last executing test programs:

1m49.775670575s ago: executing program 2 (id=3413):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3000000"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='mm_migrate_pages\x00', r1, 0x0, 0x5}, 0x18)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)

1m49.752563196s ago: executing program 2 (id=3415):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'syzkaller0\x00'})
sendmsg$nl_route_sched(r3, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70b927, 0x25dfdc01, {0x0, 0x0, 0x0, r5, {0x0, 0xe}, {0x2, 0xb}, {0xd, 0xb}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0xc, 0x0, 0x1, 0xfc}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x2000c061}, 0x4008000)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r6)
sendmsg$TIPC_CMD_ENABLE_BEARER(r6, &(0x7f00000002c0)={0x0, 0x20, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)

1m49.618927121s ago: executing program 2 (id=3419):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r1 = creat(&(0x7f0000000440)='./file0\x00', 0x0)
open_by_handle_at(r1, &(0x7f0000000140)=@OVL_FILEID_V1={0x18, 0x300fb, {'\x00', {0x0, 0xfb, 0x15, 0x7, 0x5, "e8371f2efe0868327a31a705ec978547"}}}, 0x830200)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=<r4=>r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000004080)={{r2}, &(0x7f0000004000), &(0x7f0000004040)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='kfree\x00', r3, 0x0, 0xf}, 0x18)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYRES16=r4], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x2}, 0x94)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f00000002c0)={0x0, 0x0, 0x0, 'queue1\x00'})
r7 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000380), 0x101040)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r7, 0x40345410, &(0x7f0000000300)={{0x0, 0x2}})
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r7, 0x54a2)
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r8, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x3, 0x0, 0x6}, 0x76e0})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000000c0)='netlink_extack\x00', r5}, 0x10)
r9 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="2c000000180009020000000000000000020000100800000000000024202a93669006093850bbd16a6f8c00100009800b0000007b26282f283a0000"], 0x2c}}, 0x0)
r10 = getpid()
r11 = syz_pidfd_open(r10, 0x0)
setns(r11, 0x24020000)
syz_clone(0xf5982500, 0x0, 0x0, 0x0, 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f00000000c0)=""/138, 0x8a}], 0x1, 0x9, 0x89b)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYRES8=r0, @ANYRES32=r0, @ANYRESDEC], &(0x7f0000000480)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r12 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x802)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r12, 0x40505412, &(0x7f0000000040)={0x7, 0xa, 0x400, 0x0, 0x3})
syz_usb_connect(0x2, 0x24, &(0x7f0000000740)=ANY=[], 0x0)

1m48.94257261s ago: executing program 2 (id=3436):
prlimit64(0x0, 0xe, &(0x7f0000000440)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e27}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000800)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000200)='sys_enter\x00', r3}, 0x10)
nanosleep(&(0x7f00000001c0)={0x0, 0x3938700}, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4}, 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000510700140000000000000001b7080000000000007b8af8ff00000000b7080000fcffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = socket$phonet_pipe(0x23, 0x5, 0x2)
ioctl$sock_ifreq(r6, 0x8919, &(0x7f0000000000)={'nicvf0\x00', @ifru_map={0x8, 0x6, 0x1, 0x10}})
socket$inet6(0xa, 0x3, 0x3c)
socket$inet(0xa, 0x801, 0x0)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
ppoll(&(0x7f0000000500)=[{r7}], 0x1, 0x0, 0x0, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000300)={'netdevsim0\x00', @random="f60f63971a2b"})
r8 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r8, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580)=ANY=[@ANYBLOB="380000000314010026bd7000ffdbdf250900020073797a30000000000800410073697700140033007767310000000000000000000000000059ef748d76b5563357f61c3233ca5c4a47620569b1f1929be73f417c9f"], 0x38}, 0x1, 0x0, 0x0, 0x40}, 0x4008010)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./bus\x00', 0x13ac58, &(0x7f00000000c0)={[{@journal_path={'journal_path', 0x3d, './file0'}}]}, 0x5, 0x547, &(0x7f0000001180)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x810408, 0x0, 0xff, 0x0, &(0x7f00000007c0))
perf_event_open$cgroup(&(0x7f00000002c0)={0x5, 0x80, 0xff, 0x6, 0x82, 0xf7, 0x0, 0x8, 0x1300, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x3e14, 0x3, @perf_config_ext={0xffff888237c0a080, 0x18000000}, 0xa0, 0x8, 0x7, 0x2, 0xfffffffffffffffd, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x8}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x3)
rename(&(0x7f0000000180)='./file0\x00', 0x0)

1m47.406905087s ago: executing program 2 (id=3453):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000008500000050", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x100000000000000}, 0x18)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x20c006, &(0x7f0000000240)={[{@grpjquota}, {@lazytime}, {@barrier}, {@barrier}, {@max_batch_time={'max_batch_time', 0x3d, 0x5}}, {@grpquota}], [{@seclabel}]}, 0x3, 0x446, &(0x7f0000000d40)="$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")

1m47.289950352s ago: executing program 32 (id=3454):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0x5, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x18, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x7d}]}, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)

1m47.286777223s ago: executing program 33 (id=3456):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff}, 0x6)
setsockopt$bt_hci_HCI_FILTER(r0, 0x0, 0x2, &(0x7f0000000180)={0xfffc, [0x5, 0xffffffff]}, 0x10)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r1, 0x400455c8, 0x0)
recvmmsg(r0, &(0x7f0000000980), 0x0, 0x42, 0x0)

1m47.228430205s ago: executing program 34 (id=3458):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xdebd1000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet(0x2, 0x1, 0x10000)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r4}, 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10)
syz_clone(0x42164000, 0x0, 0x0, 0x0, 0x0, 0x0)
fchown(0xffffffffffffffff, 0xee01, 0xffffffffffffffff)
syz_io_uring_setup(0x2c0d, 0x0, 0x0, 0x0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r6, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}}, 0x14}, 0x1, 0x0, 0x0, 0x4045}, 0x4000054)

1m45.446358612s ago: executing program 2 (id=3460):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x48}, 0x1, 0x0, 0x0, 0x20040884}, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_ro(r0, 0x0, 0x275a, 0x0)
preadv(r1, &(0x7f0000000100), 0xa, 0x0, 0x0)

1m45.446202142s ago: executing program 35 (id=3460):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x48}, 0x1, 0x0, 0x0, 0x20040884}, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_ro(r0, 0x0, 0x275a, 0x0)
preadv(r1, &(0x7f0000000100), 0xa, 0x0, 0x0)

1m43.091050724s ago: executing program 5 (id=3464):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@newqdisc={0x80, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0x25dfdbfc, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x8001, 0x3151, 0x401, 0x6, 0xaa3c}, 0x3, 0x1, 0x6, 0x6, 0x7, 0x13, 0x11, 0xf, 0x7, 0x7f, {0x6, 0x407c, 0x7, 0x5, 0x2b52, 0x2}}}}, @TCA_RATE={0x6, 0x5, {0x0, 0x5}}]}, 0x80}, 0x1, 0x0, 0x0, 0x400dc}, 0x20000000)

1m42.909122392s ago: executing program 5 (id=3465):
socket(0x10, 0x803, 0x4)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(0x0, r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)=ANY=[@ANYRES32, @ANYBLOB="010000000000000000000100000004000480080002000100000008000100000000000400088010000c800c000bcc54c9024db1c8"], 0x3c}}, 0x20000810)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4008854}, 0x4010)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040000}, 0x0)
r2 = openat$cgroup_type(r1, &(0x7f0000000100), 0x2, 0x0)
write$cgroup_type(r2, &(0x7f0000000280), 0x9)
r3 = openat$cgroup_procs(r1, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r3, &(0x7f0000000c40), 0x12)
r4 = syz_clone(0x1022000, 0x0, 0xfffffffffffffc76, 0x0, 0x0, 0x0)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_procs(r5, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f0000000080)=r4, 0x12)

1m42.848780565s ago: executing program 5 (id=3466):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000008c0)=@newqdisc={0x24, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}, {0x2, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@newqdisc={0x80, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0x25dfdbfc, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x8001, 0x3151, 0x401, 0x6, 0xaa3c}, 0x3, 0x1, 0x6, 0x6, 0x7, 0x13, 0x11, 0xf, 0x7, 0x7f, {0x6, 0x407c, 0x7, 0x5, 0x2b52, 0x2}}}}, @TCA_RATE={0x6, 0x5, {0x0, 0x5}}]}, 0x80}, 0x1, 0x0, 0x0, 0x400dc}, 0x20000000)

1m42.696344811s ago: executing program 5 (id=3467):
r0 = socket(0xa, 0x3, 0x3a)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYRESDEC=0x0, @ANYRES8=r0, @ANYBLOB="725bf64baf179c5118f9ee53ba50c88cf2b403b8c0d23f8c4635c8a652bc3a"], 0x48)
setsockopt$MRT6_INIT(r0, 0x29, 0xc8, &(0x7f0000000340), 0x4)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000004700)={'team0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r3, {}, {}, {0x8, 0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x8881}, 0x0)
setsockopt$MRT6_ADD_MIF(r0, 0x29, 0xca, &(0x7f0000000040)={0x0, 0x1, 0x6, r3}, 0xc)
setsockopt$MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f00000005c0)={{0xa, 0xfffc, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x33}}}, {0xa, 0x0, 0x1, @empty}, 0x0, {[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0xfffffffe]}}, 0x5c)

1m42.48849809s ago: executing program 4 (id=3468):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x5, &(0x7f0000000300)=0x4, 0x4)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=<r1=>0xffffffffffffffff, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0x6}, 0x18)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6001, 0x1)
prctl$PR_SET_MM(0x23, 0xa, &(0x7f00007d7000/0x2000)=nil)
r3 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r4 = dup2(r3, r3)
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0b00000008000000000000000000000940e7733dea8e284a363106561ff6acf188050588aa9f6895c4d839a79eb03659fa7a8b1b9a85925b25933b559c5788b619c4354ac55282e01a8ec09fba881d44dc2a5301b59df0caa8370dee26336d38284892d34d1b35bf36f3e9b30287c0364a7947da27687ffdeb576f5305e11c6eac34ac778e3887788e1649f31bad5a1f2e9a16da4a4d386540254777d1ea2779137384787811667c7ec8f399803d7b37a20b4a8f82d45de0ffef5d43818abccee97f59604fb59ac0b09912ced08a9cfd4b616ec96c"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f00000007c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYRES64=r4], &(0x7f0000000040)='syzkaller\x00', 0x9, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='mem_disconnect\x00', r5}, 0x18)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r6, 0x0, 0xe, 0x0, &(0x7f00000003c0)="131c8701feaa16bca4ac74ab821d", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DELETE(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="20000000020805"], 0x20}, 0x1, 0x0, 0x0, 0x4080}, 0x4008050)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$BLKTRACESETUP(r4, 0xc0481273, &(0x7f0000000240)={'\x00', 0x40, 0xa, 0x1, 0x40000000, 0x10})
ioctl$BLKTRACETEARDOWN(r4, 0x1276, 0x0)

1m42.380862655s ago: executing program 4 (id=3469):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
r2 = socket$phonet_pipe(0x23, 0x5, 0x2)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x3f, 0x0, 0x0, 0x0, 0xb}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
r5 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
writev(r5, &(0x7f0000000040)=[{&(0x7f0000000240)='4', 0x1}], 0x1)
bind$phonet(r2, &(0x7f0000000040)={0x23, 0x14}, 0x10)
bind$phonet(r1, &(0x7f0000000000)={0x23, 0x4}, 0x10)
r6 = socket$phonet_pipe(0x23, 0x5, 0x2)
bind$phonet(r6, &(0x7f0000000040)={0x23, 0x4, 0x2}, 0x10)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x1}, 0x8)
setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f00000002c0)=ANY=[@ANYBLOB="04000000020003475467d96a28584d51d841008100ff07"], 0xc)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000140)=ANY=[@ANYRES32=0x0, @ANYBLOB="79fd7cecec3c829df1211e714bf73d1d1e13666b1850d74d9d4f2b3be38ed4026f56b5771ab55b36ea3dfd91faf55ef019d06f5de343a4c025596d4a7775eb7171387ea5707b9ce55f64f45afc477b5063653ba7d827e1aa75bff191633e8a6784e7d7d3a6b567bf759f57c2aed3a6af53bd8a4f042c83d2e038386c7187df24651df46e54ed3a393136cdec3bfe071886c40a102fa1f94e7cad8f896841ce746144a8b33f40"], 0xc)
r7 = socket(0xa, 0x3, 0x3a)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYRESDEC=0x0, @ANYRES8=r7, @ANYBLOB="725bf64baf179c5118f9ee53ba50c88cf2b403b8c0d23f8c4635c8a652bc3a"], 0x48)
setsockopt$MRT6_INIT(r7, 0x29, 0xc8, &(0x7f0000000340), 0x4)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r9, 0x8933, &(0x7f0000004700)={'team0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r10, {}, {}, {0x8, 0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x8881}, 0x0)
setsockopt$MRT6_ADD_MIF(r7, 0x29, 0xca, &(0x7f0000000040)={0x0, 0x1, 0x6, r10}, 0xc)

1m41.958359793s ago: executing program 4 (id=3470):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x20081e, &(0x7f0000000840)={[{@grpjquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xa30}}, {@grpquota}]}, 0x1, 0x52a, &(0x7f0000001440)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001300)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xd}, {0xffff, 0xffff}, {0xffe1, 0xf}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x8001}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000900)={0x0, 0x40, &(0x7f0000000140)={&(0x7f00000003c0)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r5, {0x8, 0xffff}, {}, {0x7, 0xa}}, [@filter_kind_options=@f_basic={{}, {0x0, 0x2, [@TCA_BASIC_EMATCHES={0x0, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x0, 0x2, 0x0, 0x1, [@TCF_EM_IPT={0x38, 0x1, 0x0, 0x0, {{0x800, 0x9, 0x9}, [@TCA_EM_IPT_NFPROTO={0x0, 0x4, 0x7}, @TCA_EM_IPT_MATCH_DATA={0x0, 0x5, "91a6f96863833c851cec04680e2d98d4731eb2135170e937ac837088ab389b3acd71c20f80f251861c97e49847319b8345bcf448"}, @TCA_EM_IPT_HOOK={0x0, 0x1, 0x3}, @TCA_EM_IPT_NFPROTO={0x0, 0x4, 0x1}]}}, @TCF_EM_IPT={0x0, 0x2, 0x0, 0x0, {{0x3, 0x9, 0xff86}}}]}, @TCA_EMATCH_TREE_HDR={0x0, 0x1, {0xe216}}, @TCA_EMATCH_TREE_HDR={0x0, 0x1, {0x6}}, @TCA_EMATCH_TREE_HDR={0x0, 0x1, {0x4}}, @TCA_EMATCH_TREE_HDR={0x0, 0x1, {0xd}}, @TCA_EMATCH_TREE_HDR={0x0, 0x1, {0x6}}, @TCA_EMATCH_TREE_HDR={0x0, 0x1, {0x9}}]}, @TCA_BASIC_CLASSID={0x0, 0x1, {0xfff6, 0xd}}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x20000800)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r1, 0x0)
ftruncate(r1, 0xc17a)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0b00000007000000d7c900000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r6}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r7 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x80642, 0x150)
pwrite64(r8, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
fallocate(r7, 0x0, 0xbf5, 0x2000402)
ioctl$EXT4_IOC_MOVE_EXT(r8, 0xc028660f, &(0x7f0000000040)={0xc, r7, 0x0, 0x0, 0x0, 0xfffffffffdffffff})

1m41.573531949s ago: executing program 4 (id=3471):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0xffffffff}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000340)=ANY=[@ANYBLOB="12000000020000000800000002"], 0x48)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
syz_pidfd_open(0x0, 0x0)
syz_open_procfs(0x0, &(0x7f00000001c0)='net/arp\x00')
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0x2000000000000}, 0x18)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r2, 0xc004743e, &(0x7f0000000000)=0x3)
ioctl$PPPIOCSPASS(r2, 0x40107447, &(0x7f0000000080)={0x1, &(0x7f0000000100)=[{0x6, 0x60, 0x0, 0x8}]})

1m41.134963189s ago: executing program 4 (id=3472):
socket(0x10, 0x803, 0x4)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(0x0, r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)=ANY=[@ANYRES32, @ANYBLOB="010000000000000000000100000004000480080002000100000008000100000000000400088010000c800c000bcc54c9024db1c8"], 0x3c}}, 0x20000810)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4008854}, 0x4010)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040000}, 0x0)
write$cgroup_type(0xffffffffffffffff, &(0x7f0000000280), 0x9)

1m40.993534845s ago: executing program 4 (id=3473):
prlimit64(0x0, 0xe, &(0x7f0000000440)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e27}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000200)='sys_enter\x00'}, 0x10)
nanosleep(&(0x7f00000001c0)={0x0, 0x3938700}, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000510700140000000000000001b7080000000000007b8af8ff00000000b7080000fcffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x810408, 0x0, 0xff, 0x0, &(0x7f00000007c0))
perf_event_open$cgroup(&(0x7f00000002c0)={0x5, 0x80, 0xff, 0x6, 0x82, 0xf7, 0x0, 0x8, 0x1300, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x3e14, 0x3, @perf_config_ext={0xffff888237c0a080, 0x18000000}, 0xa0, 0x8, 0x7, 0x2, 0xfffffffffffffffd, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x8}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x3)

1m40.970566956s ago: executing program 36 (id=3473):
prlimit64(0x0, 0xe, &(0x7f0000000440)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e27}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000200)='sys_enter\x00'}, 0x10)
nanosleep(&(0x7f00000001c0)={0x0, 0x3938700}, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000510700140000000000000001b7080000000000007b8af8ff00000000b7080000fcffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x810408, 0x0, 0xff, 0x0, &(0x7f00000007c0))
perf_event_open$cgroup(&(0x7f00000002c0)={0x5, 0x80, 0xff, 0x6, 0x82, 0xf7, 0x0, 0x8, 0x1300, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x3e14, 0x3, @perf_config_ext={0xffff888237c0a080, 0x18000000}, 0xa0, 0x8, 0x7, 0x2, 0xfffffffffffffffd, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x8}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x3)

1m40.559948654s ago: executing program 5 (id=3475):
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0x5}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000300)="2e0000001000818807b62aa73f72cc9f0ba1f8483a0000005e120602000300000e000a0010000000028000001294", 0x2e}], 0x1}, 0x24008800)

