.703: Invalid inode table block 0 in block_group 0
[   99.157014][ T5861] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   99.166914][ T5881] random: crng reseeded on system resumption
[   99.187472][ T5861] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   99.196282][ T5885] Falling back ldisc for ttyS3.
[   99.210652][ T5861] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz.3.703: Invalid inode table block 0 in block_group 0
[   99.230433][ T5861] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   99.241516][ T5861] EXT4-fs error (device loop3): ext4_truncate:4597: inode #15: comm syz.3.703: mark_inode_dirty error
[   99.253988][ T5861] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   99.263900][ T5886] loop1: detected capacity change from 0 to 8192
[   99.270752][ T5861] EXT4-fs (loop3): 1 truncate cleaned up
[   99.291267][ T5891] syzkaller1: entered promiscuous mode
[   99.296973][ T5891] syzkaller1: entered allmulticast mode
[   99.309129][ T5861] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   99.331146][ T5899] netlink: 276 bytes leftover after parsing attributes in process `syz.2.717'.
[   99.340791][ T5899] netlink: 4 bytes leftover after parsing attributes in process `syz.2.717'.
[   99.362675][ T5898] loop4: detected capacity change from 0 to 2048
[   99.390028][ T5903] netlink: 'syz.0.719': attribute type 1 has an invalid length.
[   99.397994][ T5903] netlink: 161700 bytes leftover after parsing attributes in process `syz.0.719'.
[   99.410825][ T3298] Alternate GPT is invalid, using primary GPT.
[   99.417240][ T3298]  loop4: p1 p2 p3
[   99.430481][ T5898] Alternate GPT is invalid, using primary GPT.
[   99.437004][ T5898]  loop4: p1 p2 p3
[   99.479601][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.550893][ T3532] udevd[3532]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   99.555098][ T3298] udevd[3298]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   99.562095][ T3539] udevd[3539]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   99.620648][ T3536] udevd[3536]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   99.780252][ T5915] netlink: 276 bytes leftover after parsing attributes in process `syz.4.721'.
[   99.794476][ T5915] netlink: 4 bytes leftover after parsing attributes in process `syz.4.721'.
[   99.805053][ T5915] loop4: detected capacity change from 0 to 128
[   99.817081][ T5915] FAT-fs (loop4): Directory bread(block 162) failed
[   99.841175][ T5914] loop3: detected capacity change from 0 to 8192
[   99.848081][ T5915] FAT-fs (loop4): Directory bread(block 163) failed
[   99.863608][ T5915] FAT-fs (loop4): Directory bread(block 164) failed
[   99.877589][ T5915] FAT-fs (loop4): Directory bread(block 165) failed
[   99.885185][ T5915] FAT-fs (loop4): Directory bread(block 166) failed
[   99.893093][ T5915] FAT-fs (loop4): Directory bread(block 167) failed
[   99.908510][ T5915] FAT-fs (loop4): Directory bread(block 168) failed
[   99.915662][ T5915] FAT-fs (loop4): Directory bread(block 169) failed
[   99.986111][ T5915] FAT-fs (loop4): Directory bread(block 162) failed
[   99.993188][ T5915] FAT-fs (loop4): Directory bread(block 163) failed
[  100.001078][ T5915] syz.4.721: attempt to access beyond end of device
[  100.001078][ T5915] loop4: rw=3, sector=226, nr_sectors = 6 limit=128
[  100.015260][ T5915] syz.4.721: attempt to access beyond end of device
[  100.015260][ T5915] loop4: rw=2051, sector=232, nr_sectors = 2 limit=128
[  100.189960][ T5921] loop1: detected capacity change from 0 to 1024
[  100.218365][ T5921] EXT4-fs: Ignoring removed nomblk_io_submit option
[  100.250044][ T5921] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.390111][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.461444][ T5934] xt_hashlimit: size too large, truncated to 1048576
[  100.468251][ T5934] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[  100.528197][ T5936] loop4: detected capacity change from 0 to 1024
[  100.536173][ T5936] EXT4-fs: Ignoring removed nomblk_io_submit option
[  100.555274][ T5936] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.640865][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.686851][ T5944] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  100.693463][ T5944] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  100.701078][ T5944] vhci_hcd vhci_hcd.0: Device attached
[  100.736920][ T5945] vhci_hcd: connection closed
[  100.737063][ T3530] vhci_hcd: stop threads
[  100.746186][ T3530] vhci_hcd: release socket
[  100.750669][ T3530] vhci_hcd: disconnect device
[  100.949069][ T5958] FAULT_INJECTION: forcing a failure.
[  100.949069][ T5958] name failslab, interval 1, probability 0, space 0, times 0
[  100.961858][ T5958] CPU: 1 UID: 0 PID: 5958 Comm: syz.3.738 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[  100.961920][ T5958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  100.961937][ T5958] Call Trace:
[  100.961945][ T5958]  <TASK>
[  100.961955][ T5958]  __dump_stack+0x1d/0x30
[  100.961980][ T5958]  dump_stack_lvl+0xe8/0x140
[  100.962066][ T5958]  dump_stack+0x15/0x1b
[  100.962082][ T5958]  should_fail_ex+0x265/0x280
[  100.962122][ T5958]  should_failslab+0x8c/0xb0
[  100.962145][ T5958]  kmem_cache_alloc_node_noprof+0x57/0x320
[  100.962179][ T5958]  ? __alloc_skb+0x101/0x320
[  100.962221][ T5958]  __alloc_skb+0x101/0x320
[  100.962284][ T5958]  ? audit_log_start+0x365/0x6c0
[  100.962325][ T5958]  audit_log_start+0x380/0x6c0
[  100.962371][ T5958]  audit_seccomp+0x48/0x100
[  100.962400][ T5958]  ? __seccomp_filter+0x68c/0x10d0
[  100.962489][ T5958]  __seccomp_filter+0x69d/0x10d0
[  100.962516][ T5958]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  100.962550][ T5958]  ? vfs_write+0x75e/0x8e0
[  100.962695][ T5958]  __secure_computing+0x82/0x150
[  100.962724][ T5958]  syscall_trace_enter+0xcf/0x1e0
[  100.962755][ T5958]  do_syscall_64+0xac/0x200
[  100.962782][ T5958]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  100.962815][ T5958]  ? clear_bhb_loop+0x40/0x90
[  100.962885][ T5958]  ? clear_bhb_loop+0x40/0x90
[  100.962961][ T5958]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.962989][ T5958] RIP: 0033:0x7f0e8973e929
[  100.963008][ T5958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.963054][ T5958] RSP: 002b:00007f0e87da7038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  100.963077][ T5958] RAX: ffffffffffffffda RBX: 00007f0e89965fa0 RCX: 00007f0e8973e929
[  100.963133][ T5958] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffffffffffff
[  100.963148][ T5958] RBP: 00007f0e87da7090 R08: 0000000000000000 R09: 0000000000000000
[  100.963163][ T5958] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000001
[  100.963179][ T5958] R13: 0000000000000000 R14: 00007f0e89965fa0 R15: 00007ffeca202368
[  100.963200][ T5958]  </TASK>
[  101.212782][ T5965] wireguard0: entered promiscuous mode
[  101.218637][ T5965] wireguard0: entered allmulticast mode
[  101.234279][ T5955] Falling back ldisc for ttyS3.
[  101.253014][ T5979] loop3: detected capacity change from 0 to 1024
[  101.261668][ T5979] EXT4-fs: Ignoring removed nomblk_io_submit option
[  101.327295][ T5979] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.378640][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.389022][ T5999] netlink: 276 bytes leftover after parsing attributes in process `syz.0.742'.
[  101.416582][ T5999] netlink: 4 bytes leftover after parsing attributes in process `syz.0.742'.
[  101.528655][ T6004] loop3: detected capacity change from 0 to 512
[  101.561867][ T6004] EXT4-fs (loop3): too many log groups per flexible block group
[  101.571446][ T6004] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  101.580990][ T6004] EXT4-fs (loop3): mount failed
[  101.612295][ T6004] xt_hashlimit: size too large, truncated to 1048576
[  101.915595][   T29] kauditd_printk_skb: 635 callbacks suppressed
[  101.915614][   T29] audit: type=1326 audit(1749602754.479:5707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6015 comm="syz.0.745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f894ce4e929 code=0x7ffc0000
[  101.974656][ T6020] syzkaller1: entered promiscuous mode
[  101.980281][ T6020] syzkaller1: entered allmulticast mode
[  101.997829][   T29] audit: type=1326 audit(1749602754.509:5708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6015 comm="syz.0.745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f894ce4e929 code=0x7ffc0000
[  102.021396][   T29] audit: type=1326 audit(1749602754.509:5709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6015 comm="syz.0.745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f894ce4e929 code=0x7ffc0000
[  102.495996][   T29] audit: type=1400 audit(1749602755.059:5710): avc:  denied  { mounton } for  pid=6026 comm="syz.0.750" path="/syzcgroup/cpu/syz0/cgroup.procs" dev="cgroup" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=file permissive=1
[  102.685506][ T6044] loop3: detected capacity change from 0 to 1024
[  102.700239][ T6044] EXT4-fs: Ignoring removed bh option
[  102.724119][ T6044] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  102.757352][ T6044] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  102.834272][ T6044] EXT4-fs (loop3): orphan cleanup on readonly fs
[  102.847330][ T6044] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz.3.757: Invalid inode table block 0 in block_group 0
[  102.874360][ T6044] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  102.884573][ T6044] EXT4-fs error (device loop3): ext4_quota_write:7322: inode #3: comm syz.3.757: mark_inode_dirty error
[  102.886050][ T6058] netlink: 'syz.4.756': attribute type 10 has an invalid length.
[  102.906210][ T6058] bridge0: port 3(team0) entered disabled state
[  102.913192][ T6058] team0: left allmulticast mode
[  102.918446][ T6058] team_slave_0: left allmulticast mode
[  102.924263][ T6058] team_slave_1: left allmulticast mode
[  102.929930][ T6058] team0: left promiscuous mode
[  102.934874][ T6044] Quota error (device loop3): write_blk: dquota write failed
[  102.942557][ T6044] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  102.952571][ T6044] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.757: Failed to acquire dquot type 0
[  102.965760][ T6058] team_slave_0: left promiscuous mode
[  102.971351][ T6058] team_slave_1: left promiscuous mode
[  102.977123][ T6058] bridge0: port 3(team0) entered disabled state
[  102.997563][   T29] audit: type=1400 audit(1749602755.559:5711): avc:  denied  { read } for  pid=6054 comm="syz.2.761" dev="nsfs" ino=4026532588 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  102.997807][ T6044] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz.3.757: Invalid inode table block 0 in block_group 0
[  103.018733][   T29] audit: type=1400 audit(1749602755.559:5712): avc:  denied  { open } for  pid=6054 comm="syz.2.761" path="net:[4026532588]" dev="nsfs" ino=4026532588 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  103.054550][   T29] audit: type=1400 audit(1749602755.559:5713): avc:  denied  { create } for  pid=6054 comm="syz.2.761" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  103.074415][   T29] audit: type=1400 audit(1749602755.559:5714): avc:  denied  { setopt } for  pid=6054 comm="syz.2.761" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  103.095160][ T6063] netlink: 'syz.4.756': attribute type 10 has an invalid length.
[  103.102952][ T6063] netlink: 2 bytes leftover after parsing attributes in process `syz.4.756'.