1m40.086553744s ago: executing program 5 (id=3476):
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @empty}, 0x10)
r1 = socket$inet(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000007c0)={[{@nodioread_nolock}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x1, 0x46f, &(0x7f0000000bc0)="$eJzs281rHOUfAPDvTF7a/vqS/Gp9aa0aLUJQTJq0ag9eFAWRioIe6jEm2xK6baSJYmuxqYgnQQp6Fo+if4E3EUQ9CV49eZJC0V7aeorM7Ey62WYTazaZ2P18YLPPM/PszvebeXv2eXYD6FpD2Z8kYkdE/BoRA43q0gZDjafrV89P3rh6fjKJhYXX/kjydteunp8sm5av215UhtOI9MOk2MhSs2fPnZyo12tnivro3Km3RmfPnnvinVMTJ2onaqfHjxw5fGjs6afGn+xInlle1/a9P7N/74tvXHp58tilN3/8Oot3R7G+OY9OGcoS/3Mh17ru0U5vrGI7m8pJb4WBcFt6IiLbXX35+T8QPXFz5w3ECx9UGhywrrJ705b2q+cXgDtYElVHAFSjvNFnn3/LxwZ1PTaFK882PgBleV8vHo01vZEWbfpaPt920lBEHJv/6/PsEes0DgEA0Ozjyc+O9kfEeze+einrewwsrknjnvz5t/zvrmIOZTAi/h8RuyPirojYExF3R+Rt742I+9YYz639n/TyGt9yRVn/75libmtp/6/s/cVgT1HbmefflxyfrtcOFv+T4ejbktXHVtjGt8//8km7dc39v+yRbb/sCxZxXO5tGaCbmpibyDulHXDlYsS+3uXyTxZnApKI2BsR+27vrXeVhenHvtzfrtHq+a+gA/NMC19k6c1n+c9HS/6lpHl+cvqW+cnRrVGvHRwtj4pb/fTzR6+22/6a8u+AK7XGc9P+b20ymDTP1852dvv/8vhP+5PX83nm/mLZuxNzc2fGIvqTo3l9yfLxm68t62X77PgfPrD8+b+7eE2W//0RkR3ED0TEgxHxUBH7wxHxSEQcWCHHH55bPf9IK9r/FyOmlr3+LR7/Lfv/9gs9J7//pt32/9n+P5yXhosl+fVvFcuFk10uWgNcy/8OAAAA/ivS/DvwSTqyWE7TkZHGd/j3xP/S+szs3OPHZ94+PdX4rvxg9KXlSNdAMR5an67XxpL54h0b46PjxVhxOV56qBg3/rRnW14fmZypT1WcO3S77W3O/8zvPVVHB6yzbcsuHe/f8ECACrTOo6dLqxdeCRcDuFP5vTZ0r1XO/3Sj4gA2nvs/dK/lzv8LLXVzAXBncv+H7uX8hy6Vfld1BECF3P+hK63ld/3rWNi6OcKoprBZd0peiCgL6aaIR2GdClVfmQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADrj7wAAAP//KFzmgQ==")

1m40.086304664s ago: executing program 37 (id=3476):
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @empty}, 0x10)
r1 = socket$inet(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000007c0)={[{@nodioread_nolock}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x1, 0x46f, &(0x7f0000000bc0)="$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")

1m39.854182894s ago: executing program 7 (id=3459):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x18, 0xb, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, 0x2}, 0x94)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x83, 0x0, 0x0)
write$P9_RGETLOCK(r0, &(0x7f0000000340)=ANY=[], 0x200002e6)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000080000002d01000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, &(0x7f0000000040), &(0x7f00000003c0)}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
fcntl$setpipe(r0, 0x407, 0x7000000)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0xf2de1000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)

1m39.844447685s ago: executing program 6 (id=3457):
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000070000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r0}, 0x10)
syz_clone(0x160480, 0x0, 0x0, 0x0, 0x0, 0x0)
close(0x3) (fail_nth: 1)

1m39.811154576s ago: executing program 38 (id=3457):
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000070000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r0}, 0x10)
syz_clone(0x160480, 0x0, 0x0, 0x0, 0x0, 0x0)
close(0x3) (fail_nth: 1)

1m39.766824018s ago: executing program 39 (id=3459):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x18, 0xb, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, 0x2}, 0x94)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x83, 0x0, 0x0)
write$P9_RGETLOCK(r0, &(0x7f0000000340)=ANY=[], 0x200002e6)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000080000002d01000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, &(0x7f0000000040), &(0x7f00000003c0)}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
fcntl$setpipe(r0, 0x407, 0x7000000)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0xf2de1000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)

5.350545348s ago: executing program 3 (id=4783):
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x80, 0x0, 0x0, 0x0, 0x7995}, 0xfff7, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
ioctl$USBDEVFS_REAPURB(r1, 0x4008550c, 0x0)

5.038720071s ago: executing program 3 (id=4788):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
link(0x0, 0x0)

4.635157549s ago: executing program 3 (id=4790):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x18, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
sendmsg$tipc(r2, &(0x7f00000003c0)={&(0x7f0000000180), 0x10, &(0x7f0000000380)=[{&(0x7f0000000480)="c3e972bd85a6d84136d6dd55048d3593a74f338ce6772ab9a6f64041c2f6fbbecdc08ebcd3192b6a53662dae7c8e9c665e80a5d0925f728dcac30c29793992e588952653d414cb8ccdabc38767fee819ec5af0c5ee936880fe8549b4ed347779cab4ffd4e0b62c53a1c01db28f2b3f91c34211c9353bc1dece61511917c2245fd66cb8dffeacb4d46d627c97b498bf1ff6b313bfbc9765457c831771d5eec7997ec242e4505f01c1bb3e069b2e630f42a2be86598a61", 0x64}, {&(0x7f0000000300)='V', 0xffffff6c}, {&(0x7f0000001600)="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", 0x1000}, {&(0x7f0000000340)="b768eb20304f2fdc5a9694a4867840d93170ca1a86406f", 0xfffffec0}], 0x4, 0x0, 0x0, 0x8000}, 0x0)
r3 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r3, 0x0, &(0x7f00000000c0)=<r4=>0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000400)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="e8000000000000000b210000ff3f7c081e0f315b91fcaec7bf495d5c618332756cbb1bb9ce6d12b9d976d1f33aca41e50a3342bcd67c311f7885a05c3fcf2ae21f1498ec481e7ca2c3ca4c7b3bf94448f62e111e5a79929b9182cc977ba6ae766ce37bdaac6da997fbc15f0c79f42155b99a280667b51fdc7902d7be5ef41f953fedb32aceeada13250626957e2013d5b12cc916541ccbeb0d4060a4dd89664eaba2f6b4ede0c9e3dc1c9446d9284ebe0e46eee7bc145ff0a2779c025553298812978ea53a8c60f254f23344a80a0aac7b141787bad6b0ba090000005f2f3158"], 0x208}, 0x0)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000240)={<r7=>0xffffffffffffffff})
sendmsg(r7, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[], 0x208}, 0x0)
r8 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r6)
sendmsg$NFC_CMD_DEV_UP(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x1c, r8, 0x1, 0x70bd28, 0x25dfdbfe, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40089}, 0x8004)
prctl$PR_SET_NAME(0xf, &(0x7f0000000700)=',&#^%\x00')
write$nci(r3, &(0x7f0000000140)=ANY=[@ANYBLOB="414601", @ANYRES32=r5], 0x4)

3.756847457s ago: executing program 3 (id=4800):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
link(0x0, 0x0)

3.594892814s ago: executing program 3 (id=4801):
socket(0x10, 0x803, 0x4)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(0x0, r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)=ANY=[@ANYRES32, @ANYBLOB="010000000000000000000100000004000480080002000100000008000100000000000400088010000c800c000bcc54c9024db1c8"], 0x3c}}, 0x20000810)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4008854}, 0x4010)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040000}, 0x0)
write$cgroup_type(0xffffffffffffffff, &(0x7f0000000280), 0x9)
r2 = openat$cgroup_procs(r1, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f0000000c40), 0x12)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = syz_clone(0x1022000, 0x0, 0xfffffffffffffc76, 0x0, 0x0, 0x0)
r5 = openat$cgroup_ro(r3, 0x0, 0x275a, 0x0)
write$cgroup_int(r5, &(0x7f0000000200)=0x1, 0x12)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_procs(r6, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r7, &(0x7f0000000080)=r4, 0x12)

3.156890583s ago: executing program 9 (id=4806):
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x4)
socket$netlink(0x10, 0x3, 0xc)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="18010000fcff0000000000006dfeff00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', r0, 0x0, 0x404}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000140)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010028bd70000000000008000000180001801400020073797a5f74756e0000000000000000001c00028018000380100001800800010009000000040003"], 0x48}}, 0x0)

3.051934637s ago: executing program 9 (id=4807):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYRESOCT], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r2, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="110325bd7000fbdbdf2501"], 0x20}, 0x1, 0x0, 0x0, 0x24000801}, 0x24000010)
syz_read_part_table(0x60d, &(0x7f0000002200)="$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")
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x4842, 0x1cb)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
setreuid(0x0, 0xee00)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000600)=ANY=[@ANYBLOB="ff0000e051d8718da4e4a57573a7397919ae01d944a5cff0dd797e00259a775a1cf1b308222fe7602fc6e0ab74dfc577cacb824b8377afaac1d5d066938b0ef1edea177595cd0d9251716a337ef2", @ANYRES16=0x0, @ANYBLOB="200000000000000000000500000008000900000000000c0003800400010004000100"], 0x28}, 0x1, 0x0, 0x0, 0x4004044}, 0x80)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000070080000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYRESOCT=r6], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0xa4, 0x1589, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x803, 0x0, @perf_config_ext, 0x0, 0x5b, 0x0, 0x4, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000440)={'vxcan0\x00', <r8=>0x0})
socket$nl_route(0x10, 0x3, 0x0)
r9 = socket(0x10, 0x803, 0x833e)
sendmsg$nl_route(r9, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r9, &(0x7f0000000300)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f0000000540)={'syztnl0\x00', &(0x7f0000000b40)={'syztnl1\x00', 0x0, 0x7800, 0x8, 0xc, 0x8, {{0x26, 0x4, 0x0, 0x9, 0xba, 0x65, 0x0, 0x6, 0x29, 0x0, @loopback, @remote, {[@noop, @end, @generic={0x88, 0xc, "73bb87bc42f0ab9d9151"}, @rr={0x7, 0x3, 0x58}, @ra={0x94, 0x4}, @timestamp_prespec={0x44, 0xc, 0xb, 0x3, 0x8, [{@local, 0x401}]}, @timestamp_prespec={0x44, 0x44, 0x3a, 0x3, 0x1, [{@broadcast, 0x53cc}, {@multicast1, 0x8}, {@private=0xa010100, 0xf3c6}, {@multicast2, 0x400}, {@broadcast, 0x3714}, {@loopback, 0x3083}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x2}, {@remote, 0xd78a}]}, @end]}}}}})
sendmsg$ETHTOOL_MSG_WOL_GET(r4, &(0x7f00000007c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000580)={&(0x7f00000009c0)=ANY=[@ANYBLOB="b0010000", @ANYRES16=0x0, @ANYBLOB="000327bd7000fcdbdf25090000000c00018008000100", @ANYRES32=0x0, @ANYBLOB, @ANYRES32=0x0, @ANYBLOB="080003000100000040000180080003000200000008000100", @ANYRESHEX=r9, @ANYBLOB="1400020064756d6d7930000000000000000000000800030001000000080003000100000008000100", @ANYRES32=0x0, @ANYBLOB="50000180", @ANYRES32=0x0, @ANYBLOB="1400020070696d36726567000000000000000000140002007465616d3000000000000000000000001400020070696d7265673100000000000000000008000100", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="1400020076657468315f746f5f626f6e64000000140002007465616d3000000000000000000000000800030000000000140002006261746165765f736c6176655f310000140002006261746164763000000000000000000008000300020000001400020076657468305f746f5f7465616d0000005000018008000100", @ANYRES32=r8, @ANYBLOB="08000100", @ANYRES32=r10, @ANYBLOB="1400020068737230000000000000000000000000080003000000000008000300000000", @ANYBLOB="080003000300"], 0x1b0}, 0x1, 0x0, 0x0, 0x200440c4}, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r7, 0x40042408, 0xffffffffffffffff)
ioctl$SG_SET_TIMEOUT(r5, 0x2201, &(0x7f00000001c0)=0x3)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0xb)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0x5, &(0x7f00000005c0)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket(0x1e, 0x2, 0x0)

2.958272242s ago: executing program 1 (id=4808):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x18, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
sendmsg$tipc(r2, &(0x7f00000003c0)={&(0x7f0000000180), 0x10, &(0x7f0000000380)=[{&(0x7f0000000480)="c3e972bd85a6d84136d6dd55048d3593a74f338ce6772ab9a6f64041c2f6fbbecdc08ebcd3192b6a53662dae7c8e9c665e80a5d0925f728dcac30c29793992e588952653d414cb8ccdabc38767fee819ec5af0c5ee936880fe8549b4ed347779cab4ffd4e0b62c53a1c01db28f2b3f91c34211c9353bc1dece61511917c2245fd66cb8dffeacb4d46d627c97b498bf1ff6b313bfbc9765457c831771d5eec7997ec242e4505f01c1bb3e069b2e630f42a2be86598a61", 0x64}, {&(0x7f0000000300)='V', 0xffffff6c}, {&(0x7f0000001600)="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", 0x1000}, {&(0x7f0000000340)="b768eb20304f2fdc5a9694a4867840d93170ca1a86406f", 0xfffffec0}], 0x4, 0x0, 0x0, 0x8000}, 0x0)
r3 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r3, 0x0, &(0x7f00000000c0)=<r4=>0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000400)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000240))
r7 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r6)
sendmsg$NFC_CMD_DEV_UP(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x1c, r7, 0x1, 0x70bd28, 0x25dfdbfe, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40089}, 0x8004)
write$nci(r3, &(0x7f0000000140)=ANY=[@ANYBLOB="414601", @ANYRES32=r5], 0x4)

2.777919779s ago: executing program 3 (id=4809):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000140)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x419, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000540)={0xffffffffffffffff, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000280)=[0x0], &(0x7f00000002c0), <r1=>0x0, 0xf9, 0x0, 0x0, 0x10, &(0x7f0000000380), &(0x7f00000003c0), 0x8, 0xd0, 0x8, 0x8, &(0x7f0000000400)}}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000002580)=ANY=[@ANYRES16], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4000}, 0xbc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r2, 0x0, 0x2}, 0x18)
syz_usb_control_io$hid(r0, &(0x7f0000002540)={0x24, 0x0, 0x0, &(0x7f00000013c0)=ANY=[@ANYBLOB='\x00\"'], 0x0}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
bpf$MAP_CREATE(0x0, &(0x7f0000001780)=ANY=[], 0x48)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$msdos(&(0x7f0000000000), &(0x7f00000004c0)='./file0\x00', 0x0, &(0x7f0000000700)=ANY=[@ANYRES32], 0xfd, 0x1bf, &(0x7f0000000300)="$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")
r7 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCSTI(r7, 0x5412, 0x0)
syz_clone(0x40000200, &(0x7f0000000840), 0x0, 0x0, 0x0, 0x0)

2.351037627s ago: executing program 0 (id=4811):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff27}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
ppoll(0x0, 0x0, &(0x7f0000000040)={0x0, 0x989680}, &(0x7f0000000180)={[0xffffffffffffff68]}, 0x8)

2.031120741s ago: executing program 0 (id=4812):
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x7, 0x0, 0x0, 0x0, 0x0, 0x3, 0x54029, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x2}, 0x100280, 0x40000000318, 0x0, 0x1, 0xfffffffffffffffe, 0x101}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$SIOCGETMIFCNT_IN6(0xffffffffffffffff, 0x89e0, &(0x7f00000000c0))
syz_clone(0x26801000, 0x0, 0x0, 0x0, 0x0, 0x0)
pipe(&(0x7f00000000c0))
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000001f80)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
bind$tipc(0xffffffffffffffff, &(0x7f0000000380)=@name={0x1e, 0x2, 0x0, {{0x1, 0x3}}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x1, 0x1}, 0x6)
sendmsg$tipc(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000200), 0x10, &(0x7f0000000480)=[{&(0x7f0000000180)="f7", 0x1}], 0x1, 0x0, 0x0, 0x48080}, 0x48080)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
syz_open_procfs(0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f0000000680)={0x34, r2, 0x1, 0x70bd28, 0x0, {}, [@ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}]}, @ETHTOOL_A_FEATURES_WANTED={0x8, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}]}]}, 0x34}}, 0x0)
r3 = socket$packet(0x11, 0x2, 0x300)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
getsockopt$packet_int(r3, 0x107, 0xe, &(0x7f0000000480), &(0x7f0000000180)=0x4)
syz_pidfd_open(0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000808500000004"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r5}, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00'})
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x200000, &(0x7f0000000040)={[{@grpquota}]}, 0x1, 0xbac, &(0x7f00000017c0)="$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")
open_tree(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)

2.030537242s ago: executing program 9 (id=4813):
bpf$BPF_PROG_QUERY(0x9, &(0x7f0000000380)={@fallback, 0x24, 0x1, 0xfffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
openat$qrtrtun(0xffffffffffffff9c, 0x0, 0x8002)
socket$kcm(0x2, 0x200000000000001, 0x106)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x7, &(0x7f0000000880)=ANY=[@ANYBLOB="1800000001000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000"], &(0x7f00000006c0)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000300), 0x5aa, 0x3b00, 0x0, 0xfffffffffffffdfd)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000400)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/cgroup.procs\x00', &(0x7f0000000800)=ANY=[@ANYBLOB="14"], &(0x7f0000001300), 0x600)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x0, &(0x7f0000000d40)=ANY=[@ANYBLOB="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"], 0xfe, 0x2b7, &(0x7f0000001340)="$eJzs3T9vW1UUAPDzHPvFJUMyMCEk3tCBhajpyoArFCREJpAH/khQ0VaqYqtSLFkqIKxOfAIGBr4HGzsSC98AiQ/ARoUqXfT8Xmxju3ad4hSlv9+Sq3PP8T3X7yUerHfzxev90zsPBvceffN7tNtZNDrRicdZHEQjzqVaAABXwuOU4s8Lfb43G9vqCQDYrpnP/9ZTUnYXQ+9suy0AYIs++viTD26dnBx/WBTtiP53w24W1c9q/ta9uB+9uBs3Yj+eTL8LSKkav/f+yXE0i9JBXO+Pht2ysv/5r5PUPMb1R7EfB8vrj4rKTP1o2G3FK7uRZRH3O2UjN2M/Xl2oL+ePby6pj24eb7brTZbrH8Z+/PZlPIhe3Bl/pzFd/9s8infT9399/WmZXNZno2F3d5w3lXYu+9oAAAAAAAAAAAAAAAAAAAAAAHB1HRYTB3G9X4bq83d2noznD/81Pz5fpzGer+qziHw8mDsfaJTix/PzdW4URZGyKn9yvs+1ZrzWjOYL2zgAAAAAAAAAAAAAAAAAAAD8jwwefnV6u9e7e/afDOqH/CeP9V/0dTozkTdidfLuRmvFTp1e9jqfc/TLZ/1JpNzERZoftoqIVT23FiLXyn7Wv/LfKaWUZRHPd5laz7LWmsHe6pzyDf75h723Tm9n697D9vmF+2l2Ko+zwcO5axrZJh2mjW6/fEVOXt8xz/Q6e8/5S/T2H9VidSRbs4vWTKRVD+Jpt197o/v58v4GAQAAAAAAAAAAAAAAAAAAlelDv0smH60sbWytKQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4ZNP//z8dxEJkbjCqi5fnpJRGk0geZ4MXvEUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABeAv8EAAD//yiCbKI=")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x4842, 0x1cb)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f00000000c0)={'veth0_to_bridge\x00', &(0x7f0000000040)=@ethtool_cmd={0x24, 0x8, 0x7f, 0x3, 0x3, 0x1, 0x2f, 0x80, 0x3, 0x0, 0x8, 0x436b0000, 0x800, 0x7f, 0x1, 0x3, [0x200, 0x200]}})
writev(r3, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x64000}], 0x1)

1.794525012s ago: executing program 1 (id=4815):
prlimit64(0x0, 0xe, &(0x7f0000000440)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e27}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024000000"], &(0x7f0000000800)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000200)='sys_enter\x00', r3}, 0x10)
nanosleep(&(0x7f00000001c0)={0x0, 0x3938700}, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4}, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
ioctl$sock_ifreq(0xffffffffffffffff, 0x8919, &(0x7f0000000000)={'nicvf0\x00', @ifru_map={0x8, 0x6, 0x1, 0x10}})
socket$inet6(0xa, 0x3, 0x3c)
socket$inet(0xa, 0x801, 0x0)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
ppoll(&(0x7f0000000500)=[{r5}], 0x1, 0x0, 0x0, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r6 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r6, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580)=ANY=[@ANYBLOB="380000000314010026bd7000ffdbdf250900020073797a30000000000800410073697700140033007767310000000000000000000000000059ef748d76b5563357f61c3233ca5c4a47620569b1f1929be73f417c9f"], 0x38}, 0x1, 0x0, 0x0, 0x40}, 0x4008010)
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x810408, 0x0, 0xff, 0x0, &(0x7f00000007c0))

921.772619ms ago: executing program 1 (id=4818):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000edffffffb702000008000000b7030000070000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x24, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1802000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
r2 = syz_open_procfs(0x0, &(0x7f0000000840)='map_files\x00')
getdents64(r2, &(0x7f0000002f40)=""/4098, 0x1002)
r3 = accept(r0, &(0x7f0000000380)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, &(0x7f00000002c0)=0x80)
bind$xdp(r3, &(0x7f0000000580)={0x2c, 0x7, 0x0, 0x3a, r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
r4 = getpgid(0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x3, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000c80)={'lo\x00', <r6=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r5, 0x8916, &(0x7f0000005b80)={@loopback={0xfec0ffffffffffff}, 0x32, r6})
ioctl$sock_inet6_SIOCSIFADDR(r5, 0x8916, &(0x7f0000000180)={@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x1e}}, 0x78, r6})
bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0x20, 0xc, &(0x7f0000000d40)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r6, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={0x54, r8, 0x1, 0x0, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xf}}}, {0x14, 0x2, @in={0x2, 0x0, @broadcast}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r7, 0x8982, &(0x7f0000000280)={0x2, 'veth0_to_hsr\x00', {0x7}, 0x4})
sendmsg$TIPC_NL_BEARER_SET(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r8, @ANYBLOB], 0x34}}, 0x0)
sched_setscheduler(r4, 0x0, &(0x7f0000000040)=0x100)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000180)=@o_path={&(0x7f0000000140)='./file0\x00', r0}, 0x18)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000001d80)=[@in={0x2, 0x4e23, @loopback}, @in={0x2, 0x4e20, @multicast2}, @in6={0xa, 0x4e22, 0x1, @local, 0x1ddd}, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in6={0xa, 0x4e21, 0x9464, @loopback, 0x9}, @in6={0xa, 0x4e21, 0x8, @private1={0xfc, 0x1, '\x00', 0x1}}, @in={0x2, 0x4e20, @multicast2}], 0x94)

671.480651ms ago: executing program 0 (id=4820):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000000c0)='kfree\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x7b, 0x11, 0x98}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit={0x95, 0x0, 0x33}], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xb8000000}, 0x70)

613.207353ms ago: executing program 1 (id=4821):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f00000002c0)={[{@barrier}, {@nodioread_nolock}, {@noquota}, {@barrier}, {@auto_da_alloc}, {@nodioread_nolock}]}, 0x1, 0x59c, &(0x7f0000001840)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
write$UHID_INPUT(r1, &(0x7f0000001b00)={0x8, {"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", 0x1000}}, 0x1006)

596.160844ms ago: executing program 9 (id=4822):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r0, 0x0, 0x3}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x120c042, &(0x7f0000000840)={[{@nodiscard}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x6}}, {@resuid}, {@debug}, {@minixdf}, {}, {@nomblk_io_submit}, {@noauto_da_alloc}], [{@seclabel}]}, 0x1, 0x5e7, &(0x7f0000001400)="$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")

522.919087ms ago: executing program 0 (id=4824):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000edffffffb702000008000000b7030000070000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x24, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1802000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
r2 = syz_open_procfs(0x0, &(0x7f0000000840)='map_files\x00')
getdents64(r2, &(0x7f0000002f40)=""/4098, 0x1002)
r3 = accept(r0, &(0x7f0000000380)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, &(0x7f00000002c0)=0x80)
bind$xdp(r3, &(0x7f0000000580)={0x2c, 0x7, 0x0, 0x3a, r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
r4 = getpgid(0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x3, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000c80)={'lo\x00', <r6=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r5, 0x8916, &(0x7f0000005b80)={@loopback={0xfec0ffffffffffff}, 0x32, r6})
ioctl$sock_inet6_SIOCSIFADDR(r5, 0x8916, &(0x7f0000000180)={@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x1e}}, 0x78, r6})
bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0x20, 0xc, &(0x7f0000000d40)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r6, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={0x54, r8, 0x1, 0x0, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xf}}}, {0x14, 0x2, @in={0x2, 0x0, @broadcast}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r7, 0x8982, &(0x7f0000000280)={0x2, 'veth0_to_hsr\x00', {0x7}, 0x4})
sendmsg$TIPC_NL_BEARER_SET(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r8, @ANYBLOB], 0x34}}, 0x0)
sched_setscheduler(r4, 0x0, &(0x7f0000000040)=0x100)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000180)=@o_path={&(0x7f0000000140)='./file0\x00', r0}, 0x18)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000001d80)=[@in={0x2, 0x4e23, @loopback}, @in={0x2, 0x4e20, @multicast2}, @in6={0xa, 0x4e22, 0x1, @local, 0x1ddd}, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in6={0xa, 0x4e21, 0x9464, @loopback, 0x9}, @in6={0xa, 0x4e21, 0x8, @private1={0xfc, 0x1, '\x00', 0x1}}, @in={0x2, 0x4e20, @multicast2}], 0x94)

480.687709ms ago: executing program 8 (id=4825):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b00)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000400)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x4842, 0x1cb)
writev(r2, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x64000}], 0x1)

479.919419ms ago: executing program 0 (id=4826):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB], 0x30}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b70300000000000085000000330000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="300000001c00010000"], 0x30}}, 0x0)

430.130231ms ago: executing program 8 (id=4827):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x3, 0x3c)
setsockopt$inet6_IPV6_RTHDR(r1, 0x29, 0x39, &(0x7f0000000f00)={0x0, 0x0, 0x2, 0x1}, 0x8)

393.317663ms ago: executing program 0 (id=4828):
r0 = syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f00000002c0)={[{@barrier}, {@nodioread_nolock}, {@noquota}, {@barrier}, {@auto_da_alloc}, {@nodioread_nolock}]}, 0x1, 0x59c, &(0x7f0000001840)="$eJzs3U9oHGUbAPBnZrNN/+T70g++Dz6lh6JChdJN0j9aPbVXsVDoQfCiYbMNJZtsySbahIDpvYg9iEov9aYHj4oHD+LFo1cvimeh2KDQ9KArm51N03S3bmI2W7O/H0z2fWdm93nfmX3e7AwzTAB962j9TxrxVERcTCKGNywbiGzh0cZ6qytLxfsrS8UkarVLvySRRMS9laVic/0kez0UEcsR8f+I+CYfcTxd/8h9zUJ1YXFqvFwuzWb1kbnpqyPVhcUTV6bHJ0uTpZlTL7505uzpM2MnxzY2935tYy2/tb7e+PHmuze+e+X2zU8/O7JcfH88iXMxlC3b2I+d1Ngm+Ti3af7pbgTroaTXDWBbclme11PpfzEcuSzrW6ltHBwGd6V5QBfVBiNq6zYUgT6QSHroU83fAfXj3+a0m78/7pxvHIDU466uLBXfiWb8gca5idi/dmxy8NfkoSOT+vHm4d1sKHvS8vWIGB0YePT7n2Tfv+0b3YkG0lVfn2/sqEf3f7o+/kSL8Weoee70b2qOf6vZ+LfaIn6uzfh3scMYv7/+00dt418fjKdbxk/W4yct4qcR8WaH8W+99uXZdstqH0cci9bxm5LHnx8euXylXBpt/G0Z46tjR15u3/+Ig23iN87Z7l9ryMb+78valHbY/y++/fyZ5cfEf/7Zx+//Vtv/QES812H8/9z75NV2y+5cT+7WfwVsdf8nkY/bHcZ/4dzRH7Kis4YAAAAAAAAAALCD0rVr2ZK0sF5O00KhcQ/vf+NgWq5U545frszPTDSueTsc+bR5pdVwo57U62PZ9bjN+slN9VO5LGDuwFq9UKyUJ3rcdwAAAAAAAAAAAAAAAAAAAHhSHNp0//9vubX7/zc/rhrYq9o/8hvY6+Q/9K+H8z/pWTuA3ef/P/StmvyH/iX/oX/Jf+hf8h/6l/yH/iX/oX/JfwAAAAAAAAAAAAAAAAAAAAAAAAAA6IqLFy7Up9r9laVivT4xsDA/VXnrxESpOlWYni8WipXZq4XJSmWyXCoUK9N/9XlJpXJ1NGbmr43MlapzI9WFxTemK/MzzWeKlvJd7xEAAAAAAAAAAAAAAAAAAAD88wytTUlaiMg36mlaKET8KyIOJ5FcvlIujUbEvyPi+1x+sF4f63WjAQAAAAAAAAAAAAAAAAAAYI+pLixOjZfLpdnuFQayUF0M0XlhYCsrR8Tyzjaj/olbflc+24A93nR7o5B7Mr6HT36hh4MSAAAAAAAAAAAAAAAAAAD0qQc3/Xb6jj+62yAAAAAAAAAAAAAAAAAAAADoS+nPSUTUp2PDzw1tXrovWc2tvUbE27cufXBtfG5udqw+/+76/LkPs/kne9F+oFPNPE0jop7HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwAPVhcWp8XK5NLvNwmAH6/S6jwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADb8WcAAAD//y4WzlE=")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x4042, 0xf8)
preadv(r1, &(0x7f0000000180)=[{0x0}, {&(0x7f0000000040)=""/95, 0x5f}], 0x2, 0x1, 0x80000000)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd3a, 0x0, 0x0, 0x0, 0x100}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000080)='kfree\x00', r3}, 0x18)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000c0, &(0x7f0000000480)={[{@barrier}, {@nodioread_nolock}, {@noquota}, {@barrier}, {@auto_da_alloc}, {@noquota}]}, 0x1, 0x5ae, &(0x7f0000000c00)="$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")
ioctl$SNDRV_TIMER_IOCTL_CREATE(r1, 0xc02054a5, &(0x7f0000000100)={0xffffffff80000001, r0, 'id0\x00'})
accept4$unix(r1, &(0x7f00000001c0)=@abs, &(0x7f0000000240)=0x6e, 0x80000)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r4}, 0x18)
socket$inet(0x10, 0x3, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="495327bd7000000000006700000018001d8004000080040000800c000200ffffffff00000000ca82cdd15799708bb7b50605542d12aaa522abfabbc719c63e672e910b68089c5d88ce25e30ccd6e6db33933c5dc0cb5dcb670441a249baa79f8bc9695b8e26f395bb3c0414b966220ed6c5900ba3bf7f66addf6c550abb2e27bffc951"], 0x38}}, 0x6048004)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x20900, 0x0)
bind$tipc(0xffffffffffffffff, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
r7 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r7, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000040340000000000000800000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000357500007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0xa, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x18)
add_key(&(0x7f0000000440)='big_key\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd)
r9 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="3800000003140100c68f7bec9aff06860900020073796232000000000800410073697700140033006272696467653000"], 0x38}, 0x1, 0x0, 0x0, 0x44805}, 0x50)
syz_usbip_server_init(0x6)

350.203934ms ago: executing program 9 (id=4829):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000009c0000000b"], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f00000008c0)="d800000018007b29e00212ba0d8105040a601800fe0f040b067c55a1bc000900b80006990600000015000500fe800000000000000300014002000c0901ac04000bd67f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b11602b2a10c11ce1b14d6d930dfe1d9d322fe04fb95cae8c9010000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad8ffd5e1cace81ccd40dd601edef3d93452a92307ff0ff0e97031e9f05e9f16e9cb500"/216, 0xd8}], 0x1, 0x0, 0x0, 0x2663}, 0x0)

284.813988ms ago: executing program 8 (id=4830):
socket$packet(0x11, 0x2, 0x300)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x34, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="300000001c00070c002000000000000002000000", @ANYRES32=0x0, @ANYBLOB="080010001400010000000000000000000000000020000001"], 0x30}}, 0x20024090)
setsockopt$inet_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000000c0), 0x3)
sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0x4000881}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r2, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r4 = syz_open_dev$vcsa(0x0, 0x8, 0x280440)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f00000001c0)={'batadv_slave_1\x00'})
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[], 0x50)
bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
ioctl$TCSETS(r5, 0x40045431, 0x0)
dup3(0xffffffffffffffff, r5, 0x0)
r6 = syz_io_uring_setup(0x88e, &(0x7f0000000140)={0x0, 0x3cfa, 0x0, 0x2, 0x1b9}, &(0x7f0000000000)=<r7=>0x0, &(0x7f0000000280)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r6, 0x47f6, 0x0, 0x2, 0x0, 0x0)

255.447268ms ago: executing program 1 (id=4831):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32=r0], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r1, 0x0, 0x3}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x120c042, &(0x7f0000000840)={[{@nodiscard}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x6}}, {@resuid}, {@debug}, {@minixdf}, {}, {@nomblk_io_submit}, {@noauto_da_alloc}], [{@seclabel}]}, 0x1, 0x5e7, &(0x7f0000001400)="$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")
lchown(&(0x7f0000000240)='./file0\x00', 0x0, 0xee01)

232.689799ms ago: executing program 8 (id=4832):
r0 = syz_io_uring_setup(0x5c3, &(0x7f0000000140)={0x0, 0x2, 0x1000, 0x2}, &(0x7f0000000240)=<r1=>0x0, &(0x7f0000000380)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x38, 0x3, r0, 0x0, 0x0, 0x0, 0x1, 0x1, {0x2}})
io_uring_enter(r0, 0x6e2, 0x600, 0x1, 0x0, 0x0)

99.801165ms ago: executing program 8 (id=4833):
socket(0x10, 0x803, 0x4)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(0x0, r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)=ANY=[@ANYRES32, @ANYBLOB="010000000000000000000100000004000480080002000100000008000100000000000400088010000c800c000bcc54c9024db1c8"], 0x3c}}, 0x20000810)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4008854}, 0x4010)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040000}, 0x0)
write$cgroup_type(0xffffffffffffffff, &(0x7f0000000280), 0x9)
r2 = openat$cgroup_procs(r1, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f0000000c40), 0x12)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = syz_clone(0x1022000, 0x0, 0xfffffffffffffc76, 0x0, 0x0, 0x0)
r5 = openat$cgroup_ro(r3, &(0x7f00000003c0)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r5, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_procs(r6, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r7, &(0x7f0000000080)=r4, 0x12)

73.478106ms ago: executing program 1 (id=4834):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000540)='./file0\x00', 0x1204018, &(0x7f0000000240)=ANY=[@ANYBLOB="6f76657272696465726f636b7065726d2c6e6f636f6d70726573732c686964652c73657373696f6e3d3078303030303030303030303030303032312c756e686964652c696f636861727365743d63703433372c6f76657272696465726f636b7065726d2c626c6f636b3d3078303030303030303030303030303430302c005fb50aab29cf1d32d24be5ab2a6506aa524c8f1cd5781842ee1c86bee627767fee958f25bb6db8e631262ed8a59d337d730b6698271aeb8c31c1902a7e236e5dd878e6c1352c0c799d8e80d7346f8d2870acebe617c694bbb925d3ab4fb01784c564c03d88c81d2f84f58e8c6ba18548f09fa6"], 0x11, 0x56f, &(0x7f0000000b00)="$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")

15.517969ms ago: executing program 8 (id=4835):
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x1000, 0xc}, 0x0, 0x40000010000, 0xffffffff, 0x6, 0x1, 0x20005, 0xb, 0x0, 0x3a08, 0x0, 0x20000006}, 0x0, 0xe, 0xffffffffffffffff, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="b40000000000000061104c0000000000050000000000000030"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000c00), 0x2, 0x0)
setsockopt$SO_J1939_PROMISC(0xffffffffffffffff, 0x6b, 0x2, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0x8, &(0x7f0000000080)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r2}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x22, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x18)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000740)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb010018000000000000001800000018000000050000000100000001000013040000000200000088060000ff0f0000002e2e"], 0x0, 0x35, 0x0, 0x1}, 0x28)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000040)=ANY=[], &(0x7f00000000c0)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, 0x0, r4, 0x8, 0x0, 0x0, 0x10, &(0x7f00000002c0)={0x0, 0xd, 0x4, 0x3}, 0x10, 0x0, 0x0, 0xffffff9a, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0xd4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00'}, 0x10)
unshare(0x22020600)
r6 = syz_open_procfs(0x0, &(0x7f0000000240)='net/dev_snmp6\x00')
lseek(r6, 0xfffd, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_DEL(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000007c0)=ANY=[@ANYBLOB="14000000", @ANYRES32=r6, @ANYBLOB="01000000000026ab9ce33a591891"], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x8000)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000bc0)={r1, 0x0, 0x25, 0x9, @val=@perf_event={0x3}}, 0x18)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f000000a780), 0xffffffffffffffff)
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r9=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x70bd27, 0x0, {0x0, 0x0, 0x0, r9}}, 0x24}, 0x1, 0x0, 0x0, 0x4000091}, 0x8040)
sendmsg$ETHTOOL_MSG_STRSET_GET(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYRES8=0x0, @ANYRES32=r0, @ANYRES16=r5, @ANYRESHEX=r5, @ANYBLOB="2a05a463414390cc2912e05ad9764800f2bdbf16e76fe2e569abbeb1d1134ce181109a08e4496a7c2f94ceea8c6a03dab43cc1e86b0fe216c2d3592c1c9642c1fca3", @ANYRES32=r2], 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x80)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'vxcan1\x00'})
socket$nl_route(0x10, 0x3, 0x0)
r10 = socket$can_raw(0x1d, 0x3, 0x1)
syz_emit_ethernet(0x36, &(0x7f0000000400)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa1008004500e426a8aca1d266cbead300000000069078000000000000000000004e22000000000000000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYRES8=r7], 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r10, 0x8933, &(0x7f0000000180)={'vxcan1\x00', <r11=>0x0})
bind$can_raw(r10, &(0x7f0000000000)={0x1d, r11}, 0x10)