[  103.114162][ T6044] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  103.123985][ T6044] EXT4-fs error (device loop3): ext4_ext_truncate:4475: inode #15: comm syz.3.757: mark_inode_dirty error
[  103.136141][ T6058] batman_adv: batadv0: Adding interface: team0
[  103.142353][ T6058] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  103.167919][ T6058] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  103.178574][ T6044] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz.3.757: Invalid inode table block 0 in block_group 0
[  103.191751][ T6063] team0: entered promiscuous mode
[  103.197077][ T6063] team_slave_0: entered promiscuous mode
[  103.202883][ T6063] team_slave_1: entered promiscuous mode
[  103.220382][ T6063] 8021q: adding VLAN 0 to HW filter on device team0
[  103.227234][ T6044] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  103.237464][ T6044] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  103.242625][ T6063] batman_adv: batadv0: Interface activated: team0
[  103.252563][ T6063] batman_adv: batadv0: Interface deactivated: team0
[  103.255454][ T6044] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz.3.757: Invalid inode table block 0 in block_group 0
[  103.259319][ T6063] batman_adv: batadv0: Removing interface: team0
[  103.273224][ T6044] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  103.288086][ T6044] EXT4-fs error (device loop3): ext4_truncate:4597: inode #15: comm syz.3.757: mark_inode_dirty error
[  103.300209][ T6063] bridge0: port 3(team0) entered blocking state
[  103.300266][ T6044] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  103.306663][ T6063] bridge0: port 3(team0) entered disabled state
[  103.317491][ T6044] EXT4-fs (loop3): 1 truncate cleaned up
[  103.328604][ T6044] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  103.341152][ T6063] team0: entered allmulticast mode
[  103.346593][ T6063] team_slave_0: entered allmulticast mode
[  103.352516][ T6063] team_slave_1: entered allmulticast mode
[  103.359353][ T6063] bridge0: port 3(team0) entered blocking state
[  103.365939][ T6063] bridge0: port 3(team0) entered forwarding state
[  103.385429][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.476610][ T6079] loop3: detected capacity change from 0 to 1024
[  103.490812][ T6079] EXT4-fs: Ignoring removed nomblk_io_submit option
[  103.544266][ T6079] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.617872][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.636662][ T6093] sg_write: data in/out 3843/14 bytes for SCSI command 0x4-- guessing data in;
[  103.636662][ T6093]    program syz.1.774 not setting count and/or reply_len properly
[  103.706784][ T6085] loop4: detected capacity change from 0 to 512
[  103.804019][ T6085] EXT4-fs (loop4): too many log groups per flexible block group
[  103.805278][ T6107] loop1: detected capacity change from 0 to 2048
[  103.813262][ T6085] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  103.838220][ T6085] EXT4-fs (loop4): mount failed
[  104.095103][ T6131] sg_write: data in/out 3843/14 bytes for SCSI command 0x4-- guessing data in;
[  104.095103][ T6131]    program syz.4.787 not setting count and/or reply_len properly
[  104.121186][ T6134] netlink: 'syz.0.789': attribute type 1 has an invalid length.
[  104.129085][ T6134] netlink: 161700 bytes leftover after parsing attributes in process `syz.0.789'.
[  104.185862][ T6141] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  104.192705][ T6141] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  104.200436][ T6141] vhci_hcd vhci_hcd.0: Device attached
[  104.214980][ T6142] vhci_hcd: connection closed
[  104.215441][  T159] vhci_hcd: stop threads
[  104.224478][  T159] vhci_hcd: release socket
[  104.228943][  T159] vhci_hcd: disconnect device
[  104.266831][ T6148] netlink: 276 bytes leftover after parsing attributes in process `syz.4.791'.
[  104.276414][ T6148] netlink: 4 bytes leftover after parsing attributes in process `syz.4.791'.
[  104.287329][ T6148] loop4: detected capacity change from 0 to 128
[  104.305013][ T6148] FAT-fs (loop4): Directory bread(block 162) failed
[  104.311695][ T6148] FAT-fs (loop4): Directory bread(block 163) failed
[  104.335282][ T6148] FAT-fs (loop4): Directory bread(block 164) failed
[  104.342672][ T6148] FAT-fs (loop4): Directory bread(block 165) failed
[  104.349795][ T6148] FAT-fs (loop4): Directory bread(block 166) failed
[  104.356857][ T6148] FAT-fs (loop4): Directory bread(block 167) failed
[  104.364621][ T6148] FAT-fs (loop4): Directory bread(block 168) failed
[  104.371695][ T6148] FAT-fs (loop4): Directory bread(block 169) failed
[  104.380803][ T6148] FAT-fs (loop4): Directory bread(block 162) failed
[  104.387663][ T6148] FAT-fs (loop4): Directory bread(block 163) failed
[  104.396116][ T6148] syz.4.791: attempt to access beyond end of device
[  104.396116][ T6148] loop4: rw=3, sector=226, nr_sectors = 6 limit=128
[  104.409318][ T6148] syz.4.791: attempt to access beyond end of device
[  104.409318][ T6148] loop4: rw=2051, sector=232, nr_sectors = 2 limit=128
[  104.550830][ T6156] random: crng reseeded on system resumption
[  104.602192][ T6161] sg_write: data in/out 3843/14 bytes for SCSI command 0x4-- guessing data in;
[  104.602192][ T6161]    program syz.2.800 not setting count and/or reply_len properly
[  104.629654][ T6162] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  104.636288][ T6162] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  104.643955][ T6162] vhci_hcd vhci_hcd.0: Device attached
[  104.652215][ T6163] vhci_hcd: connection closed
[  104.652333][ T3530] vhci_hcd: stop threads
[  104.661621][ T3530] vhci_hcd: release socket
[  104.666137][ T3530] vhci_hcd: disconnect device
[  104.724675][ T6166] xt_hashlimit: size too large, truncated to 1048576
[  105.057877][ T6177] loop1: detected capacity change from 0 to 512
[  105.198056][ T6177] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  105.214541][ T6188] loop4: detected capacity change from 0 to 1024
[  105.235600][ T6177] EXT4-fs (loop1): orphan cleanup on readonly fs
[  105.282695][ T6188] EXT4-fs: Ignoring removed bh option
[  105.299236][ T6177] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #16: comm syz.1.804: corrupted inode contents
[  105.313550][ T6188] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  105.331151][ T6177] EXT4-fs (loop1): Remounting filesystem read-only
[  105.338232][ T6177] EXT4-fs (loop1): 1 truncate cleaned up
[  105.344379][   T57] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  105.355417][   T57] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  105.370701][   T57] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[  105.381680][ T6177] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  105.420188][ T6191] random: crng reseeded on system resumption
[  105.426808][ T6188] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  105.439800][ T6188] EXT4-fs (loop4): orphan cleanup on readonly fs
[  105.446775][ T6188] EXT4-fs error (device loop4): __ext4_get_inode_loc:4792: comm syz.4.806: Invalid inode table block 0 in block_group 0
[  105.469315][ T6188] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  105.488072][ T6188] EXT4-fs error (device loop4): ext4_quota_write:7322: inode #3: comm syz.4.806: mark_inode_dirty error
[  105.518851][ T6188] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.806: Failed to acquire dquot type 0
[  105.559956][ T6188] EXT4-fs error (device loop4): __ext4_get_inode_loc:4792: comm syz.4.806: Invalid inode table block 0 in block_group 0
[  105.577224][ T6197] sg_write: data in/out 3843/14 bytes for SCSI command 0x4-- guessing data in;
[  105.577224][ T6197]    program syz.0.811 not setting count and/or reply_len properly
[  105.612815][ T6188] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  105.621572][ T6200] netlink: 'syz.2.812': attribute type 10 has an invalid length.
[  105.624753][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.639551][ T6200] batman_adv: batadv0: Adding interface: team0
[  105.645939][ T6200] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  105.671431][ T6200] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  105.672625][ T6188] EXT4-fs error (device loop4): ext4_ext_truncate:4475: inode #15: comm syz.4.806: mark_inode_dirty error
[  105.682701][ T6200] netlink: 'syz.2.812': attribute type 10 has an invalid length.
[  105.697886][ T6188] EXT4-fs error (device loop4): __ext4_get_inode_loc:4792: comm syz.4.806: Invalid inode table block 0 in block_group 0
[  105.700513][ T6200] netlink: 2 bytes leftover after parsing attributes in process `syz.2.812'.
[  105.715292][ T6188] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  105.732946][ T6200] team0: entered promiscuous mode
[  105.739315][ T6200] 8021q: adding VLAN 0 to HW filter on device team0
[  105.746553][ T6200] batman_adv: batadv0: Interface activated: team0
[  105.753112][ T6200] batman_adv: batadv0: Interface deactivated: team0
[  105.759850][ T6200] batman_adv: batadv0: Removing interface: team0
[  105.764415][ T6188] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  105.783172][ T6200] bridge0: port 1(team0) entered blocking state
[  105.783747][ T6188] EXT4-fs error (device loop4): __ext4_get_inode_loc:4792: comm syz.4.806: Invalid inode table block 0 in block_group 0
[  105.789691][ T6200] bridge0: port 1(team0) entered disabled state
[  105.804016][ T6188] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  105.822998][ T6200] team0: entered allmulticast mode
[  105.840320][ T6188] EXT4-fs error (device loop4): ext4_truncate:4597: inode #15: comm syz.4.806: mark_inode_dirty error
[  105.852126][ T6188] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  105.864942][ T6211] netlink: 276 bytes leftover after parsing attributes in process `syz.1.815'.
[  105.874914][ T6211] netlink: 4 bytes leftover after parsing attributes in process `syz.1.815'.
[  105.886065][ T6188] EXT4-fs (loop4): 1 truncate cleaned up
[  105.888712][ T6211] loop1: detected capacity change from 0 to 128
[  105.892382][ T6188] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  105.913997][ T6211] FAT-fs (loop1): Directory bread(block 162) failed
[  105.923426][ T6211] FAT-fs (loop1): Directory bread(block 163) failed
[  105.931645][ T6211] FAT-fs (loop1): Directory bread(block 164) failed
[  105.938485][ T6211] FAT-fs (loop1): Directory bread(block 165) failed
[  105.945515][ T6211] FAT-fs (loop1): Directory bread(block 166) failed
[  105.946016][ T6213] wireguard0: entered promiscuous mode
[  105.952344][ T6211] FAT-fs (loop1): Directory bread(block 167) failed
[  105.957864][ T6213] wireguard0: entered allmulticast mode
[  105.964808][ T6211] FAT-fs (loop1): Directory bread(block 168) failed
[  105.977042][ T6211] FAT-fs (loop1): Directory bread(block 169) failed
[  106.001787][ T6211] FAT-fs (loop1): Directory bread(block 162) failed
[  106.018744][ T6211] FAT-fs (loop1): Directory bread(block 163) failed
[  106.045117][ T6211] syz.1.815: attempt to access beyond end of device
[  106.045117][ T6211] loop1: rw=3, sector=226, nr_sectors = 6 limit=128
[  106.072491][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.082131][ T6211] syz.1.815: attempt to access beyond end of device
[  106.082131][ T6211] loop1: rw=2051, sector=232, nr_sectors = 2 limit=128
[  106.192583][ T6222] random: crng reseeded on system resumption
[  106.208037][ T6215] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[  106.252720][ T6215] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(9)
[  106.259306][ T6215] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  106.267190][ T6215] vhci_hcd vhci_hcd.0: Device attached
[  106.302829][ T6215] 9pnet_fd: Insufficient options for proto=fd
[  106.330842][ T6223] vhci_hcd: connection closed
[  106.331109][   T51] vhci_hcd: stop threads
[  106.340295][   T51] vhci_hcd: release socket
[  106.344963][   T51] vhci_hcd: disconnect device
[  106.365115][ T6226] loop4: detected capacity change from 0 to 512
[  106.388061][ T6226] EXT4-fs (loop4): too many log groups per flexible block group
[  106.396234][ T6226] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  106.404419][ T6226] EXT4-fs (loop4): mount failed
[  106.404860][ T6232] netlink: 276 bytes leftover after parsing attributes in process `syz.3.821'.