0s ago: executing program 9 (id=4836):
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000040), 0x8002)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x7, &(0x7f0000000880)=ANY=[@ANYBLOB="1800000001000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000000000008500000086000000"], &(0x7f00000006c0)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b00)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000400)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
write$binfmt_aout(r0, &(0x7f0000000380)=ANY=[@ANYBLOB="0307"], 0xc8)

kernel console output (not intermixed with test programs):

d allmulticast mode
[  350.298159][T15260] ext4 filesystem being mounted at /125/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  350.387956][T15267] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(17)
[  350.394584][T15267] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  350.403573][T15267] vhci_hcd vhci_hcd.0: Device attached
[  350.412988][T15270] loop8: detected capacity change from 0 to 256
[  350.419758][T15270] msdos: Unknown parameter 'ÿÿÿÿ'
[  350.457715][T15260] netlink: 'syz.0.4084': attribute type 29 has an invalid length.
[  350.465650][T15260] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4084'.
[  350.488081][T15270] wg1 speed is unknown, defaulting to 1000
[  350.494877][T15270] lo speed is unknown, defaulting to 1000
[  350.770019][   T23] usb 2-1: SetAddress Request (6) to port 0
[  350.784945][   T23] usb 2-1: new SuperSpeed USB device number 6 using vhci_hcd
[  350.857873][T15268] vhci_hcd: connection reset by peer
[  350.863914][ T5880] vhci_hcd: stop threads
[  350.868167][ T5880] vhci_hcd: release socket
[  350.872603][ T5880] vhci_hcd: disconnect device
[  351.048071][T15275] siw: device registration error -23
[  351.711097][T15279] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4087'.
[  351.745005][T15281] syzkaller0: entered promiscuous mode
[  351.751281][T15281] syzkaller0: entered allmulticast mode
[  351.934189][T13511] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  352.274083][   T29] kauditd_printk_skb: 51 callbacks suppressed
[  352.274098][   T29] audit: type=1326 audit(1764638566.562:11256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15288 comm="syz.1.4092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  352.373598][T15289] loop1: detected capacity change from 0 to 1024
[  352.424278][T15289] EXT4-fs: Ignoring removed nomblk_io_submit option
[  352.452002][T15293] loop0: detected capacity change from 0 to 164
[  352.459986][   T29] audit: type=1326 audit(1764638566.592:11257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15288 comm="syz.1.4092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  352.483618][   T29] audit: type=1326 audit(1764638566.622:11258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15288 comm="syz.1.4092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  352.507265][   T29] audit: type=1326 audit(1764638566.622:11259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15288 comm="syz.1.4092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff7fc15f783 code=0x7ffc0000
[  352.519038][T15293] ISOFS: unable to read i-node block
[  352.530741][   T29] audit: type=1326 audit(1764638566.632:11260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15288 comm="syz.1.4092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7ff7fc15e1ff code=0x7ffc0000
[  352.530771][   T29] audit: type=1326 audit(1764638566.652:11261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15288 comm="syz.1.4092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7ff7fc15f7d7 code=0x7ffc0000
[  352.530811][   T29] audit: type=1326 audit(1764638566.662:11262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15288 comm="syz.1.4092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff7fc15df90 code=0x7ffc0000
[  352.530857][   T29] audit: type=1326 audit(1764638566.662:11263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15288 comm="syz.1.4092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff7fc15f34b code=0x7ffc0000
[  352.530885][   T29] audit: type=1326 audit(1764638566.712:11264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15288 comm="syz.1.4092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7ff7fc15e3aa code=0x7ffc0000
[  352.530912][   T29] audit: type=1326 audit(1764638566.712:11265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15288 comm="syz.1.4092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7ff7fc15e3aa code=0x7ffc0000
[  352.594334][T15289] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  352.635721][T15293] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  352.655120][T15289] System zones: 0-1, 3-36
[  352.702123][T15289] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  352.779282][T15299] loop3: detected capacity change from 0 to 4096
[  352.789592][T15299] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  352.805271][T13482] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  352.831338][T15299] xt_connbytes: Forcing CT accounting to be enabled
[  352.838285][T15299] Cannot find set identified by id 0 to match
[  352.853399][T15309] loop9: detected capacity change from 0 to 1024
[  352.913150][T15309] EXT4-fs (loop9): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  352.932189][T13507] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  352.934234][T15309] ext4 filesystem being mounted at /136/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  352.953321][T15320] loop1: detected capacity change from 0 to 256
[  352.997743][T15320] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  353.014156][T15309] EXT4-fs error (device loop9): ext4_map_blocks:813: inode #15: comm syz.9.4099: lblock 0 mapped to illegal pblock 0 (length 5)
[  353.030444][T15322] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4103'.
[  353.051252][T15309] EXT4-fs error (device loop9): ext4_ext_remove_space:2955: inode #15: comm syz.9.4099: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  353.075827][T15320] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  353.178363][T13479] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  353.187683][T15328] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  353.196270][T15328] FAT-fs (loop1): Filesystem has been set read-only
[  353.208590][T15330] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4104'.
[  353.380515][T15335] tipc: New replicast peer: 255.255.255.255
[  353.386635][T15335] tipc: Enabled bearer <udp:syz2>, priority 10
[  353.410042][T15335] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4107'.
[  353.419098][T15335] tipc: Disabling bearer <udp:syz2>
[  353.632957][T15344] syzkaller0: entered promiscuous mode
[  353.638481][T15344] syzkaller0: entered allmulticast mode
[  353.787209][T15351] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4114'.
[  353.957668][T15361] loop8: detected capacity change from 0 to 4096
[  353.991931][T15361] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  354.085673][T15364] loop0: detected capacity change from 0 to 256
[  354.103600][T13319] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  354.141989][T15367] loop3: detected capacity change from 0 to 2048
[  354.170214][T15367]  loop3: p1 < > p4
[  354.199886][T15367] loop3: p4 size 8388608 extends beyond EOD, truncated
[  354.286724][T15377] syzkaller0: entered promiscuous mode
[  354.292273][T15377] syzkaller0: entered allmulticast mode
[  354.307019][T15364] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  354.351746][T15364] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  354.360338][T15364] FAT-fs (loop0): Filesystem has been set read-only
[  354.436437][T15379] loop8: detected capacity change from 0 to 256
[  354.467758][T15379] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  354.495941][T15379] FAT-fs (loop8): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  354.504542][T15379] FAT-fs (loop8): Filesystem has been set read-only
[  354.561280][T15384] loop0: detected capacity change from 0 to 256
[  354.615655][T15384] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  354.690959][T15384] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  354.700183][T15384] FAT-fs (loop0): Filesystem has been set read-only
[  354.776891][T15396] loop8: detected capacity change from 0 to 256
[  354.787019][T15394] loop1: detected capacity change from 0 to 1024
[  354.796966][T15397] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4130'.
[  354.806861][T15394] EXT4-fs: Ignoring removed nomblk_io_submit option
[  354.819778][T15396] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  354.833562][T15394] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  354.841747][T15394] System zones: 0-1, 3-36
[  354.873689][T15396] FAT-fs (loop8): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  354.882301][T15396] FAT-fs (loop8): Filesystem has been set read-only
[  355.006511][T15407] loop1: detected capacity change from 0 to 4096
[  355.065257][T15417] loop9: detected capacity change from 0 to 256
[  355.084176][T15418] loop1: detected capacity change from 0 to 256
[  355.091506][T15418] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  355.110859][T15417] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  355.127200][T15418] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  355.135910][T15418] FAT-fs (loop1): Filesystem has been set read-only
[  355.231706][T15417] FAT-fs (loop9): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  355.240333][T15417] FAT-fs (loop9): Filesystem has been set read-only
[  355.425065][T15433] loop8: detected capacity change from 0 to 256
[  355.442891][T15433] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  355.505943][T15433] FAT-fs (loop8): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  355.514587][T15433] FAT-fs (loop8): Filesystem has been set read-only
[  355.674050][T15441] loop3: detected capacity change from 0 to 256
[  355.688496][T15441] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  355.719820][T15441] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  355.751226][T15441] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  355.756103][T15445] loop8: detected capacity change from 0 to 1024
[  355.759833][T15441] FAT-fs (loop3): Filesystem has been set read-only
[  355.784209][T15445] ext4 filesystem being mounted at /135/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  355.812357][T15445] EXT4-fs error (device loop8): ext4_map_blocks:813: inode #15: comm syz.8.4151: lblock 0 mapped to illegal pblock 0 (length 5)
[  355.858651][T15455] loop0: detected capacity change from 0 to 256
[  355.866190][T15455] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  355.879616][T15455] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  355.888151][T15455] FAT-fs (loop0): Filesystem has been set read-only
[  355.895112][T15445] EXT4-fs error (device loop8): ext4_ext_remove_space:2955: inode #15: comm syz.8.4151: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  355.915331][   T23] usb 2-1: device descriptor read/8, error -110
[  356.006567][T15464] loop8: detected capacity change from 0 to 4096
[  356.037833][T15469] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4159'.
[  356.047656][   T23] usb 2-1: new SuperSpeed USB device number 6 using vhci_hcd
[  356.073313][T15470] wg1 speed is unknown, defaulting to 1000
[  356.080842][T15470] lo speed is unknown, defaulting to 1000
[  356.168647][   T23] usb 2-1: enqueue for inactive port 0
[  356.174504][   T23] usb 2-1: enqueue for inactive port 0
[  356.180325][   T23] usb 2-1: enqueue for inactive port 0
[  356.478452][T15486] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4164'.
[  356.570013][T15503] loop8: detected capacity change from 0 to 1024
[  356.591582][T15503] ext4 filesystem being mounted at /141/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  356.622656][T15503] EXT4-fs error (device loop8): ext4_map_blocks:813: inode #15: comm syz.8.4169: lblock 0 mapped to illegal pblock 0 (length 5)
[  356.636968][T15503] EXT4-fs error (device loop8): ext4_ext_remove_space:2955: inode #15: comm syz.8.4169: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  356.863887][T15516] netlink: 16 bytes leftover after parsing attributes in process `syz.8.4170'.
[  356.895233][T15512] loop9: detected capacity change from 0 to 4096
[  356.944069][T15512] Cannot find set identified by id 0 to match
[  356.960800][T15516] wg1 speed is unknown, defaulting to 1000
[  356.991099][T15516] lo speed is unknown, defaulting to 1000
[  357.138580][T15531] loop3: detected capacity change from 0 to 4096
[  357.152368][T15531] Cannot find set identified by id 0 to match
[  357.218934][T15537] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4177'.
[  357.469572][   T23] usb usb2-port1: attempt power cycle
[  357.515663][T15560] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4183'.
[  357.569785][   T29] kauditd_printk_skb: 209 callbacks suppressed
[  357.569800][   T29] audit: type=1326 audit(1764638571.862:11475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15563 comm="syz.0.4186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8958f749 code=0x7ffc0000
[  357.635387][   T29] audit: type=1326 audit(1764638571.892:11476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15563 comm="syz.0.4186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5f8958f749 code=0x7ffc0000
[  357.659011][   T29] audit: type=1326 audit(1764638571.892:11477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15563 comm="syz.0.4186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8958f749 code=0x7ffc0000
[  357.683418][   T29] audit: type=1326 audit(1764638571.892:11478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15563 comm="syz.0.4186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7f5f8958f749 code=0x7ffc0000
[  357.706945][   T29] audit: type=1326 audit(1764638571.892:11479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15563 comm="syz.0.4186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8958f749 code=0x7ffc0000
[  357.912821][T15569] loop0: detected capacity change from 0 to 164
[  357.930575][T15570] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4188'.
[  358.010849][T15572] loop3: detected capacity change from 0 to 256
[  358.063237][T15569] ISOFS: unable to read i-node block
[  358.068753][T15569] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  358.078198][T15572] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  358.123019][T15572] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  358.132264][T15572] FAT-fs (loop3): Filesystem has been set read-only
[  358.315659][   T29] audit: type=1326 audit(1764638572.602:11480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15581 comm="syz.1.4193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  358.415653][   T29] audit: type=1326 audit(1764638572.632:11481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15581 comm="syz.1.4193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  358.439341][   T29] audit: type=1326 audit(1764638572.632:11482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15581 comm="syz.1.4193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  358.462981][   T29] audit: type=1326 audit(1764638572.632:11483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15581 comm="syz.1.4193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  358.486588][   T29] audit: type=1326 audit(1764638572.632:11484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15581 comm="syz.1.4193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  358.674567][T15608] loop9: detected capacity change from 0 to 1024
[  358.681908][T15608] EXT4-fs: Ignoring removed nomblk_io_submit option
[  358.697031][T15608] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  358.705278][T15608] System zones: 0-1, 3-36
[  358.715081][T15612] loop1: detected capacity change from 0 to 4096
[  358.798701][T15609] loop8: detected capacity change from 0 to 4096
[  358.852192][T15622] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4205'.
[  358.862118][T15623] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4204'.
[  358.904046][T15625] loop8: detected capacity change from 0 to 1024
[  358.915727][T15622] team0 (unregistering): Port device team_slave_0 removed
[  358.942985][T15625] ext4 filesystem being mounted at /147/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  358.955012][T15622] team0 (unregistering): Port device team_slave_1 removed
[  358.963248][T15625] EXT4-fs error (device loop8): ext4_map_blocks:813: inode #15: comm syz.8.4206: lblock 0 mapped to illegal pblock 0 (length 5)
[  358.999141][T15625] EXT4-fs error (device loop8): ext4_ext_remove_space:2955: inode #15: comm syz.8.4206: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  359.074636][T15641] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  359.112155][T15641] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  359.379527][   T23] usb usb2-port1: unable to enumerate USB device
[  359.388205][T15653] loop8: detected capacity change from 0 to 256
[  359.398252][T15653] msdos: Unknown parameter 'ÿÿÿÿ'
[  359.449773][T15653] wg1 speed is unknown, defaulting to 1000
[  359.470612][T15653] lo speed is unknown, defaulting to 1000
[  359.911595][T15674] loop1: detected capacity change from 0 to 1024
[  359.918684][T15674] EXT4-fs: Ignoring removed nomblk_io_submit option
[  359.957009][T15674] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  359.965372][T15674] System zones: 0-1, 3-36
[  360.015954][T15680] tipc: New replicast peer: 255.255.255.255
[  360.022173][T15680] tipc: Enabled bearer <udp:syz2>, priority 10
[  360.054023][T15680] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4218'.
[  360.063046][T15680] tipc: Disabling bearer <udp:syz2>
[  360.085872][T15684] loop0: detected capacity change from 0 to 2048
[  360.139977][T15684]  loop0: p1 < > p4
[  360.243235][T15684] loop0: p4 size 8388608 extends beyond EOD, truncated
[  361.021976][T15711] loop0: detected capacity change from 0 to 4096
[  361.108205][T15711] EXT4-fs mount: 24 callbacks suppressed
[  361.108218][T15711] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  361.146212][T13511] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  361.544059][T15725] loop1: detected capacity change from 0 to 2048
[  361.560611][T15722] wg1 speed is unknown, defaulting to 1000
[  361.566929][T15722] lo speed is unknown, defaulting to 1000
[  361.715949][T15725]  loop1: p1 < > p4
[  361.722446][T15725] loop1: p4 size 8388608 extends beyond EOD, truncated
[  361.735113][T15727] siw: device registration error -23
[  361.743790][T15727] loop3: detected capacity change from 0 to 512
[  362.132206][T15745] loop1: detected capacity change from 0 to 164
[  362.139467][T15745] ISOFS: unable to read i-node block
[  362.144782][T15745] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  362.211236][T15755] loop1: detected capacity change from 0 to 1024
[  362.218339][T15755] EXT4-fs: Ignoring removed nomblk_io_submit option
[  362.226205][T15755] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  362.234956][T15755] System zones: 0-1, 3-36
[  362.249439][T15755] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  362.278917][T13482] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.296018][T15758] loop0: detected capacity change from 0 to 1024
[  362.303176][T15758] EXT4-fs: Ignoring removed nomblk_io_submit option
[  362.311290][T15758] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  362.318512][T15761] loop1: detected capacity change from 0 to 1024
[  362.320549][T15758] System zones: 0-1, 3-36
[  362.334109][T15758] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  362.347797][T15761] EXT4-fs: Ignoring removed nomblk_io_submit option
[  362.364824][T15763] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4248'.
[  362.375286][T13511] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.385435][T15761] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  362.394237][T15761] System zones: 0-1, 3-36
[  362.425376][T15761] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  362.439555][T15763] wg1 speed is unknown, defaulting to 1000
[  362.455590][T15763] lo speed is unknown, defaulting to 1000
[  362.483784][T13482] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.511534][T15775] loop1: detected capacity change from 0 to 256
[  362.525668][T15775] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  362.539041][T15775] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  362.547679][T15775] FAT-fs (loop1): Filesystem has been set read-only
[  362.709223][T15779] loop1: detected capacity change from 0 to 4096
[  362.717814][T15779] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  362.743602][T13482] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.857473][T15789] FAULT_INJECTION: forcing a failure.
[  362.857473][T15789] name failslab, interval 1, probability 0, space 0, times 0
[  362.870734][T15789] CPU: 1 UID: 0 PID: 15789 Comm: syz.1.4257 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  362.870831][T15789] Tainted: [W]=WARN
[  362.870837][T15789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  362.870848][T15789] Call Trace:
[  362.870855][T15789]  <TASK>
[  362.870862][T15789]  __dump_stack+0x1d/0x30
[  362.870885][T15789]  dump_stack_lvl+0xe8/0x140
[  362.870904][T15789]  dump_stack+0x15/0x1b
[  362.870970][T15789]  should_fail_ex+0x265/0x280
[  362.870989][T15789]  should_failslab+0x8c/0xb0
[  362.871015][T15789]  __kmalloc_noprof+0xa5/0x570
[  362.871060][T15789]  ? ip_options_get+0x52/0x350
[  362.871161][T15789]  ip_options_get+0x52/0x350
[  362.871185][T15789]  ? tcp_release_cb+0xf1/0x370
[  362.871252][T15789]  do_ip_setsockopt+0x19d4/0x2240
[  362.871283][T15789]  ip_setsockopt+0x58/0x110
[  362.871301][T15789]  tcp_setsockopt+0x98/0xb0
[  362.871340][T15789]  sock_common_setsockopt+0x69/0x80
[  362.871365][T15789]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  362.871393][T15789]  __sys_setsockopt+0x184/0x200
[  362.871412][T15789]  __x64_sys_setsockopt+0x64/0x80
[  362.871455][T15789]  x64_sys_call+0x21d5/0x3000
[  362.871546][T15789]  do_syscall_64+0xd2/0x200
[  362.871570][T15789]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  362.871657][T15789]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  362.871681][T15789]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.871702][T15789] RIP: 0033:0x7ff7fc15f749