[  106.419791][ T6232] netlink: 4 bytes leftover after parsing attributes in process `syz.3.821'.
[  106.434262][ T6232] loop3: detected capacity change from 0 to 128
[  106.449548][ T6232] FAT-fs (loop3): Directory bread(block 162) failed
[  106.458236][ T6232] FAT-fs (loop3): Directory bread(block 163) failed
[  106.464959][ T6232] FAT-fs (loop3): Directory bread(block 164) failed
[  106.471783][ T6232] FAT-fs (loop3): Directory bread(block 165) failed
[  106.478853][ T6232] FAT-fs (loop3): Directory bread(block 166) failed
[  106.486397][ T6232] FAT-fs (loop3): Directory bread(block 167) failed
[  106.493774][ T6232] FAT-fs (loop3): Directory bread(block 168) failed
[  106.500617][ T6232] FAT-fs (loop3): Directory bread(block 169) failed
[  106.508458][ T6232] FAT-fs (loop3): Directory bread(block 162) failed
[  106.515253][ T6232] FAT-fs (loop3): Directory bread(block 163) failed
[  106.522442][ T6232] syz.3.821: attempt to access beyond end of device
[  106.522442][ T6232] loop3: rw=3, sector=226, nr_sectors = 6 limit=128
[  106.537420][ T6232] syz.3.821: attempt to access beyond end of device
[  106.537420][ T6232] loop3: rw=2051, sector=232, nr_sectors = 2 limit=128
[  106.568806][ T6236] sg_write: data in/out 3843/14 bytes for SCSI command 0x4-- guessing data in;
[  106.568806][ T6236]    program syz.4.824 not setting count and/or reply_len properly
[  106.655993][ T6245] netlink: 'syz.4.828': attribute type 10 has an invalid length.
[  106.666847][ T6245] bridge0: port 3(team0) entered disabled state
[  106.675973][ T6245] team0: left allmulticast mode
[  106.680928][ T6245] team_slave_0: left allmulticast mode
[  106.686703][ T6245] team_slave_1: left allmulticast mode
[  106.692321][ T6245] team0: left promiscuous mode
[  106.698595][ T6245] team_slave_0: left promiscuous mode
[  106.704389][ T6245] team_slave_1: left promiscuous mode
[  106.710064][ T6245] bridge0: port 3(team0) entered disabled state
[  106.718015][ T6249] netlink: 'syz.4.828': attribute type 10 has an invalid length.
[  106.725996][ T6249] netlink: 2 bytes leftover after parsing attributes in process `syz.4.828'.
[  106.735672][ T6245] batman_adv: batadv0: Adding interface: team0
[  106.741941][ T6245] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  106.767336][ T6245] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  106.778525][ T6249] team0: entered promiscuous mode
[  106.793999][ T6249] team_slave_0: entered promiscuous mode
[  106.799815][ T6249] team_slave_1: entered promiscuous mode
[  106.807038][ T6249] 8021q: adding VLAN 0 to HW filter on device team0
[  106.814489][ T6249] batman_adv: batadv0: Interface activated: team0
[  106.821083][ T6249] batman_adv: batadv0: Interface deactivated: team0
[  106.828120][ T6249] batman_adv: batadv0: Removing interface: team0
[  106.852135][ T6255] random: crng reseeded on system resumption
[  106.878463][ T6249] bridge0: port 3(team0) entered blocking state
[  106.884886][ T6249] bridge0: port 3(team0) entered disabled state
[  106.903574][ T6249] team0: entered allmulticast mode
[  106.908804][ T6249] team_slave_0: entered allmulticast mode
[  106.914678][ T6249] team_slave_1: entered allmulticast mode
[  106.924966][   T29] kauditd_printk_skb: 341 callbacks suppressed
[  106.925059][   T29] audit: type=1326 audit(1749602759.489:6048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6258 comm="syz.2.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a00ece929 code=0x7ffc0000
[  106.934446][ T6249] bridge0: port 3(team0) entered blocking state
[  106.957487][ T6259] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  106.961142][ T6249] bridge0: port 3(team0) entered forwarding state
[  106.978557][   T29] audit: type=1326 audit(1749602759.519:6049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6258 comm="syz.2.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4a00ece929 code=0x7ffc0000
[  107.002304][ T6259] netlink: 4 bytes leftover after parsing attributes in process `syz.2.834'.
[  107.004243][   T29] audit: type=1326 audit(1749602759.519:6050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6258 comm="syz.2.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a00ece929 code=0x7ffc0000
[  107.036590][   T29] audit: type=1326 audit(1749602759.519:6051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6258 comm="syz.2.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a00ece929 code=0x7ffc0000
[  107.059948][   T29] audit: type=1326 audit(1749602759.519:6052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6258 comm="syz.2.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f4a00ece929 code=0x7ffc0000
[  107.083438][   T29] audit: type=1326 audit(1749602759.539:6053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6258 comm="syz.2.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a00ece929 code=0x7ffc0000
[  107.107291][ T6257] loop1: detected capacity change from 0 to 2048
[  107.130970][ T6261] sg_write: data in/out 3843/14 bytes for SCSI command 0x4-- guessing data in;
[  107.130970][ T6261]    program syz.4.836 not setting count and/or reply_len properly
[  107.135341][   T29] audit: type=1326 audit(1749602759.559:6054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6258 comm="syz.2.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f4a00ece929 code=0x7ffc0000
[  107.147896][ T6259] hsr_slave_0: left promiscuous mode
[  107.203533][ T6263] netlink: 'syz.3.837': attribute type 5 has an invalid length.
[  107.215467][   T29] audit: type=1326 audit(1749602759.749:6055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6256 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6abdece929 code=0x7ffc0000
[  107.238476][   T29] audit: type=1326 audit(1749602759.749:6056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6256 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6abdece929 code=0x7ffc0000
[  107.261494][   T29] audit: type=1326 audit(1749602759.749:6057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6256 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f6abdece929 code=0x7ffc0000
[  107.284914][ T6259] hsr_slave_1: left promiscuous mode
[  107.386493][ T6269] wireguard0: entered promiscuous mode
[  107.392047][ T6269] wireguard0: entered allmulticast mode
[  107.861682][ T6291] loop1: detected capacity change from 0 to 1024
[  107.878531][ T6291] EXT4-fs: Ignoring removed bh option
[  107.892726][ T6293] loop4: detected capacity change from 0 to 512
[  107.900539][ T6291] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  107.915038][ T6291] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  107.923550][ T6291] EXT4-fs (loop1): orphan cleanup on readonly fs
[  107.933609][ T6291] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.845: Invalid inode table block 0 in block_group 0
[  107.955725][ T6291] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  107.966221][ T6293] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  107.975874][ T6293] EXT4-fs (loop4): orphan cleanup on readonly fs
[  107.982467][ T6291] EXT4-fs error (device loop1): ext4_quota_write:7322: inode #3: comm syz.1.845: mark_inode_dirty error
[  107.997110][ T6293] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #16: comm syz.4.846: corrupted inode contents
[  108.009501][ T6291] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.845: Failed to acquire dquot type 0
[  108.022394][ T6291] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.845: Invalid inode table block 0 in block_group 0
[  108.037307][ T6293] EXT4-fs (loop4): Remounting filesystem read-only
[  108.044435][ T6291] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  108.055335][ T6293] EXT4-fs (loop4): 1 truncate cleaned up
[  108.061295][   T51] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  108.072085][   T51] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  108.083899][ T6291] EXT4-fs error (device loop1): ext4_ext_truncate:4475: inode #15: comm syz.1.845: mark_inode_dirty error
[  108.095794][   T51] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  108.104978][ T6291] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.845: Invalid inode table block 0 in block_group 0
[  108.107297][ T6293] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  108.131971][ T6291] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  108.143123][ T6291] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  108.152841][ T6291] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.845: Invalid inode table block 0 in block_group 0
[  108.165910][ T6291] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  108.200937][ T6291] EXT4-fs error (device loop1): ext4_truncate:4597: inode #15: comm syz.1.845: mark_inode_dirty error
[  108.220233][ T6291] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  108.231971][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.235641][ T6291] EXT4-fs (loop1): 1 truncate cleaned up
[  108.263924][ T6298] FAULT_INJECTION: forcing a failure.
[  108.263924][ T6298] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  108.277185][ T6298] CPU: 1 UID: 0 PID: 6298 Comm: syz.0.847 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[  108.277221][ T6298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  108.277238][ T6298] Call Trace:
[  108.277355][ T6298]  <TASK>
[  108.277364][ T6298]  __dump_stack+0x1d/0x30
[  108.277389][ T6298]  dump_stack_lvl+0xe8/0x140
[  108.277414][ T6298]  dump_stack+0x15/0x1b
[  108.277435][ T6298]  should_fail_ex+0x265/0x280
[  108.277478][ T6298]  should_fail+0xb/0x20
[  108.277525][ T6298]  should_fail_usercopy+0x1a/0x20
[  108.277552][ T6298]  _copy_to_user+0x20/0xa0
[  108.277585][ T6298]  simple_read_from_buffer+0xb5/0x130
[  108.277631][ T6298]  proc_fail_nth_read+0x100/0x140
[  108.277685][ T6298]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  108.277712][ T6298]  vfs_read+0x19d/0x6f0
[  108.277736][ T6298]  ? __rcu_read_unlock+0x4f/0x70
[  108.277785][ T6298]  ? __fget_files+0x184/0x1c0
[  108.277840][ T6298]  ksys_read+0xda/0x1a0
[  108.277887][ T6298]  __x64_sys_read+0x40/0x50
[  108.277913][ T6298]  x64_sys_call+0x2d77/0x2fb0
[  108.277943][ T6298]  do_syscall_64+0xd2/0x200
[  108.278048][ T6298]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  108.278077][ T6298]  ? clear_bhb_loop+0x40/0x90
[  108.278106][ T6298]  ? clear_bhb_loop+0x40/0x90
[  108.278129][ T6298]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.278158][ T6298] RIP: 0033:0x7f894ce4d33c
[  108.278192][ T6298] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  108.278218][ T6298] RSP: 002b:00007f894b4b7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  108.278238][ T6298] RAX: ffffffffffffffda RBX: 00007f894d075fa0 RCX: 00007f894ce4d33c
[  108.278250][ T6298] RDX: 000000000000000f RSI: 00007f894b4b70a0 RDI: 0000000000000008
[  108.278263][ T6298] RBP: 00007f894b4b7090 R08: 0000000000000000 R09: 0000000000000000
[  108.278275][ T6298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  108.278287][ T6298] R13: 0000000000000000 R14: 00007f894d075fa0 R15: 00007ffd8164bb58
[  108.278340][ T6298]  </TASK>
[  108.284281][ T6291] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  108.504011][ T6306] xt_hashlimit: size too large, truncated to 1048576
[  108.510782][ T6306] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[  108.523137][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.537441][ T6304] loop4: detected capacity change from 0 to 512
[  108.596358][ T6304] EXT4-fs (loop4): too many log groups per flexible block group
[  108.604438][ T6304] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  108.612526][ T6304] EXT4-fs (loop4): mount failed
[  108.617340][ T6309] loop1: detected capacity change from 0 to 1024
[  108.641055][ T6304] xt_hashlimit: size too large, truncated to 1048576
[  108.657744][ T6317] syzkaller1: entered promiscuous mode
[  108.663593][ T6317] syzkaller1: entered allmulticast mode
[  108.679547][ T6309] EXT4-fs: Ignoring removed orlov option
[  108.717589][ T6309] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  108.739893][ T6309] EXT4-fs error (device loop1): ext4_ext_check_inode:523: inode #11: comm syz.1.852: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  108.762816][ T6309] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.852: couldn't read orphan inode 11 (err -117)
[  108.777519][ T6309] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.795947][ T6309] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.852: Invalid block bitmap block 0 in block_group 0
[  108.811756][ T6309] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.852: Failed to acquire dquot type 0
[  108.838641][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.870668][ T6325] FAULT_INJECTION: forcing a failure.
[  108.870668][ T6325] name failslab, interval 1, probability 0, space 0, times 0
[  108.883545][ T6325] CPU: 0 UID: 0 PID: 6325 Comm: syz.1.856 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[  108.883583][ T6325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  108.883600][ T6325] Call Trace:
[  108.883606][ T6325]  <TASK>
[  108.883614][ T6325]  __dump_stack+0x1d/0x30
[  108.883636][ T6325]  dump_stack_lvl+0xe8/0x140
[  108.883741][ T6325]  dump_stack+0x15/0x1b
[  108.883763][ T6325]  should_fail_ex+0x265/0x280
[  108.883808][ T6325]  should_failslab+0x8c/0xb0
[  108.883915][ T6325]  kmem_cache_alloc_noprof+0x50/0x310
[  108.883950][ T6325]  ? audit_log_start+0x365/0x6c0
[  108.883995][ T6325]  audit_log_start+0x365/0x6c0
[  108.884084][ T6325]  audit_seccomp+0x48/0x100
[  108.884121][ T6325]  ? __seccomp_filter+0x68c/0x10d0
[  108.884232][ T6325]  __seccomp_filter+0x69d/0x10d0
[  108.884264][ T6325]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  108.884287][ T6325]  ? vfs_write+0x75e/0x8e0
[  108.884316][ T6325]  __secure_computing+0x82/0x150
[  108.884347][ T6325]  syscall_trace_enter+0xcf/0x1e0
[  108.884409][ T6325]  do_syscall_64+0xac/0x200
[  108.884436][ T6325]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  108.884555][ T6325]  ? clear_bhb_loop+0x40/0x90
[  108.884582][ T6325]  ? clear_bhb_loop+0x40/0x90
[  108.884611][ T6325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.884711][ T6325] RIP: 0033:0x7f6abdece929
[  108.884730][ T6325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.884754][ T6325] RSP: 002b:00007f6abc537038 EFLAGS: 00000246 ORIG_RAX: 00000000000001c1
[  108.884778][ T6325] RAX: ffffffffffffffda RBX: 00007f6abe0f5fa0 RCX: 00007f6abdece929
[  108.884794][ T6325] RDX: 0200000000000000 RSI: 0000000000000001 RDI: 0000200000001080
[  108.884810][ T6325] RBP: 00007f6abc537090 R08: 0000000000000001 R09: 0000000000000000
[  108.884825][ T6325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  108.884841][ T6325] R13: 0000000000000000 R14: 00007f6abe0f5fa0 R15: 00007ffc5b23ac98
[  108.884890][ T6325]  </TASK>
[  109.352763][ T6330] netlink: 'syz.3.858': attribute type 10 has an invalid length.
[  109.362077][ T6330] bridge0: port 3(team0) entered disabled state
[  109.369378][ T6330] team0: left allmulticast mode
[  109.374901][ T6330] team_slave_0: left allmulticast mode
[  109.380457][ T6330] team_slave_1: left allmulticast mode
[  109.386005][ T6330] team0: left promiscuous mode
[  109.390789][ T6330] team_slave_0: left promiscuous mode
[  109.396357][ T6330] team_slave_1: left promiscuous mode
[  109.402021][ T6330] bridge0: port 3(team0) entered disabled state
[  109.405322][ T6331] netlink: 'syz.3.858': attribute type 10 has an invalid length.
[  109.416153][ T6331] __nla_validate_parse: 3 callbacks suppressed
[  109.416170][ T6331] netlink: 2 bytes leftover after parsing attributes in process `syz.3.858'.
[  109.432477][ T6330] batman_adv: batadv0: Adding interface: team0
[  109.439009][ T6330] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  109.464369][ T6330] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  109.478512][ T6331] team0: entered promiscuous mode
[  109.483693][ T6331] team_slave_0: entered promiscuous mode
[  109.489457][ T6331] team_slave_1: entered promiscuous mode
[  109.496507][ T6331] 8021q: adding VLAN 0 to HW filter on device team0
[  109.503617][ T6331] batman_adv: batadv0: Interface activated: team0
[  109.510172][ T6331] batman_adv: batadv0: Interface deactivated: team0
[  109.517027][ T6331] batman_adv: batadv0: Removing interface: team0
[  109.524810][ T6331] bridge0: port 3(team0) entered blocking state
[  109.531410][ T6331] bridge0: port 3(team0) entered disabled state
[  109.538646][ T6331] team0: entered allmulticast mode
[  109.544142][ T6331] team_slave_0: entered allmulticast mode
[  109.550030][ T6331] team_slave_1: entered allmulticast mode
[  109.557046][ T6331] bridge0: port 3(team0) entered blocking state
[  109.563462][ T6331] bridge0: port 3(team0) entered forwarding state
[  109.575688][ T6333] wireguard0: entered promiscuous mode
[  109.581402][ T6333] wireguard0: entered allmulticast mode
[  109.974698][ T6356] loop1: detected capacity change from 0 to 2048
[  110.110212][ T6361] loop1: detected capacity change from 0 to 8192
[  110.138027][ T6362] syzkaller1: entered promiscuous mode
[  110.143688][ T6362] syzkaller1: entered allmulticast mode
[  110.410227][ T6373] netlink: 'syz.0.874': attribute type 1 has an invalid length.
[  110.418008][ T6373] netlink: 161700 bytes leftover after parsing attributes in process `syz.0.874'.
[  110.695935][ T6376] loop3: detected capacity change from 0 to 2048
[  110.734585][ T3298] Alternate GPT is invalid, using primary GPT.
[  110.740986][ T3298]  loop3: p1 p2 p3
[  110.785236][ T6376] Alternate GPT is invalid, using primary GPT.
[  110.791613][ T6376]  loop3: p1 p2 p3
[  110.938613][ T3532] udevd[3532]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[  110.938722][ T3539] udevd[3539]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[  110.960222][ T3298] udevd[3298]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  110.975363][ T6385] xt_hashlimit: size too large, truncated to 1048576
[  110.982398][ T6385] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[  111.000580][ T3532] udevd[3532]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[  111.001498][ T3539] udevd[3539]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[  111.026479][ T3298] udevd[3298]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  111.040348][ T6383] wireguard0: entered promiscuous mode
[  111.045979][ T6383] wireguard0: entered allmulticast mode
[  111.058008][ T6386] loop3: detected capacity change from 0 to 2048
[  111.381733][ T6407] netlink: 40 bytes leftover after parsing attributes in process `syz.1.887'.
[  111.429501][ T6410] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[  111.436077][ T6410] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  111.443831][ T6410] vhci_hcd vhci_hcd.0: Device attached
[  111.452273][ T6412] vhci_hcd: connection closed
[  111.452485][  T159] vhci_hcd: stop threads
[  111.461638][  T159] vhci_hcd: release socket
[  111.466270][  T159] vhci_hcd: disconnect device
[  111.471916][ T6411] xt_hashlimit: size too large, truncated to 1048576
[  111.478786][ T6411] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[  111.553622][ T6418] loop3: detected capacity change from 0 to 2048
[  111.666174][ T6421] loop3: detected capacity change from 0 to 512
[  111.697995][ T6421] EXT4-fs (loop3): too many log groups per flexible block group
[  111.707049][ T6421] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  111.717053][ T6421] EXT4-fs (loop3): mount failed
[  111.736976][ T6421] xt_hashlimit: size too large, truncated to 1048576
[  111.783688][ T6425] loop4: detected capacity change from 0 to 1024
[  111.794559][ T6425] EXT4-fs: Ignoring removed nomblk_io_submit option
[  111.882223][ T6425] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.924552][ T6435] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  111.931135][ T6435] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  111.938721][ T6435] vhci_hcd vhci_hcd.0: Device attached
[  111.949050][ T6436] vhci_hcd: connection closed
[  111.949463][   T51] vhci_hcd: stop threads
[  111.958555][   T51] vhci_hcd: release socket
[  111.963055][   T51] vhci_hcd: disconnect device
[  111.986959][   T29] kauditd_printk_skb: 598 callbacks suppressed
[  111.986977][   T29] audit: type=1400 audit(1749602764.549:6644): avc:  denied  { unmount } for  pid=3318 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  112.027307][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.284878][   T29] audit: type=1400 audit(1749602764.849:6645): avc:  denied  { create } for  pid=6446 comm="syz.0.902" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  112.313004][   T29] audit: type=1400 audit(1749602764.869:6646): avc:  denied  { setopt } for  pid=6446 comm="syz.0.902" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  112.332693][   T29] audit: type=1400 audit(1749602764.869:6647): avc:  denied  { write } for  pid=6446 comm="syz.0.902" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  112.352205][   T29] audit: type=1400 audit(1749602764.869:6648): avc:  denied  { connect } for  pid=6446 comm="syz.0.902" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  112.371858][   T29] audit: type=1400 audit(1749602764.869:6649): avc:  denied  { name_connect } for  pid=6446 comm="syz.0.902" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[  112.392066][   T29] audit: type=1326 audit(1749602764.869:6650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6446 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f894ce4e929 code=0x7ffc0000
[  112.415461][   T29] audit: type=1326 audit(1749602764.869:6651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6446 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f894ce4e929 code=0x7ffc0000
[  112.439001][   T29] audit: type=1326 audit(1749602764.869:6652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6446 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f894ce4e929 code=0x7ffc0000
[  112.462397][   T29] audit: type=1326 audit(1749602764.869:6653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6446 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f894ce4e929 code=0x7ffc0000
[  112.515473][ T6447] random: crng reseeded on system resumption
[  112.534647][ T6451] netlink: 32 bytes leftover after parsing attributes in process `syz.4.899'.
[  112.577133][ T6451] sit1: entered promiscuous mode
[  112.625480][ T6453] netlink: 4 bytes leftover after parsing attributes in process `syz.0.903'.
[  112.637972][ T6455] wireguard0: entered promiscuous mode
[  112.643802][ T6455] wireguard0: entered allmulticast mode
[  112.695931][ T6466] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[  112.702505][ T6466] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  112.710096][ T6466] vhci_hcd vhci_hcd.0: Device attached
[  112.719386][ T6467] vhci_hcd: connection closed
[  112.719672][   T31] vhci_hcd: stop threads
[  112.728869][   T31] vhci_hcd: release socket
[  112.733579][   T31] vhci_hcd: disconnect device
[  112.746279][ T6472] loop4: detected capacity change from 0 to 1024
[  112.757805][ T6472] EXT4-fs: Ignoring removed nomblk_io_submit option
[  112.785060][ T6472] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.825070][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.266853][ T6490] netlink: 'syz.1.915': attribute type 1 has an invalid length.
[  113.274624][ T6490] netlink: 161700 bytes leftover after parsing attributes in process `syz.1.915'.