[  362.871716][T15789] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  362.871753][T15789] RSP: 002b:00007ff7fabbf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  362.871773][T15789] RAX: ffffffffffffffda RBX: 00007ff7fc3b5fa0 RCX: 00007ff7fc15f749
[  362.871795][T15789] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000005
[  362.871808][T15789] RBP: 00007ff7fabbf090 R08: 0000000000000000 R09: 0000000000000000
[  362.871822][T15789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  362.871833][T15789] R13: 00007ff7fc3b6038 R14: 00007ff7fc3b5fa0 R15: 00007ffd77652548
[  362.871851][T15789]  </TASK>
[  362.879016][   T29] kauditd_printk_skb: 212 callbacks suppressed
[  362.879032][   T29] audit: type=1326 audit(1764638577.162:11697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15790 comm="syz.9.4258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  363.120705][   T29] audit: type=1326 audit(1764638577.202:11698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15790 comm="syz.9.4258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  363.144322][   T29] audit: type=1326 audit(1764638577.212:11699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15790 comm="syz.9.4258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  363.168022][   T29] audit: type=1326 audit(1764638577.212:11700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15790 comm="syz.9.4258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  363.191711][   T29] audit: type=1326 audit(1764638577.382:11701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15793 comm="syz.1.4260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  363.215286][   T29] audit: type=1326 audit(1764638577.382:11702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15793 comm="syz.1.4260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  363.238961][   T29] audit: type=1326 audit(1764638577.382:11703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15793 comm="syz.1.4260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  363.262543][   T29] audit: type=1326 audit(1764638577.382:11704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15793 comm="syz.1.4260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  363.286102][   T29] audit: type=1326 audit(1764638577.382:11705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15793 comm="syz.1.4260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  363.309664][   T29] audit: type=1326 audit(1764638577.382:11706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15793 comm="syz.1.4260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  363.415092][T15800] loop3: detected capacity change from 0 to 1024
[  363.534483][T15800] EXT4-fs: Ignoring removed nomblk_io_submit option
[  363.543173][T15804] siw: device registration error -23
[  363.555117][T15804] loop9: detected capacity change from 0 to 512
[  363.624604][T15800] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  363.636986][T15808] loop1: detected capacity change from 0 to 256
[  363.657539][T15808] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  363.731215][T15800] System zones: 0-1, 3-36
[  363.735832][T15807] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  363.744428][T15807] FAT-fs (loop1): Filesystem has been set read-only
[  363.794012][T15800] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  363.884331][T13507] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  363.926756][T15815] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  363.969846][T15817] loop1: detected capacity change from 0 to 1024
[  363.981673][T15818] netlink: 24 bytes leftover after parsing attributes in process `syz.8.4266'.
[  363.991554][T15817] EXT4-fs: Ignoring removed nomblk_io_submit option
[  363.999042][T15815] syzkaller0: entered promiscuous mode
[  364.004648][T15815] syzkaller0: entered allmulticast mode
[  364.012328][T15817] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  364.021325][T15817] System zones: 0-1, 3-36
[  364.026712][T15817] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  364.069343][T15824] tipc: Resetting bearer <eth:syzkaller0>
[  364.095706][T15814] tipc: Resetting bearer <eth:syzkaller0>
[  364.126253][T13482] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  364.141594][T15814] tipc: Disabling bearer <eth:syzkaller0>
[  364.171557][T15828] SELinux: failed to load policy
[  364.199169][T15830] loop1: detected capacity change from 0 to 164
[  364.224449][T15830] ISOFS: unable to read i-node block
[  364.229976][T15830] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  364.284173][T15843] loop1: detected capacity change from 0 to 256
[  364.290963][ T3395] usb usb2-port1: attempt power cycle
[  364.297820][T15843] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  364.314202][T15843] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  364.322821][T15843] FAT-fs (loop1): Filesystem has been set read-only
[  364.334838][T15840] loop9: detected capacity change from 0 to 1024
[  364.345377][T15842] IPv6: Can't replace route, no match found
[  364.367888][T15847] IPv6: Can't replace route, no match found
[  364.410769][T15840] EXT4-fs (loop9): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  364.424992][T15840] ext4 filesystem being mounted at /173/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  364.440710][T15840] EXT4-fs error (device loop9): ext4_map_blocks:813: inode #15: comm syz.9.4277: lblock 0 mapped to illegal pblock 0 (length 5)
[  364.470656][T15840] EXT4-fs error (device loop9): ext4_ext_remove_space:2955: inode #15: comm syz.9.4277: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  364.500753][T13479] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  364.565010][T15854] loop1: detected capacity change from 0 to 4096
[  364.573656][T15854] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  364.597439][T13482] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  364.648985][T15862] loop9: detected capacity change from 0 to 1024
[  364.658796][T15862] EXT4-fs: Ignoring removed nomblk_io_submit option
[  364.670368][T15862] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  364.678654][T15862] System zones: 0-1, 3-36
[  364.684338][T15862] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  364.810030][T13479] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  364.843884][T15867] siw: device registration error -23
[  365.018698][T15876] IPv6: Can't replace route, no match found
[  365.135309][T15880] loop1: detected capacity change from 0 to 2048
[  365.183599][T15884] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  365.190665][T15884] syzkaller0: entered promiscuous mode
[  365.196200][T15884] syzkaller0: entered allmulticast mode
[  365.202996][T15880] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  365.222649][ T3421] IPVS: starting estimator thread 0...
[  365.230337][T15884] tipc: Resetting bearer <eth:syzkaller0>
[  365.236636][T15880] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  365.236783][T15883] tipc: Resetting bearer <eth:syzkaller0>
[  365.252404][T15883] tipc: Disabling bearer <eth:syzkaller0>
[  365.266903][T13482] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  365.309755][T15887] IPVS: using max 2784 ests per chain, 139200 per kthread
[  365.392879][T15911] syzkaller0: entered promiscuous mode
[  365.398434][T15911] syzkaller0: entered allmulticast mode
[  365.570369][T15919] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4301'.
[  365.584965][T15920] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4300'.
[  365.614871][T15922] IPv6: Can't replace route, no match found
[  365.757100][T15929] netlink: 24 bytes leftover after parsing attributes in process `syz.9.4304'.
[  366.120460][ T3395] usb usb2-port1: unable to enumerate USB device
[  366.364044][T15931] wg1 speed is unknown, defaulting to 1000
[  366.370749][T15931] lo speed is unknown, defaulting to 1000
[  366.396960][T15937] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  366.418818][T15942] loop3: detected capacity change from 0 to 164
[  366.435953][T15937] syzkaller0: entered promiscuous mode
[  366.441485][T15937] syzkaller0: entered allmulticast mode
[  366.450531][T15937] tipc: Resetting bearer <eth:syzkaller0>
[  366.457201][T15932] tipc: Resetting bearer <eth:syzkaller0>
[  366.467688][T15942] ISOFS: unable to read i-node block
[  366.473968][T15942] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  366.484014][T15932] tipc: Disabling bearer <eth:syzkaller0>
[  366.552856][T15952] loop1: detected capacity change from 0 to 1024
[  366.570757][T15953] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4312'.
[  366.596153][T15953] wg1 speed is unknown, defaulting to 1000
[  366.622917][T15958] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4315'.
[  366.648770][T15952] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  366.661487][T15953] lo speed is unknown, defaulting to 1000
[  366.669515][T15952] ext4 filesystem being mounted at /183/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  366.691597][T15952] netlink: 'syz.1.4313': attribute type 29 has an invalid length.
[  366.699508][T15952] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4313'.
[  366.729587][T15955] loop8: detected capacity change from 0 to 4096
[  366.736497][T15952] siw: device registration error -23
[  366.743602][T15961] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set
[  366.761551][T15955] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  366.768314][T15952] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(17)
[  366.780715][T15952] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  366.788889][T15952] vhci_hcd vhci_hcd.0: Device attached
[  366.816191][T15965] vhci_hcd: connection closed
[  366.816432][ T5900] vhci_hcd: stop threads
[  366.820820][T15958] wg1 speed is unknown, defaulting to 1000
[  366.821272][ T5900] vhci_hcd: release socket
[  366.835749][ T5900] vhci_hcd: disconnect device
[  366.845888][T15958] lo speed is unknown, defaulting to 1000
[  366.877994][T13319] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  367.339473][T13482] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  367.384206][T15988] loop8: detected capacity change from 0 to 1024
[  367.409886][T15988] EXT4-fs: Ignoring removed nomblk_io_submit option
[  367.421489][T15988] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  367.450679][T15992] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4321'.
[  367.561785][T15988] System zones: 0-1, 3-36
[  367.579388][T15988] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  367.595097][T15994] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  367.615870][T15994] syzkaller0: entered promiscuous mode
[  367.615887][T15994] syzkaller0: entered allmulticast mode
[  367.630621][T13319] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  367.631325][T15994] tipc: Resetting bearer <eth:syzkaller0>
[  367.634274][T15993] tipc: Resetting bearer <eth:syzkaller0>
[  367.643694][T15993] tipc: Disabling bearer <eth:syzkaller0>
[  367.674523][T16001] IPv6: Can't replace route, no match found
[  367.731458][T16003] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4327'.
[  367.786222][T16007] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4329'.
[  367.806396][T16003] wg1 speed is unknown, defaulting to 1000
[  367.907352][T16015] loop9: detected capacity change from 0 to 1024
[  368.052989][T16003] lo speed is unknown, defaulting to 1000
[  368.111996][T16015] EXT4-fs (loop9): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  368.209349][T16015] ext4 filesystem being mounted at /187/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  368.238086][T16018] siw: device registration error -23
[  368.325693][T16015] netlink: 'syz.9.4332': attribute type 29 has an invalid length.
[  368.333575][T16015] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4332'.
[  368.347892][   T29] kauditd_printk_skb: 225 callbacks suppressed
[  368.347908][   T29] audit: type=1326 audit(1764638582.642:11932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16024 comm="syz.1.4333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  368.382023][T16015] siw: device registration error -23
[  368.397855][T16015] vhci_hcd vhci_hcd.0: pdev(9) rhport(0) sockfd(17)
[  368.404483][T16015] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  368.413276][T16015] vhci_hcd vhci_hcd.0: Device attached
[  368.417956][   T29] audit: type=1326 audit(1764638582.682:11933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16024 comm="syz.1.4333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  368.442425][   T29] audit: type=1326 audit(1764638582.682:11934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16024 comm="syz.1.4333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  368.466010][   T29] audit: type=1326 audit(1764638582.682:11935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16024 comm="syz.1.4333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  368.491787][T16025] loop1: detected capacity change from 0 to 256
[  368.506545][T16027] vhci_hcd: connection closed
[  368.507869][ T1604] vhci_hcd: stop threads
[  368.517082][ T1604] vhci_hcd: release socket
[  368.517167][   T29] audit: type=1326 audit(1764638582.782:11936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16024 comm="syz.1.4333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  368.521628][ T1604] vhci_hcd: disconnect device
[  368.545041][   T29] audit: type=1326 audit(1764638582.782:11937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16024 comm="syz.1.4333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff7fc15f783 code=0x7ffc0000
[  368.573249][   T29] audit: type=1326 audit(1764638582.782:11938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16024 comm="syz.1.4333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7ff7fc15e1ff code=0x7ffc0000
[  368.576963][T16030] loop3: detected capacity change from 0 to 164
[  368.596713][   T29] audit: type=1326 audit(1764638582.782:11939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16024 comm="syz.1.4333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7ff7fc15f7d7 code=0x7ffc0000
[  368.596777][   T29] audit: type=1326 audit(1764638582.782:11940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16024 comm="syz.1.4333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff7fc15df90 code=0x7ffc0000
[  368.596806][   T29] audit: type=1326 audit(1764638582.782:11941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16024 comm="syz.1.4333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff7fc15f34b code=0x7ffc0000
[  368.686073][T16025] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  368.707002][T16030] ISOFS: unable to read i-node block
[  368.714397][T16030] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  368.724411][T16025] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  368.732956][T16025] FAT-fs (loop1): Filesystem has been set read-only
[  368.787192][T16034] loop3: detected capacity change from 0 to 2048
[  368.812086][T16034]  loop3: p1 < > p4
[  368.829903][T16034] loop3: p4 size 8388608 extends beyond EOD, truncated
[  368.875259][T16042] loop1: detected capacity change from 0 to 256
[  368.905038][T16042] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  368.934152][T16042] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  368.942870][T16042] FAT-fs (loop1): Filesystem has been set read-only
[  369.032719][T16045] IPv6: Can't replace route, no match found
[  369.064463][T13479] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  369.170548][T16051] loop9: detected capacity change from 0 to 4096
[  369.263920][T16051] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  369.301373][T13479] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  369.316015][T16060] siw: device registration error -23
[  369.327038][T16060] loop1: detected capacity change from 0 to 512
[  369.684623][T16068] wg1 speed is unknown, defaulting to 1000
[  369.691058][T16068] lo speed is unknown, defaulting to 1000
[  369.791037][T16072] loop8: detected capacity change from 0 to 164
[  369.822691][T16072] ISOFS: unable to read i-node block
[  369.839279][T16072] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  369.921052][T16082] syzkaller0: entered promiscuous mode
[  369.926751][T16082] syzkaller0: entered allmulticast mode
[  370.032596][T16087] loop1: detected capacity change from 0 to 2048
[  370.100692][T16087]  loop1: p1 < > p4
[  370.101346][T16093] IPv6: Can't replace route, no match found
[  370.111816][T16087] loop1: p4 size 8388608 extends beyond EOD, truncated
[  370.133357][T16095] netlink: 'syz.9.4355': attribute type 2 has an invalid length.
[  370.141178][T16095] netlink: 199732 bytes leftover after parsing attributes in process `syz.9.4355'.
[  370.583047][T16080] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  370.669842][T16132] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4366'.
[  370.688959][T16132] wg1 speed is unknown, defaulting to 1000
[  370.696030][T16132] lo speed is unknown, defaulting to 1000
[  370.785724][T16144] netlink: 324 bytes leftover after parsing attributes in process `syz.8.4370'.
[  371.055960][T16162] syzkaller0: entered promiscuous mode
[  371.061599][T16162] syzkaller0: entered allmulticast mode
[  371.085034][T16164] loop8: detected capacity change from 0 to 2048
[  371.139804][T16164]  loop8: p1 < > p4
[  371.144249][T16164] loop8: p4 size 8388608 extends beyond EOD, truncated
[  371.156204][T16166] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4379'.
[  371.211460][T16172] FAULT_INJECTION: forcing a failure.
[  371.211460][T16172] name failslab, interval 1, probability 0, space 0, times 0
[  371.224149][T16172] CPU: 0 UID: 0 PID: 16172 Comm: syz.9.4381 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  371.224272][T16172] Tainted: [W]=WARN
[  371.224280][T16172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  371.224294][T16172] Call Trace:
[  371.224301][T16172]  <TASK>
[  371.224309][T16172]  __dump_stack+0x1d/0x30
[  371.224371][T16172]  dump_stack_lvl+0xe8/0x140
[  371.224394][T16172]  dump_stack+0x15/0x1b
[  371.224413][T16172]  should_fail_ex+0x265/0x280
[  371.224438][T16172]  should_failslab+0x8c/0xb0
[  371.224471][T16172]  kmem_cache_alloc_noprof+0x50/0x480
[  371.224505][T16172]  ? getname_flags+0x80/0x3b0
[  371.224537][T16172]  getname_flags+0x80/0x3b0
[  371.224588][T16172]  io_openat_prep+0x129/0x2b0
[  371.224618][T16172]  io_submit_sqes+0x5ef/0x1060
[  371.224653][T16172]  __se_sys_io_uring_enter+0x1c1/0x1b70
[  371.224673][T16172]  ? 0xffffffff81000000
[  371.224686][T16172]  ? __rcu_read_unlock+0x4f/0x70
[  371.224717][T16172]  ? get_pid_task+0x96/0xd0
[  371.224738][T16172]  ? proc_fail_nth_write+0x13b/0x160
[  371.224793][T16172]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  371.224900][T16172]  ? vfs_write+0x7e8/0x960
[  371.224924][T16172]  ? __rcu_read_unlock+0x4f/0x70
[  371.225085][T16172]  ? __fget_files+0x184/0x1c0
[  371.225115][T16172]  ? fput+0x8f/0xc0
[  371.225134][T16172]  __x64_sys_io_uring_enter+0x78/0x90
[  371.225157][T16172]  x64_sys_call+0x27e4/0x3000
[  371.225181][T16172]  do_syscall_64+0xd2/0x200
[  371.225213][T16172]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  371.225299][T16172]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  371.225358][T16172]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.225378][T16172] RIP: 0033:0x7f67e26ef749
[  371.225394][T16172] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  371.225412][T16172] RSP: 002b:00007f67e114f038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  371.225434][T16172] RAX: ffffffffffffffda RBX: 00007f67e2945fa0 RCX: 00007f67e26ef749
[  371.225448][T16172] RDX: 0000000000000000 RSI: 0000000000003516 RDI: 0000000000000003
[  371.225462][T16172] RBP: 00007f67e114f090 R08: 0000000000000000 R09: 00000000fffffdcf
[  371.225550][T16172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  371.225564][T16172] R13: 00007f67e2946038 R14: 00007f67e2945fa0 R15: 00007ffdf6dab5b8
[  371.225585][T16172]  </TASK>
[  371.611237][T16187] loop9: detected capacity change from 0 to 1024
[  371.634572][T16187] EXT4-fs: Ignoring removed nomblk_io_submit option
[  371.672533][T16187] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  371.686338][T16187] System zones: 0-1, 3-36
[  371.701122][T16194] loop8: detected capacity change from 0 to 256
[  371.706301][T16197] syzkaller0: entered promiscuous mode
[  371.713597][T16197] syzkaller0: entered allmulticast mode
[  371.719613][T16194] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  371.740758][T16194] FAT-fs (loop8): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  371.749333][T16194] FAT-fs (loop8): Filesystem has been set read-only
[  371.756734][T16187] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  371.816055][T13479] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  371.853139][T16200] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4390'.
[  371.905603][T16204] loop9: detected capacity change from 0 to 4096
[  371.934804][T16204] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  371.952867][T16204] Cannot find set identified by id 0 to match
[  371.976460][T13479] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.092646][T16214] loop0: detected capacity change from 0 to 1024
[  372.103573][T16216] loop9: detected capacity change from 0 to 1024
[  372.112202][T16216] EXT4-fs: Ignoring removed nomblk_io_submit option
[  372.120889][T16216] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  372.121521][T16214] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  372.129009][T16216] System zones: 0-1, 3-36
[  372.130619][T16216] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  372.158150][T16214] ext4 filesystem being mounted at /172/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  372.180710][T16214] EXT4-fs error (device loop0): ext4_map_blocks:813: inode #15: comm syz.0.4395: lblock 0 mapped to illegal pblock 0 (length 5)
[  372.198167][T16214] EXT4-fs error (device loop0): ext4_ext_remove_space:2955: inode #15: comm syz.0.4395: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  372.231572][T13479] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.263869][T13511] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  372.328530][T16226] loop9: detected capacity change from 0 to 2048
[  372.359880][T16223] loop0: detected capacity change from 0 to 4096
[  372.368259][T16223] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  372.385199][T16223] Cannot find set identified by id 0 to match
[  372.392622][T16226]  loop9: p1 < > p4
[  372.397102][T16226] loop9: p4 size 8388608 extends beyond EOD, truncated