[  113.312051][ T6490] loop1: detected capacity change from 0 to 8192
[  113.534452][ T6498] loop3: detected capacity change from 0 to 1024
[  113.546405][ T6498] EXT4-fs: Ignoring removed orlov option
[  113.572590][ T6498] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  113.606470][ T6498] EXT4-fs error (device loop3): ext4_ext_check_inode:523: inode #11: comm syz.3.918: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  113.652503][ T6498] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.918: couldn't read orphan inode 11 (err -117)
[  113.672445][ T6498] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.747700][ T6498] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.918: Invalid block bitmap block 0 in block_group 0
[  113.763871][ T6498] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.918: Failed to acquire dquot type 0
[  113.838910][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.948529][ T6508] loop3: detected capacity change from 0 to 8192
[  114.028842][ T6514] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  114.035473][ T6514] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  114.043063][ T6514] vhci_hcd vhci_hcd.0: Device attached
[  114.064602][ T6516] vhci_hcd: connection closed
[  114.064846][   T51] vhci_hcd: stop threads
[  114.073993][   T51] vhci_hcd: release socket
[  114.078533][   T51] vhci_hcd: disconnect device
[  114.085828][ T6510] sit0: left promiscuous mode
[  114.090683][ T6510] sit0: left allmulticast mode
[  114.141112][ T6521] xt_hashlimit: size too large, truncated to 1048576
[  114.148000][ T6521] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[  114.166872][ T6510] $Hÿ: left promiscuous mode
[  114.171875][ T6510] bond_slave_0: left promiscuous mode
[  114.177470][ T6510] bond_slave_1: left promiscuous mode
[  114.193115][ T6510] 8021q: adding VLAN 0 to HW filter on device $Hÿ
[  114.211334][ T6510] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  114.312369][ T6524] loop4: detected capacity change from 0 to 512
[  114.357573][ T6524] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  114.370716][ T6524] EXT4-fs (loop4): orphan cleanup on readonly fs
[  114.385524][ T6524] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #16: comm syz.4.927: corrupted inode contents
[  114.397684][ T6524] EXT4-fs (loop4): Remounting filesystem read-only
[  114.404469][ T6524] EXT4-fs (loop4): 1 truncate cleaned up
[  114.410317][   T51] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  114.421009][   T51] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  114.483408][   T51] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  114.494098][ T6524] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  114.626878][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.637124][ T6530] xt_hashlimit: size too large, truncated to 1048576
[  114.641930][ T6535] xt_hashlimit: size too large, truncated to 1048576
[  114.643865][ T6530] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[  114.657923][ T6535] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[  114.708582][ T6536] loop1: detected capacity change from 0 to 2048
[  114.761783][ T6540] syzkaller1: entered promiscuous mode
[  114.767524][ T6540] syzkaller1: entered allmulticast mode
[  114.897315][ T6551] loop4: detected capacity change from 0 to 2048
[  114.911294][ T6545] loop1: detected capacity change from 0 to 8192
[  114.936996][ T6551] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.128408][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.544621][ T6577] syzkaller1: entered promiscuous mode
[  115.550250][ T6577] syzkaller1: entered allmulticast mode
[  115.769987][ T6580] Falling back ldisc for ttyS3.
[  115.832803][ T6598] netlink: 24 bytes leftover after parsing attributes in process `syz.4.950'.
[  115.845292][ T6596] FAULT_INJECTION: forcing a failure.
[  115.845292][ T6596] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  115.858543][ T6596] CPU: 1 UID: 0 PID: 6596 Comm: syz.3.949 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[  115.858588][ T6596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  115.858604][ T6596] Call Trace:
[  115.858612][ T6596]  <TASK>
[  115.858622][ T6596]  __dump_stack+0x1d/0x30
[  115.858655][ T6596]  dump_stack_lvl+0xe8/0x140
[  115.858680][ T6596]  dump_stack+0x15/0x1b
[  115.858701][ T6596]  should_fail_ex+0x265/0x280
[  115.858779][ T6596]  should_fail+0xb/0x20
[  115.858820][ T6596]  should_fail_usercopy+0x1a/0x20
[  115.858847][ T6596]  _copy_from_user+0x1c/0xb0
[  115.858915][ T6596]  ___sys_sendmsg+0xc1/0x1d0
[  115.858961][ T6596]  __x64_sys_sendmsg+0xd4/0x160
[  115.858991][ T6596]  x64_sys_call+0x2999/0x2fb0
[  115.859083][ T6596]  do_syscall_64+0xd2/0x200
[  115.859111][ T6596]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  115.859145][ T6596]  ? clear_bhb_loop+0x40/0x90
[  115.859174][ T6596]  ? clear_bhb_loop+0x40/0x90
[  115.859245][ T6596]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.859344][ T6596] RIP: 0033:0x7f0e8973e929
[  115.859363][ T6596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.859387][ T6596] RSP: 002b:00007f0e87da7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  115.859411][ T6596] RAX: ffffffffffffffda RBX: 00007f0e89965fa0 RCX: 00007f0e8973e929
[  115.859503][ T6596] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000006
[  115.859516][ T6596] RBP: 00007f0e87da7090 R08: 0000000000000000 R09: 0000000000000000
[  115.859528][ T6596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.859540][ T6596] R13: 0000000000000000 R14: 00007f0e89965fa0 R15: 00007ffeca202368
[  115.859558][ T6596]  </TASK>
[  116.103956][ T6598] sit2: entered promiscuous mode
[  116.156688][ T6606] loop1: detected capacity change from 0 to 512
[  116.185752][ T6613] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[  116.192455][ T6613] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  116.200077][ T6613] vhci_hcd vhci_hcd.0: Device attached
[  116.213284][ T6614] vhci_hcd: connection closed
[  116.216027][ T6612] loop3: detected capacity change from 0 to 128
[  116.227617][  T159] vhci_hcd: stop threads
[  116.228534][ T6612] EXT4-fs: Ignoring removed nomblk_io_submit option
[  116.231931][  T159] vhci_hcd: release socket
[  116.242990][  T159] vhci_hcd: disconnect device
[  116.253571][ T6612] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities
[  116.316414][ T6606] EXT4-fs (loop1): too many log groups per flexible block group
[  116.325987][ T6606] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  116.338273][ T6606] EXT4-fs (loop1): mount failed
[  116.416935][ T6633] loop3: detected capacity change from 0 to 1024
[  116.436142][ T6633] EXT4-fs: Ignoring removed nomblk_io_submit option
[  116.457363][ T6631] syzkaller1: entered promiscuous mode
[  116.462902][ T6631] syzkaller1: entered allmulticast mode
[  116.501304][ T6633] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.534924][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.623262][ T6651] xt_hashlimit: size too large, truncated to 1048576
[  116.929800][ T6663] loop4: detected capacity change from 0 to 8192
[  116.993532][   T29] kauditd_printk_skb: 870 callbacks suppressed
[  116.993548][   T29] audit: type=1326 audit(1749602769.549:7516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6643 comm="syz.2.961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f4a00ece929 code=0x7ffc0000
[  117.108960][   T29] audit: type=1326 audit(1749602769.589:7517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6641 comm="syz.1.960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6abdec58e7 code=0x7ffc0000
[  117.132336][   T29] audit: type=1326 audit(1749602769.589:7518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6641 comm="syz.1.960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6abde6ab19 code=0x7ffc0000
[  117.155734][   T29] audit: type=1326 audit(1749602769.589:7519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6641 comm="syz.1.960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6abdece929 code=0x7ffc0000
[  117.179035][   T29] audit: type=1326 audit(1749602769.589:7520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6643 comm="syz.2.961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4a00ec58e7 code=0x7ffc0000
[  117.202414][   T29] audit: type=1326 audit(1749602769.589:7521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6643 comm="syz.2.961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4a00e6ab19 code=0x7ffc0000
[  117.225934][   T29] audit: type=1326 audit(1749602769.589:7522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6643 comm="syz.2.961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f4a00ece929 code=0x7ffc0000
[  117.249330][   T29] audit: type=1326 audit(1749602769.589:7523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6641 comm="syz.1.960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6abdec58e7 code=0x7ffc0000
[  117.272882][   T29] audit: type=1326 audit(1749602769.589:7524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6641 comm="syz.1.960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6abde6ab19 code=0x7ffc0000
[  117.296257][   T29] audit: type=1326 audit(1749602769.589:7525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6641 comm="syz.1.960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6abdece929 code=0x7ffc0000
[  117.556718][ T6671] netlink: 276 bytes leftover after parsing attributes in process `syz.1.965'.
[  117.586881][ T6671] netlink: 4 bytes leftover after parsing attributes in process `syz.1.965'.
[  117.606146][ T6677] loop3: detected capacity change from 0 to 1024
[  117.614306][ T6671] loop1: detected capacity change from 0 to 128
[  117.631888][ T6671] FAT-fs (loop1): Directory bread(block 162) failed
[  117.643519][ T6671] FAT-fs (loop1): Directory bread(block 163) failed
[  117.653678][ T6677] EXT4-fs: Ignoring removed nomblk_io_submit option
[  117.665568][ T6671] FAT-fs (loop1): Directory bread(block 164) failed
[  117.672233][ T6671] FAT-fs (loop1): Directory bread(block 165) failed
[  117.684415][ T6679] xt_hashlimit: size too large, truncated to 1048576
[  117.691313][ T6679] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[  117.708866][ T6671] FAT-fs (loop1): Directory bread(block 166) failed
[  117.727348][ T6681] FAULT_INJECTION: forcing a failure.
[  117.727348][ T6681] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  117.740476][ T6681] CPU: 1 UID: 0 PID: 6681 Comm: syz.2.971 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[  117.740513][ T6681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  117.740530][ T6681] Call Trace:
[  117.740537][ T6681]  <TASK>
[  117.740546][ T6681]  __dump_stack+0x1d/0x30
[  117.740570][ T6681]  dump_stack_lvl+0xe8/0x140
[  117.740597][ T6681]  dump_stack+0x15/0x1b
[  117.740613][ T6681]  should_fail_ex+0x265/0x280
[  117.740692][ T6681]  should_fail+0xb/0x20
[  117.740733][ T6681]  should_fail_usercopy+0x1a/0x20
[  117.740828][ T6681]  strncpy_from_user+0x25/0x230
[  117.740866][ T6681]  ? kmem_cache_alloc_noprof+0x186/0x310
[  117.740965][ T6681]  ? getname_flags+0x80/0x3b0
[  117.741000][ T6681]  getname_flags+0xae/0x3b0
[  117.741033][ T6681]  user_path_at+0x28/0x130
[  117.741070][ T6681]  do_utimes+0xd9/0x210
[  117.741145][ T6681]  __x64_sys_utimes+0xc6/0x180
[  117.741174][ T6681]  ? syscall_trace_enter+0x102/0x1e0
[  117.741226][ T6681]  x64_sys_call+0x2d6c/0x2fb0
[  117.741253][ T6681]  do_syscall_64+0xd2/0x200
[  117.741280][ T6681]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  117.741317][ T6681]  ? clear_bhb_loop+0x40/0x90
[  117.741365][ T6681]  ? clear_bhb_loop+0x40/0x90
[  117.741430][ T6681]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.741452][ T6681] RIP: 0033:0x7f4a00ece929
[  117.741466][ T6681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.741485][ T6681] RSP: 002b:00007f49ff537038 EFLAGS: 00000246 ORIG_RAX: 00000000000000eb
[  117.741503][ T6681] RAX: ffffffffffffffda RBX: 00007f4a010f5fa0 RCX: 00007f4a00ece929
[  117.741586][ T6681] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000001ac0
[  117.741602][ T6681] RBP: 00007f49ff537090 R08: 0000000000000000 R09: 0000000000000000
[  117.741618][ T6681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  117.741634][ T6681] R13: 0000000000000000 R14: 00007f4a010f5fa0 R15: 00007ffc4b5457e8
[  117.741659][ T6681]  </TASK>
[  117.943696][ T6671] FAT-fs (loop1): Directory bread(block 167) failed
[  117.950342][ T6671] FAT-fs (loop1): Directory bread(block 168) failed
[  117.971757][ T6671] FAT-fs (loop1): Directory bread(block 169) failed
[  117.987305][ T6671] FAT-fs (loop1): Directory bread(block 162) failed
[  118.004778][ T6671] FAT-fs (loop1): Directory bread(block 163) failed
[  118.011914][ T6671] syz.1.965: attempt to access beyond end of device
[  118.011914][ T6671] loop1: rw=3, sector=226, nr_sectors = 6 limit=128
[  118.026795][ T6677] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  118.027553][ T6671] syz.1.965: attempt to access beyond end of device
[  118.027553][ T6671] loop1: rw=2051, sector=232, nr_sectors = 2 limit=128
[  118.149391][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.169608][ T6692] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  118.186270][ T6688] syzkaller1: entered promiscuous mode
[  118.191570][ T6692] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  118.191964][ T6688] syzkaller1: entered allmulticast mode
[  118.321794][ T6703] netlink: 276 bytes leftover after parsing attributes in process `syz.2.976'.