[  372.420895][T13511] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.459849][T16229] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4399'.
[  372.684570][T16239] IPv6: Can't replace route, no match found
[  372.691268][T16234] wg1 speed is unknown, defaulting to 1000
[  372.696514][T16232] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4401'.
[  372.697857][T16234] lo speed is unknown, defaulting to 1000
[  372.921490][T16250] loop1: detected capacity change from 0 to 1024
[  372.928766][T16250] EXT4-fs: Ignoring removed nomblk_io_submit option
[  372.942744][T16250] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  372.950961][T16250] System zones: 0-1, 3-36
[  372.956196][T16250] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  372.969190][T16246] loop0: detected capacity change from 0 to 4096
[  372.989224][T13482] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  373.003660][T16246] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  373.029192][T16267] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4413'.
[  373.042635][T16271] loop1: detected capacity change from 0 to 164
[  373.050385][T13511] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  373.074013][T16271] ISOFS: unable to read i-node block
[  373.082629][T16271] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  373.114165][T16275] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  373.127925][T16275] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  373.140963][T16278] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4417'.
[  373.247622][T16278] bond_slave_0: entered promiscuous mode
[  373.253359][T16278] bond_slave_1: entered promiscuous mode
[  373.281529][T16278] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  373.307775][T16278] bond_slave_0: left promiscuous mode
[  373.313289][T16278] bond_slave_1: left promiscuous mode
[  373.318879][T16283] loop1: detected capacity change from 0 to 4096
[  373.345269][T16283] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  373.372718][T16281] wg1 speed is unknown, defaulting to 1000
[  373.379451][T16281] lo speed is unknown, defaulting to 1000
[  373.447439][T16287] loop0: detected capacity change from 0 to 256
[  373.455000][T16287] msdos: Unknown parameter 'ÿÿÿÿ'
[  373.474907][T16287] wg1 speed is unknown, defaulting to 1000
[  373.482307][T16287] lo speed is unknown, defaulting to 1000
[  373.601226][T13482] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  373.833656][T16294] siw: device registration error -23
[  374.340141][T16314] loop3: detected capacity change from 0 to 164
[  374.366993][T16314] ISOFS: unable to read i-node block
[  374.383995][T16314] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  374.482586][T16316] loop3: detected capacity change from 0 to 164
[  374.510604][T16316] ISOFS: unable to read i-node block
[  374.515998][T16316] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  374.609051][T16320] loop1: detected capacity change from 0 to 1024
[  374.777737][T16331] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4433'.
[  374.787146][   T29] kauditd_printk_skb: 193 callbacks suppressed
[  374.787215][   T29] audit: type=1326 audit(1764638588.992:12135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16317 comm="syz.9.4430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  374.818071][   T29] audit: type=1326 audit(1764638588.992:12136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16317 comm="syz.9.4430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  374.842280][   T29] audit: type=1326 audit(1764638588.992:12137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16317 comm="syz.9.4430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  374.865907][   T29] audit: type=1326 audit(1764638588.992:12138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16317 comm="syz.9.4430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  374.890102][   T29] audit: type=1326 audit(1764638588.992:12139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16317 comm="syz.9.4430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  374.913794][   T29] audit: type=1326 audit(1764638588.992:12140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16317 comm="syz.9.4430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  374.937964][   T29] audit: type=1326 audit(1764638588.992:12141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16317 comm="syz.9.4430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  374.962178][   T29] audit: type=1326 audit(1764638588.992:12142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16317 comm="syz.9.4430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  374.985841][   T29] audit: type=1326 audit(1764638588.992:12143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16317 comm="syz.9.4430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  375.009593][   T29] audit: type=1326 audit(1764638588.992:12144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16317 comm="syz.9.4430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  375.084106][T16320] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  375.091361][T16343] loop3: detected capacity change from 0 to 2048
[  375.139383][T16320] ext4 filesystem being mounted at /197/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  375.159766][T16343]  loop3: p1 < > p4
[  375.164671][T16343] loop3: p4 size 8388608 extends beyond EOD, truncated
[  375.307726][T16320] netlink: 'syz.1.4429': attribute type 29 has an invalid length.
[  375.315862][T16320] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4429'.
[  375.371114][T16346] siw: device registration error -23
[  375.416264][T16320] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(16)
[  375.422898][T16320] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  375.431654][T16320] vhci_hcd vhci_hcd.0: Device attached
[  375.469177][T16349] vhci_hcd: connection closed
[  375.469820][ T5897] vhci_hcd: stop threads
[  375.478774][ T5897] vhci_hcd: release socket
[  375.483342][ T5897] vhci_hcd: disconnect device
[  375.555051][T16355] loop3: detected capacity change from 0 to 4096
[  375.565395][T16355] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  375.595100][T13507] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  375.770704][T16361] siw: device registration error -23
[  375.837341][T16344] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set
[  376.126583][T16369] IPv6: Can't replace route, no match found
[  376.212427][T13482] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  376.444711][T16397] netlink: 24 bytes leftover after parsing attributes in process `syz.8.4449'.
[  376.605840][T16408] IPv6: Can't replace route, no match found
[  376.668262][T16412] loop3: detected capacity change from 0 to 4096
[  376.677254][T16412] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  376.736426][T13507] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  376.987181][T16422] siw: device registration error -23
[  376.998341][T16422] loop3: detected capacity change from 0 to 512
[  377.287065][T16428] loop0: detected capacity change from 0 to 1024
[  377.293934][T16428] EXT4-fs: Ignoring removed nomblk_io_submit option
[  377.302025][T16428] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  377.310253][T16428] System zones: 0-1, 3-36
[  377.315303][T16428] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  377.351529][T13511] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  377.486819][T16435] siw: device registration error -23
[  377.626253][T16442] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4464'.
[  377.640709][T16447] loop8: detected capacity change from 0 to 512
[  377.742346][T16447] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  377.760147][T16447] EXT4-fs warning (device loop8): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  377.783970][T16447] EXT4-fs (loop8): 1 truncate cleaned up
[  377.797015][T16447] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  377.820461][T16456] wg1 speed is unknown, defaulting to 1000
[  377.827038][T16456] lo speed is unknown, defaulting to 1000
[  377.894584][T16455] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4470'.
[  377.934414][T16458] loop0: detected capacity change from 0 to 1024
[  377.943212][T16458] EXT4-fs: Ignoring removed nomblk_io_submit option
[  377.953966][T16458] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  377.962477][T16458] System zones: 0-1, 3-36
[  377.970208][T16458] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  378.060870][T13511] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  378.120492][T16468] netlink: 32 bytes leftover after parsing attributes in process `syz.1.4476'.
[  378.235284][T16479] loop1: detected capacity change from 0 to 1024
[  378.293382][T16479] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=842c018, mo2=0002]
[  378.319433][T16486] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4482'.
[  378.330523][T16481] loop0: detected capacity change from 0 to 4096
[  378.338411][T16479] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  378.353635][T16481] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  378.377184][T16479] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.4480: bg 0: block 88: padding at end of block bitmap is not set
[  378.393768][T13511] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  378.414232][T16492] loop9: detected capacity change from 0 to 256
[  378.428695][T16492] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  378.474623][T13482] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  378.507750][T16500] loop0: detected capacity change from 0 to 1024
[  378.513282][T16502] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4486'.
[  378.516270][T16500] EXT4-fs: Ignoring removed nomblk_io_submit option
[  378.536467][T16500] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  378.544719][T16500] System zones: 0-1, 3-36
[  378.558871][T16500] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  378.654603][T16524] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4497'.
[  378.663835][T16516] loop1: detected capacity change from 0 to 4096
[  378.663923][T16518] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4494'.
[  378.685962][T16516] Cannot find set identified by id 0 to match
[  378.691462][T16524] 8021q: adding VLAN 0 to HW filter on device bond1
[  378.711127][T16524] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  378.723059][T16524] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4497'.
[  378.736846][T16524] bond1 (unregistering): (slave gretap1): Releasing backup interface
[  378.747206][T16524] bond1 (unregistering): Released all slaves
[  378.762112][T16530] syzkaller0: entered promiscuous mode
[  378.767699][T16530] syzkaller0: entered allmulticast mode
[  378.811045][T16545] loop1: detected capacity change from 0 to 256
[  378.818877][T16545] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  378.832977][T16524] netlink: 96 bytes leftover after parsing attributes in process `syz.8.4497'.
[  378.877450][T16552] syzkaller0: entered promiscuous mode
[  378.883200][T16552] syzkaller0: entered allmulticast mode
[  378.897241][T16556] FAULT_INJECTION: forcing a failure.
[  378.897241][T16556] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  378.910544][T16556] CPU: 0 UID: 0 PID: 16556 Comm: syz.8.4506 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  378.910581][T16556] Tainted: [W]=WARN
[  378.910588][T16556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  378.910602][T16556] Call Trace:
[  378.910610][T16556]  <TASK>
[  378.910617][T16556]  __dump_stack+0x1d/0x30
[  378.910647][T16556]  dump_stack_lvl+0xe8/0x140
[  378.910681][T16556]  dump_stack+0x15/0x1b
[  378.910782][T16556]  should_fail_ex+0x265/0x280
[  378.910804][T16556]  should_fail+0xb/0x20
[  378.910824][T16556]  should_fail_usercopy+0x1a/0x20
[  378.910849][T16556]  _copy_from_user+0x1c/0xb0
[  378.910878][T16556]  ___sys_sendmsg+0xc1/0x1d0
[  378.910940][T16556]  __x64_sys_sendmsg+0xd4/0x160
[  378.911010][T16556]  x64_sys_call+0x17ba/0x3000
[  378.911076][T16556]  do_syscall_64+0xd2/0x200
[  378.911098][T16556]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  378.911127][T16556]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  378.911219][T16556]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  378.911243][T16556] RIP: 0033:0x7f4fd97cf749
[  378.911256][T16556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  378.911274][T16556] RSP: 002b:00007f4fd822f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  378.911294][T16556] RAX: ffffffffffffffda RBX: 00007f4fd9a25fa0 RCX: 00007f4fd97cf749
[  378.911307][T16556] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  378.911361][T16556] RBP: 00007f4fd822f090 R08: 0000000000000000 R09: 0000000000000000
[  378.911373][T16556] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  378.911500][T16556] R13: 00007f4fd9a26038 R14: 00007f4fd9a25fa0 R15: 00007ffc7d3949e8
[  378.911510][T16556]  </TASK>
[  379.173696][T16565] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4510'.
[  379.186528][T16567] loop3: detected capacity change from 0 to 256
[  379.193119][T16562] loop8: detected capacity change from 0 to 4096
[  379.202583][T16567] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  379.216434][T16567] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  379.225050][T16567] FAT-fs (loop3): Filesystem has been set read-only
[  379.234095][T16562] Cannot find set identified by id 0 to match
[  379.293723][T16584] loop8: detected capacity change from 0 to 256
[  379.302150][T16584] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  379.475342][T16589] wg1 speed is unknown, defaulting to 1000
[  379.485025][T16603] FAULT_INJECTION: forcing a failure.
[  379.485025][T16603] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  379.498354][T16603] CPU: 1 UID: 0 PID: 16603 Comm: syz.1.4526 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  379.498395][T16603] Tainted: [W]=WARN
[  379.498434][T16603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  379.498445][T16603] Call Trace:
[  379.498451][T16603]  <TASK>
[  379.498458][T16603]  __dump_stack+0x1d/0x30
[  379.498485][T16603]  dump_stack_lvl+0xe8/0x140
[  379.498506][T16603]  dump_stack+0x15/0x1b
[  379.498521][T16603]  should_fail_ex+0x265/0x280
[  379.498541][T16603]  should_fail+0xb/0x20
[  379.498583][T16603]  should_fail_usercopy+0x1a/0x20
[  379.498606][T16603]  _copy_from_user+0x1c/0xb0
[  379.498628][T16603]  ___sys_sendmsg+0xc1/0x1d0
[  379.498720][T16603]  __sys_sendmmsg+0x178/0x300
[  379.498751][T16603]  __x64_sys_sendmmsg+0x57/0x70
[  379.498770][T16603]  x64_sys_call+0x1e28/0x3000
[  379.498790][T16603]  do_syscall_64+0xd2/0x200
[  379.498865][T16603]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  379.498896][T16603]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  379.498956][T16589] lo speed is unknown, defaulting to 1000
[  379.499015][T16603]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  379.499038][T16603] RIP: 0033:0x7ff7fc15f749
[  379.499075][T16603] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  379.499093][T16603] RSP: 002b:00007ff7fabbf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  379.499113][T16603] RAX: ffffffffffffffda RBX: 00007ff7fc3b5fa0 RCX: 00007ff7fc15f749
[  379.499126][T16603] RDX: 040000000000009f RSI: 00002000000002c0 RDI: 0000000000000003
[  379.499140][T16603] RBP: 00007ff7fabbf090 R08: 0000000000000000 R09: 0000000000000000
[  379.499153][T16603] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  379.499240][T16603] R13: 00007ff7fc3b6038 R14: 00007ff7fc3b5fa0 R15: 00007ffd77652548
[  379.499259][T16603]  </TASK>
[  379.550006][T16605] loop3: detected capacity change from 0 to 4096
[  379.682081][T16612] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  379.706659][T16605] Cannot find set identified by id 0 to match
[  379.715783][T16614] loop8: detected capacity change from 0 to 1024
[  379.723669][T16614] EXT4-fs: Ignoring removed nomblk_io_submit option
[  379.731759][T16614] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  379.739919][T16614] System zones: 0-1, 3-36
[  379.786264][T16623] loop8: detected capacity change from 0 to 256
[  379.796002][T16623] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  379.809523][T16623] FAT-fs (loop8): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  379.818083][T16623] FAT-fs (loop8): Filesystem has been set read-only
[  379.828429][   T29] kauditd_printk_skb: 553 callbacks suppressed
[  379.828443][   T29] audit: type=1326 audit(1764638594.122:12698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16627 comm="syz.9.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  379.831157][T16628] loop9: detected capacity change from 0 to 256
[  379.834717][   T29] audit: type=1326 audit(1764638594.122:12699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16627 comm="syz.9.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  379.888579][   T29] audit: type=1326 audit(1764638594.122:12700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16627 comm="syz.9.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  379.912899][   T29] audit: type=1326 audit(1764638594.122:12701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16627 comm="syz.9.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  379.936557][   T29] audit: type=1326 audit(1764638594.122:12702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16627 comm="syz.9.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  379.960776][   T29] audit: type=1326 audit(1764638594.122:12703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16627 comm="syz.9.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f67e26ef783 code=0x7ffc0000
[  379.984232][   T29] audit: type=1326 audit(1764638594.122:12704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16627 comm="syz.9.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f67e26ee1ff code=0x7ffc0000
[  380.008369][   T29] audit: type=1326 audit(1764638594.122:12705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16627 comm="syz.9.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f67e26ef7d7 code=0x7ffc0000
[  380.032539][   T29] audit: type=1326 audit(1764638594.122:12706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16627 comm="syz.9.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f67e26edf90 code=0x7ffc0000
[  380.056141][   T29] audit: type=1326 audit(1764638594.122:12707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16627 comm="syz.9.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f67e26ef34b code=0x7ffc0000
[  380.086881][T16628] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  380.102504][T16628] FAT-fs (loop9): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  380.111734][T16628] FAT-fs (loop9): Filesystem has been set read-only
[  380.186501][T16630] siw: device registration error -23
[  380.274583][T16633] loop3: detected capacity change from 0 to 4096
[  380.281630][T16638] loop9: detected capacity change from 0 to 1024
[  380.288991][T16638] EXT4-fs: Ignoring removed nomblk_io_submit option
[  380.297628][T16638] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  380.306083][T16638] System zones: 0-1, 3-36
[  380.329079][T16645] loop0: detected capacity change from 0 to 164
[  380.338765][T16645] ISOFS: unable to read i-node block
[  380.345282][T16645] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  380.377981][T16650] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  380.423873][T16643] loop8: detected capacity change from 0 to 4096
[  380.442450][T16643] Cannot find set identified by id 0 to match
[  380.460788][T16659] loop0: detected capacity change from 0 to 1024
[  380.469342][T16659] EXT4-fs: Ignoring removed nomblk_io_submit option
[  380.489733][T16659] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  380.501175][T16659] System zones: 0-1, 3-36
[  380.521796][T16671] IPv6: Can't replace route, no match found
[  380.547511][T16669] loop8: detected capacity change from 0 to 256
[  380.557568][T16673] loop3: detected capacity change from 0 to 1024
[  380.569977][T16669] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  380.586920][T16669] FAT-fs (loop8): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  380.595651][T16669] FAT-fs (loop8): Filesystem has been set read-only
[  380.603962][T16673] ext4 filesystem being mounted at /204/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  380.615544][T16673] EXT4-fs error (device loop3): ext4_map_blocks:813: inode #15: comm syz.3.4551: lblock 0 mapped to illegal pblock 0 (length 5)
[  380.649515][T16673] EXT4-fs error (device loop3): ext4_ext_remove_space:2955: inode #15: comm syz.3.4551: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  380.688824][T16685] loop1: detected capacity change from 0 to 4096
[  380.762414][T16696] loop1: detected capacity change from 0 to 164
[  380.772994][T16697] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  380.782121][T16696] ISOFS: unable to read i-node block
[  380.787421][T16696] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  380.914733][T16706] wg1 speed is unknown, defaulting to 1000
[  380.950803][T16711] loop1: detected capacity change from 0 to 1024
[  380.958600][T16709] loop8: detected capacity change from 0 to 1024
[  380.970272][T16706] lo speed is unknown, defaulting to 1000
[  380.976986][T16711] EXT4-fs: Ignoring removed nomblk_io_submit option
[  380.985684][T16709] EXT4-fs: Ignoring removed nomblk_io_submit option
[  381.022445][T16713] loop0: detected capacity change from 0 to 512
[  381.034069][T16711] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  381.044775][T16709] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  381.053729][T16711] System zones: 0-1, 3-36
[  381.060658][T16709] System zones: 0-1, 3-36
[  381.152855][T16704] siw: device registration error -23
[  381.223929][T16717] loop3: detected capacity change from 0 to 256
[  381.231310][T16717] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  381.245655][T16717] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  381.254949][T16717] FAT-fs (loop3): Filesystem has been set read-only
[  381.452980][T16726] siw: device registration error -23
[  381.516528][T16730] loop3: detected capacity change from 0 to 1024
[  381.642506][T16730] ext4 filesystem being mounted at /209/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  381.719384][T16730] EXT4-fs error (device loop3): ext4_map_blocks:813: inode #15: comm syz.3.4570: lblock 0 mapped to illegal pblock 0 (length 5)
[  381.741696][T16730] EXT4-fs error (device loop3): ext4_ext_remove_space:2955: inode #15: comm syz.3.4570: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  381.760851][T16741] loop0: detected capacity change from 0 to 256
[  381.768719][T16741] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  381.789721][T16741] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  381.798359][T16741] FAT-fs (loop0): Filesystem has been set read-only
[  381.813880][T16743] loop3: detected capacity change from 0 to 164
[  381.821835][T16743] ISOFS: unable to read i-node block
[  381.827244][T16743] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  381.958603][T16754] loop3: detected capacity change from 0 to 4096
[  381.969153][T16754] Cannot find set identified by id 0 to match
[  382.015966][T16762] wg1 speed is unknown, defaulting to 1000
[  382.022631][T16762] lo speed is unknown, defaulting to 1000
[  382.130690][T16770] IPv6: Can't replace route, no match found
[  382.141537][T16769] loop1: detected capacity change from 0 to 2048
[  382.170251][T16769]  loop1: p1 < > p4
[  382.180224][T16769] loop1: p4 size 8388608 extends beyond EOD, truncated
[  382.210537][T16777] loop8: detected capacity change from 0 to 1024
[  382.238075][T16777] ext4 filesystem being mounted at /220/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  382.271548][T16777] EXT4-fs error (device loop8): ext4_map_blocks:813: inode #15: comm syz.8.4588: lblock 0 mapped to illegal pblock 0 (length 5)
[  382.310346][T16777] EXT4-fs error (device loop8): ext4_ext_remove_space:2955: inode #15: comm syz.8.4588: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  382.453185][T16786] loop9: detected capacity change from 0 to 4096
[  382.781237][T16799] wg1 speed is unknown, defaulting to 1000
[  382.807959][T16799] lo speed is unknown, defaulting to 1000
[  382.887649][T16803] __nla_validate_parse: 6 callbacks suppressed
[  382.887664][T16803] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4596'.
[  383.293221][T16805] siw: device registration error -23
[  383.421645][T16811] IPv6: Can't replace route, no match found
[  383.549673][T16819] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  383.550139][T16817] loop9: detected capacity change from 0 to 1024
[  383.558311][T16819] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  383.593187][T16817] EXT4-fs: Ignoring removed nomblk_io_submit option
[  383.622349][T16817] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  383.644768][T16825] loop3: detected capacity change from 0 to 1024
[  383.669376][T16817] System zones: 0-1, 3-36
[  383.789241][T16830] netlink: 20 bytes leftover after parsing attributes in process `syz.9.4605'.
[  383.852655][T16832] loop0: detected capacity change from 0 to 256
[  383.859326][T16832] msdos: Unknown parameter 'ÿÿÿÿ'
[  383.884279][T16832] wg1 speed is unknown, defaulting to 1000
[  383.891229][T16832] lo speed is unknown, defaulting to 1000
[  384.041851][T16825] ext4 filesystem being mounted at /217/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  384.383752][T16825] netlink: 'syz.3.4604': attribute type 29 has an invalid length.
[  384.391698][T16825] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4604'.
[  384.495302][T16840] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4607'.
[  384.635185][T16842] siw: device registration error -23
[  384.684460][T16842] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(14)
[  384.691093][T16842] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  384.699330][T16842] vhci_hcd vhci_hcd.0: Device attached
[  384.891974][T16843] vhci_hcd: connection closed
[  384.892383][ T1604] vhci_hcd: stop threads
[  384.901546][ T1604] vhci_hcd: release socket
[  384.905963][ T1604] vhci_hcd: disconnect device
[  385.476765][   T29] kauditd_printk_skb: 144 callbacks suppressed
[  385.476780][   T29] audit: type=1326 audit(1764638599.762:12852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16855 comm="syz.1.4611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  385.521279][T16856] loop1: detected capacity change from 0 to 256
[  385.526525][   T29] audit: type=1326 audit(1764638599.812:12853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16855 comm="syz.1.4611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  385.551841][   T29] audit: type=1326 audit(1764638599.812:12854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16855 comm="syz.1.4611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  385.575483][   T29] audit: type=1326 audit(1764638599.812:12855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16855 comm="syz.1.4611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  385.583443][T16858] loop8: detected capacity change from 0 to 1024
[  385.599869][   T29] audit: type=1326 audit(1764638599.812:12856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16855 comm="syz.1.4611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7ff7fc15f749 code=0x7ffc0000
[  385.616300][T16858] EXT4-fs: Ignoring removed nomblk_io_submit option
[  385.628998][   T29] audit: type=1326 audit(1764638599.812:12857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16855 comm="syz.1.4611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff7fc15f783 code=0x7ffc0000
[  385.660292][   T29] audit: type=1326 audit(1764638599.812:12858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16855 comm="syz.1.4611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7ff7fc15e1ff code=0x7ffc0000
[  385.683743][   T29] audit: type=1326 audit(1764638599.812:12859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16855 comm="syz.1.4611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7ff7fc15f7d7 code=0x7ffc0000
[  385.708010][   T29] audit: type=1326 audit(1764638599.812:12860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16855 comm="syz.1.4611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff7fc15df90 code=0x7ffc0000
[  385.732359][   T29] audit: type=1326 audit(1764638599.812:12861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16855 comm="syz.1.4611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff7fc15f34b code=0x7ffc0000
[  385.758111][T16856] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  385.774456][T16856] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  385.774544][T16858] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  385.783028][T16856] FAT-fs (loop1): Filesystem has been set read-only
[  385.800224][T16858] System zones: 0-1, 3-36
[  385.839689][T16866] loop8: detected capacity change from 0 to 1024
[  385.864615][T16860] loop3: detected capacity change from 0 to 4096
[  385.872819][T16866] ext4 filesystem being mounted at /226/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  385.887655][T16866] EXT4-fs error (device loop8): ext4_map_blocks:813: inode #15: comm syz.8.4614: lblock 0 mapped to illegal pblock 0 (length 5)
[  385.906123][T16866] EXT4-fs error (device loop8): ext4_ext_remove_space:2955: inode #15: comm syz.8.4614: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  385.960400][T16871] syzkaller0: entered promiscuous mode
[  385.965952][T16871] syzkaller0: entered allmulticast mode
[  385.984019][T16873] tipc: New replicast peer: 255.255.255.255
[  385.990143][T16873] tipc: Enabled bearer <udp:syz2>, priority 10
[  386.090831][T16885] loop1: detected capacity change from 0 to 1024
[  386.098250][T16882] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4620'.
[  386.111491][T16885] EXT4-fs: Ignoring removed nomblk_io_submit option
[  386.125304][T16885] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  386.133678][T16885] System zones: 0-1, 3-36
[  386.188400][T16902] loop9: detected capacity change from 0 to 256
[  386.198568][T16903] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  386.209809][T16903] syzkaller0: entered promiscuous mode
[  386.215314][T16903] syzkaller0: entered allmulticast mode
[  386.223248][T16902] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  386.234000][T16898] loop1: detected capacity change from 0 to 4096
[  386.239750][T16902] FAT-fs (loop9): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  386.248925][T16902] FAT-fs (loop9): Filesystem has been set read-only
[  386.262115][T16903] tipc: Resetting bearer <eth:syzkaller0>
[  386.268808][T16900] tipc: Resetting bearer <eth:syzkaller0>
[  386.277620][T16900] tipc: Disabling bearer <eth:syzkaller0>
[  386.427111][T16928] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4634'.
[  386.490723][T16936] loop9: detected capacity change from 0 to 1024
[  386.528010][T16936] EXT4-fs: Ignoring removed nomblk_io_submit option
[  386.535385][T16937] wireguard0: entered promiscuous mode
[  386.541373][T16937] wireguard0: entered allmulticast mode
[  386.600604][T16936] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  386.608994][T16936] System zones: 0-1, 3-36
[  386.668614][T16941] loop0: detected capacity change from 0 to 4096
[  386.770251][T16950] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4641'.
[  386.861047][T16954] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  386.868163][T16954] syzkaller0: entered promiscuous mode
[  386.874331][T16954] syzkaller0: entered allmulticast mode
[  386.959556][T16956] tipc: Resetting bearer <eth:syzkaller0>
[  386.978481][T16953] tipc: Resetting bearer <eth:syzkaller0>
[  387.032723][T16953] tipc: Disabling bearer <eth:syzkaller0>
[  387.047655][T16957] siw: device registration error -23
[  387.059188][T16957] loop0: detected capacity change from 0 to 512
[  387.243253][T16961] loop3: detected capacity change from 0 to 256
[  387.303375][T16961] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  387.353080][T16961] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  387.361431][T16969] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  387.361686][T16961] FAT-fs (loop3): Filesystem has been set read-only
[  387.370195][T16969] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  387.404487][T16971] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4649'.
[  387.428051][T16971] bond_slave_0: entered promiscuous mode
[  387.433848][T16971] bond_slave_1: entered promiscuous mode
[  387.453086][T16971] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  387.481526][T16971] bond_slave_0: left promiscuous mode
[  387.486960][T16971] bond_slave_1: left promiscuous mode
[  387.585482][T16980] loop1: detected capacity change from 0 to 256
[  387.592781][T16980] msdos: Unknown parameter 'ÿÿÿÿ'
[  387.616785][T16980] wg1 speed is unknown, defaulting to 1000
[  387.624662][T16980] lo speed is unknown, defaulting to 1000
[  387.988424][T16987] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  388.007482][T16973] wg1 speed is unknown, defaulting to 1000
[  388.051455][T16991] loop0: detected capacity change from 0 to 256
[  388.062085][T16994] syzkaller0: entered promiscuous mode
[  388.067661][T16994] syzkaller0: entered allmulticast mode
[  388.099961][T16991] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  388.163602][T16987] tipc: Resetting bearer <eth:syzkaller0>
[  388.176222][T16973] lo speed is unknown, defaulting to 1000
[  388.188430][T16991] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  388.197694][T16991] FAT-fs (loop0): Filesystem has been set read-only
[  388.215603][T16986] tipc: Resetting bearer <eth:syzkaller0>
[  388.253992][T16986] tipc: Disabling bearer <eth:syzkaller0>
[  388.265507][T16997] netlink: 24 bytes leftover after parsing attributes in process `syz.8.4658'.
[  388.277786][T16979] loop9: detected capacity change from 0 to 4096
[  388.872771][T17009] FAULT_INJECTION: forcing a failure.
[  388.872771][T17009] name failslab, interval 1, probability 0, space 0, times 0
[  388.886208][T17009] CPU: 1 UID: 0 PID: 17009 Comm: syz.3.4662 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  388.886242][T17009] Tainted: [W]=WARN
[  388.886250][T17009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  388.886263][T17009] Call Trace:
[  388.886270][T17009]  <TASK>
[  388.886278][T17009]  __dump_stack+0x1d/0x30
[  388.886308][T17009]  dump_stack_lvl+0xe8/0x140
[  388.886391][T17009]  dump_stack+0x15/0x1b
[  388.886416][T17009]  should_fail_ex+0x265/0x280
[  388.886440][T17009]  should_failslab+0x8c/0xb0
[  388.886472][T17009]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[  388.886500][T17009]  ? __alloc_skb+0x101/0x320
[  388.886564][T17009]  __alloc_skb+0x101/0x320
[  388.886593][T17009]  netlink_alloc_large_skb+0xbf/0xf0
[  388.886622][T17009]  netlink_sendmsg+0x3cf/0x6b0
[  388.886686][T17009]  ? __pfx_netlink_sendmsg+0x10/0x10
[  388.886762][T17009]  __sock_sendmsg+0x145/0x180
[  388.886845][T17009]  ____sys_sendmsg+0x31e/0x4e0
[  388.886865][T17009]  ___sys_sendmsg+0x17b/0x1d0
[  388.886911][T17009]  __x64_sys_sendmsg+0xd4/0x160
[  388.886937][T17009]  x64_sys_call+0x17ba/0x3000
[  388.886983][T17009]  do_syscall_64+0xd2/0x200
[  388.887003][T17009]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  388.887030][T17009]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  388.887129][T17009]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.887148][T17009] RIP: 0033:0x7f788e77f749
[  388.887162][T17009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  388.887251][T17009] RSP: 002b:00007f788d1be038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  388.887268][T17009] RAX: ffffffffffffffda RBX: 00007f788e9d6090 RCX: 00007f788e77f749
[  388.887280][T17009] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000009
[  388.887291][T17009] RBP: 00007f788d1be090 R08: 0000000000000000 R09: 0000000000000000
[  388.887312][T17009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  388.887326][T17009] R13: 00007f788e9d6128 R14: 00007f788e9d6090 R15: 00007ffd54d3f9e8
[  388.887343][T17009]  </TASK>
[  389.137366][T17013] loop8: detected capacity change from 0 to 164
[  389.146361][T17013] ISOFS: unable to read i-node block
[  389.185338][T17013] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  389.368008][T17028] loop3: detected capacity change from 0 to 256
[  389.383914][T17025] loop9: detected capacity change from 0 to 1024
[  389.396778][T17028] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  389.421404][T17025] EXT4-fs: Ignoring removed nomblk_io_submit option
[  389.429231][T17028] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  389.432386][T17025] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  389.437809][T17028] FAT-fs (loop3): Filesystem has been set read-only
[  389.452605][T17025] System zones: 0-1, 3-36
[  389.476335][T17036] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4673'.
[  389.524900][T17038] loop9: detected capacity change from 0 to 1024
[  389.532018][T17038] EXT4-fs: Ignoring removed nomblk_io_submit option
[  389.541116][T17038] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  389.550062][T17038] System zones: 0-1, 3-36
[  389.582836][T17043] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4676'.
[  389.617267][T17043] bond_slave_0: entered promiscuous mode
[  389.622981][T17043] bond_slave_1: entered promiscuous mode
[  389.641938][T17043] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  389.685207][T17043] bond_slave_0: left promiscuous mode
[  389.690659][T17043] bond_slave_1: left promiscuous mode
[  389.728837][T17051] netlink: 28 bytes leftover after parsing attributes in process `syz.9.4677'.
[  389.748532][T17049] loop0: detected capacity change from 0 to 4096
[  389.835990][T17045] wg1 speed is unknown, defaulting to 1000
[  389.910863][T17045] lo speed is unknown, defaulting to 1000
[  390.149331][T17064] loop8: detected capacity change from 0 to 4096
[  390.181033][T17068] loop9: detected capacity change from 0 to 1024
[  390.201420][T17068] EXT4-fs: Ignoring removed nomblk_io_submit option
[  390.420994][T17075] loop1: detected capacity change from 0 to 1024
[  390.510904][T17068] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  390.530529][T17075] ext4 filesystem being mounted at /232/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  390.543264][T17068] System zones: 0-1, 3-36
[  390.552132][T17086] FAULT_INJECTION: forcing a failure.
[  390.552132][T17086] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  390.565213][T17086] CPU: 0 UID: 0 PID: 17086 Comm: syz.8.4688 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  390.565242][T17086] Tainted: [W]=WARN
[  390.565248][T17086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  390.565294][T17086] Call Trace:
[  390.565302][T17086]  <TASK>
[  390.565310][T17086]  __dump_stack+0x1d/0x30
[  390.565335][T17086]  dump_stack_lvl+0xe8/0x140
[  390.565357][T17086]  dump_stack+0x15/0x1b
[  390.565376][T17086]  should_fail_ex+0x265/0x280
[  390.565399][T17086]  should_fail+0xb/0x20
[  390.565426][T17086]  should_fail_usercopy+0x1a/0x20
[  390.565452][T17086]  _copy_from_user+0x1c/0xb0
[  390.565479][T17086]  sg_new_write+0x71a/0x890
[  390.565560][T17086]  ? do_vfs_ioctl+0x866/0xe10
[  390.565586][T17086]  sg_ioctl+0xb81/0x1360
[  390.565613][T17086]  ? __pfx_sg_ioctl+0x10/0x10
[  390.565636][T17086]  __se_sys_ioctl+0xce/0x140
[  390.565717][T17086]  __x64_sys_ioctl+0x43/0x50
[  390.565739][T17086]  x64_sys_call+0x14b0/0x3000
[  390.565758][T17086]  do_syscall_64+0xd2/0x200
[  390.565778][T17086]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  390.565835][T17086]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  390.566033][T17086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  390.566052][T17086] RIP: 0033:0x7f4fd97cf749
[  390.566069][T17086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  390.566088][T17086] RSP: 002b:00007f4fd822f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  390.566109][T17086] RAX: ffffffffffffffda RBX: 00007f4fd9a25fa0 RCX: 00007f4fd97cf749
[  390.566177][T17086] RDX: 00002000000000c0 RSI: 0000000000002285 RDI: 0000000000000006
[  390.566188][T17086] RBP: 00007f4fd822f090 R08: 0000000000000000 R09: 0000000000000000
[  390.566201][T17086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  390.566215][T17086] R13: 00007f4fd9a26038 R14: 00007f4fd9a25fa0 R15: 00007ffc7d3949e8
[  390.566310][T17086]  </TASK>
[  390.602119][T17092] loop0: detected capacity change from 0 to 164
[  390.669690][T17075] EXT4-fs error (device loop1): ext4_map_blocks:813: inode #15: comm syz.1.4687: lblock 0 mapped to illegal pblock 0 (length 5)
[  390.670723][   T29] kauditd_printk_skb: 342 callbacks suppressed
[  390.670737][   T29] audit: type=1326 audit(1764638604.892:13204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17067 comm="syz.9.4684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f67e26edf90 code=0x7ffc0000
[  390.721906][T17075] EXT4-fs error (device loop1): ext4_ext_remove_space:2955: inode #15: comm syz.1.4687: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  390.829931][T17095] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4692'.
[  390.835067][   T29] audit: type=1326 audit(1764638604.892:13205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17067 comm="syz.9.4684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f67e26ee497 code=0x7ffc0000
[  390.844060][T17084] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set
[  390.883570][   T29] audit: type=1326 audit(1764638604.892:13206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17067 comm="syz.9.4684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f67e26edf90 code=0x7ffc0000
[  390.900514][T17095] bond_slave_0: entered promiscuous mode
[  390.907165][   T29] audit: type=1326 audit(1764638604.892:13207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17067 comm="syz.9.4684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  390.912771][T17095] bond_slave_1: entered promiscuous mode
[  390.937019][   T29] audit: type=1326 audit(1764638604.892:13208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17067 comm="syz.9.4684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  390.956029][T17095] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  390.967434][   T29] audit: type=1326 audit(1764638605.082:13209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17067 comm="syz.9.4684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  390.997981][   T29] audit: type=1326 audit(1764638605.092:13210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17067 comm="syz.9.4684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  391.022189][   T29] audit: type=1326 audit(1764638605.092:13211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17067 comm="syz.9.4684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  391.046555][T17092] ISOFS: unable to read i-node block
[  391.052747][T17092] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  391.080104][T17101] IPv6: Can't replace route, no match found
[  391.112328][T17095] bond_slave_0: left promiscuous mode
[  391.117741][T17095] bond_slave_1: left promiscuous mode
[  391.153726][T17103] loop8: detected capacity change from 0 to 4096
[  391.167826][T17110] tipc: New replicast peer: 255.255.255.255
[  391.174747][T17110] tipc: Enabled bearer <udp:syz2>, priority 10
[  391.220512][T17121] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4702'.
[  391.257808][T17098] wg1 speed is unknown, defaulting to 1000
[  391.271485][T17103] EXT4-fs mount: 66 callbacks suppressed
[  391.271499][T17103] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  391.307855][T17128] loop1: detected capacity change from 0 to 128
[  391.333097][   T29] audit: type=1326 audit(1764638605.612:13212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17129 comm="syz.3.4705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f788e77f749 code=0x7ffc0000
[  391.356769][   T29] audit: type=1326 audit(1764638605.612:13213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17129 comm="syz.3.4705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f788e77f749 code=0x7ffc0000
[  391.389390][T17128] FAT-fs (loop1): bogus sectors per cluster 0
[  391.395554][T17128] FAT-fs (loop1): Can't find a valid FAT filesystem
[  391.433473][T17098] lo speed is unknown, defaulting to 1000
[  391.455563][T17139] loop9: detected capacity change from 0 to 164
[  391.479443][T17139] ISOFS: unable to read i-node block
[  391.484838][T17139] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  391.576153][T17152] FAULT_INJECTION: forcing a failure.
[  391.576153][T17152] name failslab, interval 1, probability 0, space 0, times 0
[  391.588978][T17152] CPU: 1 UID: 0 PID: 17152 Comm: syz.0.4712 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  391.589108][T17152] Tainted: [W]=WARN