[  118.342802][ T6703] netlink: 4 bytes leftover after parsing attributes in process `syz.2.976'.
[  118.377082][ T6706] loop1: detected capacity change from 0 to 1024
[  118.385949][ T6706] EXT4-fs: Ignoring removed bh option
[  118.396884][ T6702] loop4: detected capacity change from 0 to 512
[  118.399750][ T6706] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  118.421368][ T6706] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  118.433707][ T6706] EXT4-fs (loop1): orphan cleanup on readonly fs
[  118.446115][ T6706] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.978: Invalid inode table block 0 in block_group 0
[  118.459314][ T6706] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  118.466088][ T6702] EXT4-fs (loop4): too many log groups per flexible block group
[  118.471034][ T6706] EXT4-fs error (device loop1): ext4_quota_write:7322: inode #3: comm syz.1.978: mark_inode_dirty error
[  118.477789][ T6702] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  118.488555][ T6706] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.978: Failed to acquire dquot type 0
[  118.496430][ T6702] EXT4-fs (loop4): mount failed
[  118.510094][ T6706] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.978: Invalid inode table block 0 in block_group 0
[  118.527562][ T6706] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  118.537858][ T6706] EXT4-fs error (device loop1): ext4_ext_truncate:4475: inode #15: comm syz.1.978: mark_inode_dirty error
[  118.550543][ T6706] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.978: Invalid inode table block 0 in block_group 0
[  118.565713][ T6706] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  118.576559][ T6706] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  118.579173][ T6702] xt_hashlimit: size too large, truncated to 1048576
[  118.589302][ T6706] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.978: Invalid inode table block 0 in block_group 0
[  118.607072][ T6706] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  118.617214][ T6706] EXT4-fs error (device loop1): ext4_truncate:4597: inode #15: comm syz.1.978: mark_inode_dirty error
[  118.629116][ T6706] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  118.640351][ T6706] EXT4-fs (loop1): 1 truncate cleaned up
[  118.647232][ T6706] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  118.680960][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.205073][ T6721] loop3: detected capacity change from 0 to 8192
[  119.469440][ T6734] Falling back ldisc for ttyS3.
[  119.557552][ T6736] syzkaller1: entered promiscuous mode
[  119.563092][ T6736] syzkaller1: entered allmulticast mode
[  119.657456][ T6747] random: crng reseeded on system resumption
[  119.709508][ T6757] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  119.745197][ T6757] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  119.855475][ T6769] netlink: 36 bytes leftover after parsing attributes in process `syz.4.992'.
[  120.115834][ T6789] netlink: 276 bytes leftover after parsing attributes in process `syz.3.995'.
[  120.125258][ T6789] netlink: 4 bytes leftover after parsing attributes in process `syz.3.995'.
[  120.135645][ T6789] loop3: detected capacity change from 0 to 128
[  120.147280][ T6789] FAT-fs (loop3): Directory bread(block 162) failed
[  120.154086][ T6789] FAT-fs (loop3): Directory bread(block 163) failed
[  120.160744][ T6789] FAT-fs (loop3): Directory bread(block 164) failed
[  120.168443][ T6789] FAT-fs (loop3): Directory bread(block 165) failed
[  120.179727][ T6792] loop1: detected capacity change from 0 to 1024
[  120.190970][ T6792] EXT4-fs: Ignoring removed bh option
[  120.198629][ T6789] FAT-fs (loop3): Directory bread(block 166) failed
[  120.217097][ T6792] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  120.218122][ T6789] FAT-fs (loop3): Directory bread(block 167) failed
[  120.234473][ T6789] FAT-fs (loop3): Directory bread(block 168) failed
[  120.234483][ T6792] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  120.234609][ T6792] EXT4-fs (loop1): orphan cleanup on readonly fs
[  120.241106][ T6789] FAT-fs (loop3): Directory bread(block 169) failed
[  120.272257][ T6792] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.996: Invalid inode table block 0 in block_group 0
[  120.288111][ T6789] FAT-fs (loop3): Directory bread(block 162) failed
[  120.296496][ T6789] FAT-fs (loop3): Directory bread(block 163) failed
[  120.303649][ T6792] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  120.314030][ T6789] syz.3.995: attempt to access beyond end of device
[  120.314030][ T6789] loop3: rw=3, sector=226, nr_sectors = 6 limit=128
[  120.325310][ T6792] EXT4-fs error (device loop1): ext4_quota_write:7322: inode #3: comm syz.1.996: mark_inode_dirty error
[  120.327992][ T6789] syz.3.995: attempt to access beyond end of device
[  120.327992][ T6789] loop3: rw=2051, sector=232, nr_sectors = 2 limit=128
[  120.362983][ T6792] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.996: Failed to acquire dquot type 0
[  120.375064][ T6792] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.996: Invalid inode table block 0 in block_group 0
[  120.388298][ T6792] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  120.400450][ T6792] EXT4-fs error (device loop1): ext4_ext_truncate:4475: inode #15: comm syz.1.996: mark_inode_dirty error
[  120.416502][ T6792] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.996: Invalid inode table block 0 in block_group 0
[  120.450215][ T6792] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  120.480037][ T6792] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  120.489164][ T6792] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.996: Invalid inode table block 0 in block_group 0
[  120.534983][ T6792] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  120.559966][ T6800] loop4: detected capacity change from 0 to 128
[  120.572755][ T6800] vfat: Unknown parameter 'mm_page_free'
[  120.578979][ T6792] EXT4-fs error (device loop1): ext4_truncate:4597: inode #15: comm syz.1.996: mark_inode_dirty error
[  120.593892][ T6792] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  120.616542][ T6792] EXT4-fs (loop1): 1 truncate cleaned up
[  120.622781][ T6792] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  120.644416][ T6805] sg_write: data in/out 3843/14 bytes for SCSI command 0x4-- guessing data in;
[  120.644416][ T6805]    program syz.2.1001 not setting count and/or reply_len properly
[  120.698237][ T6808] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1003'.
[  120.710174][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.710358][ T6808] sit1: entered promiscuous mode
[  120.748534][ T6810] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1004'.
[  120.812462][ T6814] xt_hashlimit: size too large, truncated to 1048576
[  120.819418][ T6814] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[  121.130386][ T6827] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1010'.
[  121.281107][ T6832] random: crng reseeded on system resumption
[  121.502347][ T6838] netlink: 'syz.0.1014': attribute type 1 has an invalid length.
[  121.510175][ T6838] netlink: 161700 bytes leftover after parsing attributes in process `syz.0.1014'.
[  121.775417][ T6847] loop1: detected capacity change from 0 to 1024
[  121.830139][ T6847] EXT4-fs: Ignoring removed bh option
[  121.870590][ T6847] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  121.898443][ T6847] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  121.906944][ T6847] EXT4-fs (loop1): orphan cleanup on readonly fs
[  121.919113][ T6847] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.1015: Invalid inode table block 0 in block_group 0
[  121.921469][ T6854] sg_write: data in/out 3843/14 bytes for SCSI command 0x4-- guessing data in;
[  121.921469][ T6854]    program syz.3.1018 not setting count and/or reply_len properly
[  121.932161][ T6847] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  121.958729][ T6847] EXT4-fs error (device loop1): ext4_quota_write:7322: inode #3: comm syz.1.1015: mark_inode_dirty error
[  121.973418][ T6847] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.1015: Failed to acquire dquot type 0
[  121.987696][ T6847] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.1015: Invalid inode table block 0 in block_group 0
[  122.001090][ T6847] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  122.014026][   T29] kauditd_printk_skb: 928 callbacks suppressed
[  122.014042][   T29] audit: type=1326 audit(1749602774.579:8448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6834 comm="syz.4.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7ff85bdb58e7 code=0x7ffc0000
[  122.016176][ T6847] EXT4-fs error (device loop1): ext4_ext_truncate:4475: inode #15: comm syz.1.1015: mark_inode_dirty error
[  122.020285][   T29] audit: type=1326 audit(1749602774.579:8449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6834 comm="syz.4.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7ff85bd5ab19 code=0x7ffc0000
[  122.020342][   T29] audit: type=1326 audit(1749602774.579:8450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6834 comm="syz.4.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff85bdbe929 code=0x7ffc0000
[  122.045042][ T6847] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.1015: Invalid inode table block 0 in block_group 0
[  122.100484][   T29] audit: type=1326 audit(1749602774.619:8451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6834 comm="syz.4.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7ff85bdb58e7 code=0x7ffc0000
[  122.103817][ T6847] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  122.114555][   T29] audit: type=1326 audit(1749602774.619:8452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6834 comm="syz.4.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7ff85bd5ab19 code=0x7ffc0000
[  122.161280][ T6847] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  122.170590][   T29] audit: type=1326 audit(1749602774.619:8453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6834 comm="syz.4.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff85bdbe929 code=0x7ffc0000
[  122.193108][ T6847] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.1015: Invalid inode table block 0 in block_group 0
[  122.202501][   T29] audit: type=1326 audit(1749602774.629:8454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6834 comm="syz.4.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7ff85bdb58e7 code=0x7ffc0000
[  122.202538][   T29] audit: type=1326 audit(1749602774.629:8455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6834 comm="syz.4.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7ff85bd5ab19 code=0x7ffc0000
[  122.217811][ T6847] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  122.238624][   T29] audit: type=1326 audit(1749602774.629:8456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6834 comm="syz.4.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff85bdbe929 code=0x7ffc0000
[  122.295130][   T29] audit: type=1326 audit(1749602774.629:8457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6834 comm="syz.4.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7ff85bdb58e7 code=0x7ffc0000
[  122.306661][ T6847] EXT4-fs error (device loop1): ext4_truncate:4597: inode #15: comm syz.1.1015: mark_inode_dirty error
[  122.337748][ T6847] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  122.353064][ T6847] EXT4-fs (loop1): 1 truncate cleaned up
[  122.364494][ T6847] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  122.378530][ T6860] xt_hashlimit: size too large, truncated to 1048576
[  122.385302][ T6860] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[  122.441584][ T6866] xt_hashlimit: size too large, truncated to 1048576
[  122.443261][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.448338][ T6866] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[  122.496176][ T6869] netlink: 'syz.1.1024': attribute type 10 has an invalid length.
[  122.504336][ T6869] team0: left promiscuous mode
[  122.509246][ T6869] team_slave_0: left promiscuous mode
[  122.514968][ T6869] team_slave_1: left promiscuous mode
[  122.528666][ T6869] batman_adv: batadv0: Adding interface: team0
[  122.535033][ T6869] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  122.555362][ T6872] netlink: 'syz.1.1024': attribute type 10 has an invalid length.
[  122.560348][ T6869] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  122.568049][ T6872] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1024'.
[  122.590738][ T6872] team0: entered promiscuous mode
[  122.596772][ T6872] team_slave_0: entered promiscuous mode
[  122.602588][ T6872] team_slave_1: entered promiscuous mode
[  122.611507][ T6872] 8021q: adding VLAN 0 to HW filter on device team0
[  122.618734][ T6872] batman_adv: batadv0: Interface activated: team0
[  122.625335][ T6872] batman_adv: batadv0: Interface deactivated: team0
[  122.631984][ T6872] batman_adv: batadv0: Removing interface: team0
[  122.880276][ T6879] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1026'.
[  122.994145][ T6888] loop1: detected capacity change from 0 to 2048
[  123.008731][ T6891] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1028'.
[  123.018388][ T6888] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  123.109744][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.252979][ T6905] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  123.259580][ T6905] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  123.267345][ T6905] vhci_hcd vhci_hcd.0: Device attached
[  123.278014][ T6906] vhci_hcd: connection closed
[  123.279940][   T57] vhci_hcd: stop threads
[  123.289146][   T57] vhci_hcd: release socket
[  123.293642][   T57] vhci_hcd: disconnect device
[  123.357444][ T6903] xt_hashlimit: size too large, truncated to 1048576
[  123.452798][ T6913] netlink: 'syz.4.1037': attribute type 1 has an invalid length.
[  123.460683][ T6913] netlink: 161700 bytes leftover after parsing attributes in process `syz.4.1037'.
[  123.519544][ T6913] loop4: detected capacity change from 0 to 8192
[  124.148965][ T6922] syzkaller1: entered promiscuous mode
[  124.154613][ T6922] syzkaller1: entered allmulticast mode
[  124.162138][ T6926] netlink: 276 bytes leftover after parsing attributes in process `syz.3.1038'.
[  124.171734][ T6926] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1038'.
[  124.199049][ T6926] loop3: detected capacity change from 0 to 128
[  124.218164][ T6926] FAT-fs (loop3): Directory bread(block 162) failed
[  124.226251][ T6928] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  124.229180][ T6926] FAT-fs (loop3): Directory bread(block 163) failed
[  124.232826][ T6928] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  124.239642][ T6926] FAT-fs (loop3): Directory bread(block 164) failed
[  124.247132][ T6928] vhci_hcd vhci_hcd.0: Device attached
[  124.253783][ T6926] FAT-fs (loop3): Directory bread(block 165) failed
[  124.272593][ T6932] loop1: detected capacity change from 0 to 1024
[  124.279536][ T6932] EXT4-fs: Ignoring removed bh option
[  124.281352][ T6929] vhci_hcd: connection closed
[  124.285378][   T12] vhci_hcd: stop threads
[  124.291473][ T6932] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  124.294382][   T12] vhci_hcd: release socket
[  124.294394][   T12] vhci_hcd: disconnect device
[  124.294481][ T6926] FAT-fs (loop3): Directory bread(block 166) failed
[  124.328242][ T6926] FAT-fs (loop3): Directory bread(block 167) failed
[  124.335186][ T6932] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  124.336353][ T6926] FAT-fs (loop3): Directory bread(block 168) failed
[  124.343191][ T6932] EXT4-fs (loop1): orphan cleanup on readonly fs
[  124.350361][ T6926] FAT-fs (loop3): Directory bread(block 169) failed
[  124.358469][ T6932] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.1040: Invalid inode table block 0 in block_group 0
[  124.384260][ T6926] FAT-fs (loop3): Directory bread(block 162) failed
[  124.390961][ T6932] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  124.401451][ T6926] FAT-fs (loop3): Directory bread(block 163) failed
[  124.408456][ T6932] EXT4-fs error (device loop1): ext4_quota_write:7322: inode #3: comm syz.1.1040: mark_inode_dirty error
[  124.409353][ T6926] syz.3.1038: attempt to access beyond end of device
[  124.409353][ T6926] loop3: rw=3, sector=226, nr_sectors = 6 limit=128
[  124.420471][ T6932] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.1040: Failed to acquire dquot type 0
[  124.433123][ T6926] syz.3.1038: attempt to access beyond end of device
[  124.433123][ T6926] loop3: rw=2051, sector=232, nr_sectors = 2 limit=128
[  124.449342][ T6932] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.1040: Invalid inode table block 0 in block_group 0
[  124.470536][ T6932] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  124.480231][ T6932] EXT4-fs error (device loop1): ext4_ext_truncate:4475: inode #15: comm syz.1.1040: mark_inode_dirty error
[  124.492010][ T6932] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.1040: Invalid inode table block 0 in block_group 0
[  124.505247][ T6932] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  124.514912][ T6932] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  124.523741][ T6932] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.1040: Invalid inode table block 0 in block_group 0
[  124.536858][ T6932] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  124.547573][ T6932] EXT4-fs error (device loop1): ext4_truncate:4597: inode #15: comm syz.1.1040: mark_inode_dirty error
[  124.559182][ T6932] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  124.569661][ T6932] EXT4-fs (loop1): 1 truncate cleaned up
[  124.590008][ T6932] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  124.597575][ T6935] loop4: detected capacity change from 0 to 1024
[  124.613468][ T6935] EXT4-fs: Ignoring removed nomblk_io_submit option
[  124.632331][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.643307][ T6935] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  124.677908][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.740960][ T6948] loop4: detected capacity change from 0 to 1024
[  124.752755][ T6948] EXT4-fs: Ignoring removed nomblk_io_submit option
[  124.757011][ T6947] loop1: detected capacity change from 0 to 512
[  124.788625][ T6948] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  124.830124][ T6947] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.1046: Parent and EA inode have the same ino 15
[  124.845032][ T6947] EXT4-fs (loop1): Remounting filesystem read-only
[  124.855855][ T6947] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  124.866300][ T6947] EXT4-fs (loop1): 1 orphan inode deleted
[  124.873062][ T6947] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  124.890373][ T6959] netlink: 'syz.0.1051': attribute type 10 has an invalid length.
[  124.890707][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.900500][ T6959] bridge0: port 3(team0) entered disabled state
[  124.916183][ T6959] team0: left allmulticast mode
[  124.921224][ T6959] team_slave_0: left allmulticast mode
[  124.926785][ T6959] team_slave_1: left allmulticast mode
[  124.932305][ T6959] team0: left promiscuous mode
[  124.937481][ T6959] team_slave_0: left promiscuous mode
[  124.937960][ T6960] netlink: 276 bytes leftover after parsing attributes in process `syz.2.1050'.
[  124.942983][ T6959] team_slave_1: left promiscuous mode
[  124.957879][ T6959] bridge0: port 3(team0) entered disabled state
[  124.960348][ T6960] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1050'.
[  124.978392][ T6961] netlink: 'syz.0.1051': attribute type 10 has an invalid length.
[  124.988935][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.009093][ T6959] batman_adv: batadv0: Adding interface: team0
[  125.015379][ T6959] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  125.040860][ T6959] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  125.052098][ T6961] team0: entered promiscuous mode
[  125.086701][ T6968] loop4: detected capacity change from 0 to 1024
[  125.099220][ T6961] team_slave_0: entered promiscuous mode
[  125.105083][ T6961] team_slave_1: entered promiscuous mode
[  125.132326][ T6968] EXT4-fs: Ignoring removed bh option
[  125.143098][ T6961] 8021q: adding VLAN 0 to HW filter on device team0
[  125.144283][ T6964] loop3: detected capacity change from 0 to 512
[  125.167027][ T6961] batman_adv: batadv0: Interface activated: team0
[  125.173724][ T6961] batman_adv: batadv0: Interface deactivated: team0
[  125.180387][ T6961] batman_adv: batadv0: Removing interface: team0
[  125.187457][ T6961] bridge0: port 3(team0) entered blocking state
[  125.193838][ T6961] bridge0: port 3(team0) entered disabled state
[  125.195179][ T6968] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  125.200498][ T6961] team0: entered allmulticast mode
[  125.215946][ T6961] team_slave_0: entered allmulticast mode
[  125.221781][ T6961] team_slave_1: entered allmulticast mode
[  125.228715][ T6961] bridge0: port 3(team0) entered blocking state
[  125.235101][ T6961] bridge0: port 3(team0) entered forwarding state
[  125.242192][ T6968] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  125.253690][ T6968] EXT4-fs (loop4): orphan cleanup on readonly fs
[  125.267059][ T6972] random: crng reseeded on system resumption
[  125.277071][ T6964] EXT4-fs (loop3): too many log groups per flexible block group
[  125.286369][ T6964] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  125.299095][ T6968] EXT4-fs error (device loop4): __ext4_get_inode_loc:4792: comm syz.4.1055: Invalid inode table block 0 in block_group 0
[  125.324749][ T6964] EXT4-fs (loop3): mount failed
[  125.354491][ T6968] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  125.367104][ T6964] xt_hashlimit: size too large, truncated to 1048576
[  125.379283][ T6968] EXT4-fs error (device loop4): ext4_quota_write:7322: inode #3: comm syz.4.1055: mark_inode_dirty error
[  125.456963][ T6968] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.1055: Failed to acquire dquot type 0
[  125.524178][ T6982] loop1: detected capacity change from 0 to 128
[  125.544060][ T6982] FAT-fs (loop1): Directory bread(block 162) failed
[  125.551263][ T6982] FAT-fs (loop1): Directory bread(block 163) failed
[  125.559958][ T6982] FAT-fs (loop1): Directory bread(block 164) failed
[  125.579838][ T6982] FAT-fs (loop1): Directory bread(block 165) failed
[  125.612344][ T6982] FAT-fs (loop1): Directory bread(block 166) failed
[  125.620500][ T6968] EXT4-fs error (device loop4): __ext4_get_inode_loc:4792: comm syz.4.1055: Invalid inode table block 0 in block_group 0
[  125.643722][ T6968] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  125.659164][ T6968] EXT4-fs error (device loop4): ext4_ext_truncate:4475: inode #15: comm syz.4.1055: mark_inode_dirty error
[  125.681063][ T6982] FAT-fs (loop1): Directory bread(block 167) failed
[  125.708897][ T6982] FAT-fs (loop1): Directory bread(block 168) failed
[  125.717450][ T6968] EXT4-fs error (device loop4): __ext4_get_inode_loc:4792: comm syz.4.1055: Invalid inode table block 0 in block_group 0
[  125.741813][ T6984] xt_hashlimit: size too large, truncated to 1048576
[  125.748617][ T6984] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[  125.763449][ T6982] FAT-fs (loop1): Directory bread(block 169) failed
[  125.770305][ T6968] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  125.790421][ T6968] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  125.807307][ T6981] FAT-fs (loop1): Directory bread(block 162) failed
[  125.825018][ T6968] EXT4-fs error (device loop4): __ext4_get_inode_loc:4792: comm syz.4.1055: Invalid inode table block 0 in block_group 0
[  125.850689][ T6981] FAT-fs (loop1): Directory bread(block 163) failed
[  125.913718][ T6981] syz.1.1058: attempt to access beyond end of device
[  125.913718][ T6981] loop1: rw=3, sector=226, nr_sectors = 6 limit=128
[  125.930724][ T6981] syz.1.1058: attempt to access beyond end of device
[  125.930724][ T6981] loop1: rw=2051, sector=232, nr_sectors = 2 limit=128
[  125.946233][ T6968] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  125.956309][ T6968] EXT4-fs error (device loop4): ext4_truncate:4597: inode #15: comm syz.4.1055: mark_inode_dirty error
[  125.972289][ T6968] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  125.992023][ T6968] EXT4-fs (loop4): 1 truncate cleaned up
[  126.000267][ T6968] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  126.054635][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.055110][ T6995] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  126.070261][ T6995] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  126.078005][ T6995] vhci_hcd vhci_hcd.0: Device attached
[  126.097476][ T6997] vhci_hcd: connection closed
[  126.097646][   T57] vhci_hcd: stop threads
[  126.106734][   T57] vhci_hcd: release socket
[  126.111265][   T57] vhci_hcd: disconnect device
[  126.139255][ T7006] xt_hashlimit: size too large, truncated to 1048576
[  126.146115][ T7006] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[  126.233223][ T7012] loop1: detected capacity change from 0 to 1024
[  126.242211][ T7012] EXT4-fs: Ignoring removed nomblk_io_submit option
[  126.265896][ T7012] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  126.305835][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.361320][ T7025] netlink: 'syz.1.1076': attribute type 1 has an invalid length.
[  126.369209][ T7025] __nla_validate_parse: 3 callbacks suppressed
[  126.369221][ T7025] netlink: 161700 bytes leftover after parsing attributes in process `syz.1.1076'.
[  126.412451][ T7025] loop1: detected capacity change from 0 to 8192
[  126.656674][ T7034] sg_write: data in/out 3843/14 bytes for SCSI command 0x4-- guessing data in;
[  126.656674][ T7034]    program syz.2.1080 not setting count and/or reply_len properly
[  126.760619][ T7041] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1081'.
[  126.787818][ T7043] loop3: detected capacity change from 0 to 2048
[  126.805895][ T7043] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  127.003891][ T7048] FAULT_INJECTION: forcing a failure.
[  127.003891][ T7048] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  127.017114][ T7048] CPU: 0 UID: 0 PID: 7048 Comm: syz.4.1084 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[  127.017152][ T7048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  127.017168][ T7048] Call Trace:
[  127.017176][ T7048]  <TASK>
[  127.017186][ T7048]  __dump_stack+0x1d/0x30
[  127.017212][ T7048]  dump_stack_lvl+0xe8/0x140
[  127.017236][ T7048]  dump_stack+0x15/0x1b
[  127.017271][ T7048]  should_fail_ex+0x265/0x280
[  127.017310][ T7048]  should_fail+0xb/0x20
[  127.017427][ T7048]  should_fail_usercopy+0x1a/0x20
[  127.017509][ T7048]  _copy_to_user+0x20/0xa0
[  127.017544][ T7048]  simple_read_from_buffer+0xb5/0x130
[  127.017676][ T7048]  proc_fail_nth_read+0x100/0x140
[  127.017725][ T7048]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  127.017752][ T7048]  vfs_read+0x19d/0x6f0
[  127.017773][ T7048]  ? __rcu_read_unlock+0x4f/0x70
[  127.017872][ T7048]  ? __rcu_read_unlock+0x4f/0x70
[  127.017901][ T7048]  ? __fget_files+0x184/0x1c0
[  127.017936][ T7048]  ksys_read+0xda/0x1a0
[  127.017963][ T7048]  __x64_sys_read+0x40/0x50
[  127.017989][ T7048]  x64_sys_call+0x2d77/0x2fb0
[  127.018087][ T7048]  do_syscall_64+0xd2/0x200
[  127.018115][ T7048]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  127.018151][ T7048]  ? clear_bhb_loop+0x40/0x90
[  127.018179][ T7048]  ? clear_bhb_loop+0x40/0x90
[  127.018211][ T7048]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.018233][ T7048] RIP: 0033:0x7ff85bdbd33c
[  127.018248][ T7048] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  127.018321][ T7048] RSP: 002b:00007ff85a427030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  127.018360][ T7048] RAX: ffffffffffffffda RBX: 00007ff85bfe5fa0 RCX: 00007ff85bdbd33c
[  127.018377][ T7048] RDX: 000000000000000f RSI: 00007ff85a4270a0 RDI: 0000000000000006
[  127.018393][ T7048] RBP: 00007ff85a427090 R08: 0000000000000000 R09: 0000000000000000
[  127.018408][ T7048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  127.018420][ T7048] R13: 0000000000000000 R14: 00007ff85bfe5fa0 R15: 00007ffeb8cb23e8
[  127.018441][ T7048]  </TASK>
[  127.237822][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.324438][ T7053] loop3: detected capacity change from 0 to 1024
[  127.334130][ T7053] EXT4-fs: Ignoring removed nomblk_io_submit option
[  127.350999][ T7056] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  127.357640][ T7056] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  127.365200][ T7056] vhci_hcd vhci_hcd.0: Device attached
[  127.372412][ T7053] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  127.385436][ T7057] vhci_hcd: connection closed
[  127.385574][   T57] vhci_hcd: stop threads
[  127.394609][   T57] vhci_hcd: release socket
[  127.399101][   T57] vhci_hcd: disconnect device
[  127.424501][   T29] kauditd_printk_skb: 595 callbacks suppressed
[  127.424522][   T29] audit: type=1326 audit(1749602779.979:9049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7051 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8973e929 code=0x7ffc0000
[  127.453682][   T29] audit: type=1326 audit(1749602779.979:9050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7051 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8973e929 code=0x7ffc0000
[  127.476538][   T29] audit: type=1326 audit(1749602779.979:9051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7051 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f0e8973e929 code=0x7ffc0000
[  127.499381][   T29] audit: type=1326 audit(1749602779.979:9052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7051 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8973e929 code=0x7ffc0000
[  127.522266][   T29] audit: type=1326 audit(1749602779.979:9053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7051 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8973e929 code=0x7ffc0000
[  127.545413][   T29] audit: type=1326 audit(1749602779.979:9054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7051 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f0e8973e929 code=0x7ffc0000
[  127.568242][   T29] audit: type=1326 audit(1749602779.979:9055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7051 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8973e929 code=0x7ffc0000
[  127.591127][   T29] audit: type=1326 audit(1749602779.979:9056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7051 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8973e929 code=0x7ffc0000
[  127.614092][   T29] audit: type=1326 audit(1749602779.979:9057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7051 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7f0e8973e929 code=0x7ffc0000
[  127.636941][   T29] audit: type=1326 audit(1749602779.979:9058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7051 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8973e929 code=0x7ffc0000
[  127.661574][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.685029][ T7063] xt_hashlimit: size too large, truncated to 1048576
[  127.691786][ T7063] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[  127.735775][ T7067] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  127.742360][ T7067] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  127.749994][ T7067] vhci_hcd vhci_hcd.0: Device attached
[  127.755911][ T7071] sg_write: data in/out 3843/14 bytes for SCSI command 0x4-- guessing data in;
[  127.755911][ T7071]    program syz.1.1091 not setting count and/or reply_len properly
[  127.794447][ T7068] vhci_hcd: connection closed
[  127.795288][   T51] vhci_hcd: stop threads
[  127.804467][   T51] vhci_hcd: release socket
[  127.808902][   T51] vhci_hcd: disconnect device
[  127.823648][   T36] ==================================================================
[  127.831774][   T36] BUG: KCSAN: data-race in kick_pool / wq_worker_running
[  127.838827][   T36] 
[  127.841149][   T36] read-write to 0xffff888237c2b664 of 4 bytes by task 10 on cpu 0:
[  127.849043][   T36]  wq_worker_running+0x95/0x120
[  127.853943][   T36]  usb_kill_urb+0xd8/0x150
[  127.858370][   T36]  hub_quiesce+0x142/0x1d0
[  127.862792][   T36]  hub_suspend+0x4f1/0x580
[  127.867217][   T36]  usb_suspend_both+0x16f/0x9a0
[  127.872085][   T36]  usb_runtime_suspend+0x4a/0xe0
[  127.877056][   T36]  __rpm_callback+0x2ab/0x6e0
[  127.881942][   T36]  rpm_suspend+0x6f5/0x1020
[  127.886473][   T36]  __pm_runtime_suspend+0xed/0x1f0
[  127.891619][   T36]  usb_runtime_idle+0x42/0x50
[  127.896319][   T36]  rpm_idle+0x557/0x890
[  127.900488][   T36]  pm_runtime_work+0x109/0x130
[  127.905284][   T36]  process_scheduled_works+0x4cb/0x9d0
[  127.910756][   T36]  worker_thread+0x582/0x770
[  127.915366][   T36]  kthread+0x486/0x510
[  127.919460][   T36]  ret_from_fork+0xda/0x150
[  127.923969][   T36]  ret_from_fork_asm+0x1a/0x30
[  127.928753][   T36] 
[  127.931092][   T36] read to 0xffff888237c2b664 of 4 bytes by task 36 on cpu 1:
[  127.938463][   T36]  kick_pool+0x49/0x2d0
[  127.942635][   T36]  __queue_work+0x8d6/0xb60
[  127.947134][   T36]  queue_work_on+0xd1/0x160
[  127.951653][   T36]  process_srcu+0x999/0xbc0
[  127.956161][   T36]  process_scheduled_works+0x4cb/0x9d0
[  127.961628][   T36]  worker_thread+0x582/0x770
[  127.966315][   T36]  kthread+0x486/0x510
[  127.970387][   T36]  ret_from_fork+0xda/0x150
[  127.974888][   T36]  ret_from_fork_asm+0x1a/0x30
[  127.979659][   T36] 
[  127.981992][   T36] value changed: 0x00000000 -> 0x00000001
[  127.987704][   T36] 
[  127.990020][   T36] Reported by Kernel Concurrency Sanitizer on:
[  127.996169][   T36] CPU: 1 UID: 0 PID: 36 Comm: kworker/1:1 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[  128.008508][   T36] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  128.018574][   T36] Workqueue: rcu_gp process_srcu
[  128.023517][   T36] ==================================================================
[  137.170305][   T29] kauditd_printk_skb: 50 callbacks suppressed
[  137.170323][   T29] audit: type=1400 audit(1749602789.729:9109): avc:  denied  { read } for  pid=7077 comm="poweroff" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
Stopping sshd: stopped /usr/sbin/sshd (pid 3138)
OK
Stopping crond: stopped /usr/sbin/crond (pid 3098)
OK
Stopping dhcpcd...
stopped /sbin/dhcpcd (pid 3035)
Stopping network: [  137.605605][   T29] audit: type=1400 audit(1749602790.169:9110): avc:  denied  { read write } for  pid=7100 comm="ip" path="/dev/console" dev="rootfs" ino=17 scontext=system_u:system_r:ifconfig_t tcontext=system_u:object_r:root_t tclass=chr_file permissive=1
OK
Stopping iptables: [  137.681043][   T29] audit: type=1400 audit(1749602790.239:9111): avc:  denied  { read write } for  pid=7108 comm="iptables" path="/dev/console" dev="rootfs" ino=17 scontext=system_u:system_r:iptables_t tcontext=system_u:object_r:root_t tclass=chr_file permissive=1
OK
[  137.717868][   T29] audit: type=1400 audit(1749602790.269:9112): avc:  denied  { search } for  pid=7108 comm="iptables" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:iptables_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
Stopping system [  137.740110][   T29] audit: type=1400 audit(1749602790.269:9113): avc:  denied  { search } for  pid=7108 comm="iptables" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:iptables_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
message bus: [  137.763193][   T29] audit: type=1400 audit(1749602790.269:9114): avc:  denied  { add_name } for  pid=7108 comm="iptables" name="xtables.lock" scontext=system_u:system_r:iptables_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  137.785628][   T29] audit: type=1400 audit(1749602790.269:9115): avc:  denied  { create } for  pid=7108 comm="iptables" name="xtables.lock" scontext=system_u:system_r:iptables_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1