[  391.589116][T17152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  391.589129][T17152] Call Trace:
[  391.589135][T17152]  <TASK>
[  391.589142][T17152]  __dump_stack+0x1d/0x30
[  391.589162][T17152]  dump_stack_lvl+0xe8/0x140
[  391.589180][T17152]  dump_stack+0x15/0x1b
[  391.589198][T17152]  should_fail_ex+0x265/0x280
[  391.589296][T17152]  should_failslab+0x8c/0xb0
[  391.589330][T17152]  kmem_cache_alloc_lru_noprof+0x55/0x490
[  391.589358][T17152]  ? __d_alloc+0x37/0x340
[  391.589380][T17152]  __d_alloc+0x37/0x340
[  391.589396][T17152]  ? security_inode_permission+0x4a/0xb0
[  391.589423][T17152]  d_alloc_parallel+0x58/0xc70
[  391.589442][T17152]  ? __rcu_read_unlock+0x4f/0x70
[  391.589496][T17152]  ? __d_lookup+0x316/0x340
[  391.589590][T17152]  path_openat+0x693/0x2280
[  391.589619][T17152]  do_filp_open+0x109/0x230
[  391.589645][T17152]  do_sys_openat2+0xa6/0x110
[  391.589665][T17152]  __x64_sys_creat+0x65/0x90
[  391.589689][T17152]  x64_sys_call+0x2f1c/0x3000
[  391.589771][T17152]  do_syscall_64+0xd2/0x200
[  391.589793][T17152]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  391.589891][T17152]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  391.589910][T17152]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  391.589958][T17152] RIP: 0033:0x7f5f8958f749
[  391.589974][T17152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  391.590082][T17152] RSP: 002b:00007f5f87fef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[  391.590146][T17152] RAX: ffffffffffffffda RBX: 00007f5f897e5fa0 RCX: 00007f5f8958f749
[  391.590159][T17152] RDX: 0000000000000000 RSI: 0000000000000090 RDI: 0000200000000080
[  391.590170][T17152] RBP: 00007f5f87fef090 R08: 0000000000000000 R09: 0000000000000000
[  391.590181][T17152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  391.590192][T17152] R13: 00007f5f897e6038 R14: 00007f5f897e5fa0 R15: 00007ffe2716b9a8
[  391.590275][T17152]  </TASK>
[  391.923697][T17167] loop9: detected capacity change from 0 to 512
[  391.927286][T17170] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4716'.
[  391.950586][T17171] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4716'.
[  391.960157][T17167] EXT4-fs: Ignoring removed oldalloc option
[  392.003439][T17167] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  392.056563][T17167] ext4 filesystem being mounted at /277/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  392.178961][T17167] EXT4-fs error (device loop9): ext4_lookup:1787: inode #12: comm syz.9.4717: iget: bad i_size value: 2533274857506816
[  392.194349][T17167] EXT4-fs (loop9): Remounting filesystem read-only
[  392.243573][T13479] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.269574][T13319] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.381733][T17187] xt_CT: No such helper "snmp"
[  392.388532][T17184] loop1: detected capacity change from 0 to 4096
[  392.398642][T17184] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  392.413439][T17187] IPv6: NLM_F_CREATE should be specified when creating new route
[  392.452510][T17184] Cannot find set identified by id 0 to match
[  392.510439][T13482] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.633094][T17165] Set syz1 is full, maxelem 65536 reached
[  392.761561][T17198] loop1: detected capacity change from 0 to 4096
[  392.770749][T17210] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4729'.
[  392.796916][T17198] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  392.815246][T17210] bond_slave_0: entered promiscuous mode
[  392.821107][T17210] bond_slave_1: entered promiscuous mode
[  392.857870][T17210] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  392.892270][T13482] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.927572][T17218] vhci_hcd vhci_hcd.0: pdev(9) rhport(0) sockfd(3)
[  392.934112][T17218] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  392.942251][T17218] vhci_hcd vhci_hcd.0: Device attached
[  392.968596][T17223] vhci_hcd: connection closed
[  392.969027][ T5913] vhci_hcd: stop threads
[  392.978002][ T5913] vhci_hcd: release socket
[  392.982466][ T5913] vhci_hcd: disconnect device
[  392.998048][T17222] loop3: detected capacity change from 0 to 4096
[  393.006117][T17210] bond_slave_0: left promiscuous mode
[  393.011569][T17210] bond_slave_1: left promiscuous mode
[  393.020380][T17222] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  393.351714][T17219] wg1 speed is unknown, defaulting to 1000
[  393.469547][T17235] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4733'.
[  393.488933][T17219] lo speed is unknown, defaulting to 1000
[  393.813657][T17245] loop9: detected capacity change from 0 to 512
[  394.041335][T17243] loop0: detected capacity change from 0 to 4096
[  394.053871][T17240] siw: device registration error -23
[  394.082676][T17243] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  394.154066][T17249] loop8: detected capacity change from 0 to 4096
[  394.171416][T17243] set match dimension is over the limit!
[  394.198451][T17249] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  394.216642][T13511] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  394.233621][T17258] loop1: detected capacity change from 0 to 1024
[  394.253425][T17258] EXT4-fs: Ignoring removed nomblk_io_submit option
[  394.255356][T17249] Cannot find set identified by id 0 to match
[  394.285554][T17258] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  394.331526][T13507] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  394.359045][T17262] loop0: detected capacity change from 0 to 4096
[  394.380014][T17258] System zones: 0-1, 3-36
[  394.410881][T13319] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  394.423228][T17258] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  394.459970][T17262] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  394.506167][T13482] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  394.582276][T13511] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  394.596745][T17281] IPv6: Can't replace route, no match found
[  394.800464][T17291] siw: device registration error -23
[  395.124785][T17302] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4754'.
[  395.153972][T17297] loop3: detected capacity change from 0 to 4096
[  395.163728][T17302] bond_slave_0: entered promiscuous mode
[  395.169431][T17302] bond_slave_1: entered promiscuous mode
[  395.177767][T17297] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  395.203174][T13507] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  395.234065][T17302] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  395.277744][T17302] bond_slave_0: left promiscuous mode
[  395.283177][T17302] bond_slave_1: left promiscuous mode
[  395.351808][T17313] loop3: detected capacity change from 0 to 1024
[  395.409949][T17313] EXT4-fs: Ignoring removed nomblk_io_submit option
[  395.445383][T17309] wg1 speed is unknown, defaulting to 1000
[  395.509488][T17313] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  395.534098][T17311] loop1: detected capacity change from 0 to 4096
[  395.534292][T17321] loop0: detected capacity change from 0 to 1024
[  395.541700][T17309] lo speed is unknown, defaulting to 1000
[  395.547087][T17313] System zones: 0-1, 3-36
[  395.709831][T17321] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  395.733806][T17321] ext4 filesystem being mounted at /241/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  395.767511][T17313] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  395.772100][T17321] EXT4-fs error (device loop0): ext4_map_blocks:813: inode #15: comm syz.0.4760: lblock 0 mapped to illegal pblock 0 (length 5)
[  395.780994][T17311] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  395.809902][   T29] kauditd_printk_skb: 80 callbacks suppressed
[  395.809916][   T29] audit: type=1326 audit(1764638610.102:13294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17312 comm="syz.3.4757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f788e77df90 code=0x7ffc0000
[  395.849387][   T29] audit: type=1326 audit(1764638610.102:13295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17312 comm="syz.3.4757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f788e77e497 code=0x7ffc0000
[  395.869621][T17321] EXT4-fs error (device loop0): ext4_ext_remove_space:2955: inode #15: comm syz.0.4760: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  395.873627][   T29] audit: type=1326 audit(1764638610.102:13296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17312 comm="syz.3.4757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f788e77df90 code=0x7ffc0000
[  395.915200][   T29] audit: type=1326 audit(1764638610.102:13297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17312 comm="syz.3.4757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f788e77f749 code=0x7ffc0000
[  395.961200][T17337] wg1 speed is unknown, defaulting to 1000
[  395.967605][T17337] lo speed is unknown, defaulting to 1000
[  396.020456][T13511] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  396.059404][T13507] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  396.102944][T17341] loop0: detected capacity change from 0 to 164
[  396.123246][T17341] ISOFS: unable to read i-node block
[  396.128563][T17341] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  396.141120][T17343] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4768'.
[  396.219862][T17345] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  396.242642][T17345] syzkaller0: entered promiscuous mode
[  396.248207][T17345] syzkaller0: entered allmulticast mode
[  396.258509][T13482] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  396.337283][T17345] tipc: Resetting bearer <eth:syzkaller0>
[  396.360162][T17344] tipc: Resetting bearer <eth:syzkaller0>
[  396.396927][T17347] loop0: detected capacity change from 0 to 4096
[  396.405028][T17344] tipc: Disabling bearer <eth:syzkaller0>
[  396.435856][T17347] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  396.523267][T17347] set match dimension is over the limit!
[  396.639731][T13511] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  396.700513][T17360] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4770'.
[  396.831894][T17367] loop3: detected capacity change from 0 to 1024
[  397.090328][T17367] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  397.241419][T17367] ext4 filesystem being mounted at /249/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  397.265941][T17367] EXT4-fs error (device loop3): ext4_map_blocks:813: inode #15: comm syz.3.4776: lblock 0 mapped to illegal pblock 0 (length 5)
[  397.360764][T17376] loop0: detected capacity change from 0 to 164
[  397.390787][T17378] FAULT_INJECTION: forcing a failure.
[  397.390787][T17378] name failslab, interval 1, probability 0, space 0, times 0
[  397.403468][T17378] CPU: 1 UID: 0 PID: 17378 Comm: syz.8.4780 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  397.403528][T17378] Tainted: [W]=WARN
[  397.403534][T17378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  397.403630][T17378] Call Trace:
[  397.403636][T17378]  <TASK>
[  397.403643][T17378]  __dump_stack+0x1d/0x30
[  397.403663][T17378]  dump_stack_lvl+0xe8/0x140
[  397.403681][T17378]  dump_stack+0x15/0x1b
[  397.403723][T17378]  should_fail_ex+0x265/0x280
[  397.403751][T17378]  should_failslab+0x8c/0xb0
[  397.403782][T17378]  kmem_cache_alloc_noprof+0x50/0x480
[  397.403878][T17378]  ? ep_insert+0x2cf/0xdb0
[  397.403910][T17378]  ep_insert+0x2cf/0xdb0
[  397.403945][T17378]  do_epoll_ctl+0x686/0x8a0
[  397.404080][T17378]  __x64_sys_epoll_ctl+0xcb/0x100
[  397.404098][T17378]  x64_sys_call+0x745/0x3000
[  397.404117][T17378]  do_syscall_64+0xd2/0x200
[  397.404140][T17378]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  397.404227][T17378]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  397.404319][T17378]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  397.404339][T17378] RIP: 0033:0x7f4fd97cf749
[  397.404354][T17378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  397.404441][T17378] RSP: 002b:00007f4fd822f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[  397.404512][T17378] RAX: ffffffffffffffda RBX: 00007f4fd9a25fa0 RCX: 00007f4fd97cf749
[  397.404526][T17378] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000007
[  397.404545][T17378] RBP: 00007f4fd822f090 R08: 0000000000000000 R09: 0000000000000000
[  397.404608][T17378] R10: 0000200000003b80 R11: 0000000000000246 R12: 0000000000000001
[  397.404621][T17378] R13: 00007f4fd9a26038 R14: 00007f4fd9a25fa0 R15: 00007ffc7d3949e8
[  397.404641][T17378]  </TASK>
[  397.590971][T17380] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4781'.
[  397.600171][T17376] ISOFS: unable to read i-node block
[  397.605604][T17367] EXT4-fs error (device loop3): ext4_ext_remove_space:2955: inode #15: comm syz.3.4776: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  397.624370][T17376] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  397.647384][T13507] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  397.693854][T17384] loop0: detected capacity change from 0 to 256
[  397.763770][T17384] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  397.875934][T17384] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  397.884551][T17384] FAT-fs (loop0): Filesystem has been set read-only
[  397.892710][T17392] siw: device registration error -23
[  397.903607][T17392] loop9: detected capacity change from 0 to 512
[  398.426474][   T29] audit: type=1326 audit(1764638612.712:13298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17406 comm="syz.8.4791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd97cf749 code=0x7ffc0000
[  398.452111][T17395] siw: device registration error -23
[  398.460654][T17395] loop1: detected capacity change from 0 to 512
[  398.498520][   T29] audit: type=1326 audit(1764638612.742:13299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17406 comm="syz.8.4791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd97cf749 code=0x7ffc0000
[  398.522932][   T29] audit: type=1326 audit(1764638612.742:13300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17406 comm="syz.8.4791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4fd97cf749 code=0x7ffc0000
[  398.546605][   T29] audit: type=1326 audit(1764638612.742:13301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17406 comm="syz.8.4791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd97cf749 code=0x7ffc0000
[  398.555549][T17413] loop8: detected capacity change from 0 to 2048
[  398.570838][   T29] audit: type=1326 audit(1764638612.742:13302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17406 comm="syz.8.4791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd97cf749 code=0x7ffc0000
[  398.601086][   T29] audit: type=1326 audit(1764638612.742:13303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17406 comm="syz.8.4791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7f4fd97cf749 code=0x7ffc0000
[  398.720776][T17413]  loop8: p1 < > p4
[  398.727537][T17413] loop8: p4 size 8388608 extends beyond EOD, truncated
[  398.735994][T17420] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4795'.
[  398.848285][T17424] wg1 speed is unknown, defaulting to 1000
[  399.022584][T17424] lo speed is unknown, defaulting to 1000
[  399.380584][T17430] siw: device registration error -23
[  399.560852][T17447] loop1: detected capacity change from 0 to 256
[  399.589828][T17447] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  399.745399][T17447] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  399.754096][T17447] FAT-fs (loop1): Filesystem has been set read-only
[  399.770086][T17449] siw: device registration error -23
[  399.780957][T17449] loop8: detected capacity change from 0 to 512
[  400.049647][T17456] loop9: detected capacity change from 0 to 2048
[  400.110158][T17456]  loop9: p1 < > p4
[  400.114489][T17456] loop9: p4 size 8388608 extends beyond EOD, truncated
[  400.228716][T17465] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  400.246930][T17465] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  400.463972][T17470] loop3: detected capacity change from 0 to 256
[  400.470643][T17470] msdos: Unknown parameter 'ÿÿÿÿ'
[  400.495400][T17470] wg1 speed is unknown, defaulting to 1000
[  400.502366][T17470] lo speed is unknown, defaulting to 1000
[  400.662262][T17469] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  401.081336][   T29] kauditd_printk_skb: 33 callbacks suppressed
[  401.081481][   T29] audit: type=1326 audit(1764638615.372:13337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17482 comm="syz.9.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  401.135543][T17483] loop9: detected capacity change from 0 to 256
[  401.212437][T17483] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  401.398642][T17493] siw: device registration error -23
[  401.448541][   T29] audit: type=1326 audit(1764638615.402:13338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17482 comm="syz.9.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  401.472235][   T29] audit: type=1326 audit(1764638615.402:13339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17482 comm="syz.9.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  401.495874][   T29] audit: type=1326 audit(1764638615.402:13340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17482 comm="syz.9.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  401.519593][   T29] audit: type=1326 audit(1764638615.402:13341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17482 comm="syz.9.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  401.543244][   T29] audit: type=1326 audit(1764638615.402:13342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17482 comm="syz.9.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f67e26ef749 code=0x7ffc0000
[  401.567005][   T29] audit: type=1326 audit(1764638615.412:13343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17482 comm="syz.9.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f67e26ef783 code=0x7ffc0000
[  401.590383][   T29] audit: type=1326 audit(1764638615.422:13344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17482 comm="syz.9.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f67e26ee1ff code=0x7ffc0000
[  401.613758][   T29] audit: type=1326 audit(1764638615.422:13345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17482 comm="syz.9.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f67e26ef7d7 code=0x7ffc0000
[  401.637484][   T29] audit: type=1326 audit(1764638615.422:13346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17482 comm="syz.9.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f67e26edf90 code=0x7ffc0000
[  402.016264][T17483] FAT-fs (loop9): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  402.024904][T17483] FAT-fs (loop9): Filesystem has been set read-only
[  402.114008][T17485] loop0: detected capacity change from 0 to 4096
[  402.171786][T17485] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  402.186693][T17501] tipc: New replicast peer: 255.255.255.255
[  402.193412][T17501] tipc: Enabled bearer <udp:syz2>, priority 10
[  402.326192][T13511] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  402.435717][T17509] loop1: detected capacity change from 0 to 1024
[  402.462266][T17511] loop9: detected capacity change from 0 to 1024
[  402.479122][T17511] EXT4-fs: Ignoring removed nomblk_io_submit option
[  402.491529][T17518] tipc: New replicast peer: 255.255.255.255
[  402.497626][T17518] tipc: Enabled bearer <udp:syz2>, priority 10
[  402.520023][T17523] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4826'.
[  402.531385][T17511] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  402.568409][T17511] System zones: 0-1, 3-36
[  402.573656][T17509] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  402.586647][T17511] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  402.609467][T17509] ext4 filesystem being mounted at /268/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  402.611774][T17529] loop0: detected capacity change from 0 to 1024
[  402.645235][T13479] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  402.659575][T17509] EXT4-fs error (device loop1): ext4_map_blocks:813: inode #15: comm syz.1.4821: lblock 0 mapped to illegal pblock 0 (length 5)
[  402.675419][T17509] EXT4-fs error (device loop1): ext4_ext_remove_space:2955: inode #15: comm syz.1.4821: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  402.696624][T17529] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  402.700974][T17532] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4830'.
[  402.727906][T17529] ext4 filesystem being mounted at /255/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  402.740753][T13482] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  402.770552][T17535] loop1: detected capacity change from 0 to 1024
[  402.781248][T17535] EXT4-fs: Ignoring removed nomblk_io_submit option
[  402.802431][T17529] netlink: 'syz.0.4828': attribute type 29 has an invalid length.
[  402.810474][T17529] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4828'.
[  402.820305][T17535] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a041c01c, mo2=0002]
[  402.829127][T17535] System zones: 0-1, 3-36
[  402.829148][T17529] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(14)
[  402.829170][T17529] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  402.829198][T17529] vhci_hcd vhci_hcd.0: Device attached
[  402.840322][T17543] vhci_hcd: connection closed
[  402.848272][T17535] 
[  402.849635][T17535] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  402.877632][T17540] IPv6: Can't replace route, no match found
[  402.922317][ T5899] vhci_hcd: stop threads
[  402.922596][T13482] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  402.926598][ T5899] vhci_hcd: release socket
[  402.939962][ T5899] vhci_hcd: disconnect device
[  402.990847][T17549] loop1: detected capacity change from 0 to 164
[  402.998516][T17549] ISOFS: unable to read i-node block
[  403.004161][T17549] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  403.004237][ T2992] ==================================================================
[  403.021207][ T2992] BUG: KCSAN: data-race in _prb_read_valid / data_alloc
[  403.028136][ T2992] 
[  403.030455][ T2992] write to 0xffffffff868759c0 of 8 bytes by task 17549 on cpu 0:
[  403.038333][ T2992]  data_alloc+0x274/0x2e0
[  403.042664][ T2992]  prb_reserve+0x807/0xaf0
[  403.047095][ T2992]  vprintk_store+0x56d/0x860
[  403.051704][ T2992]  vprintk_emit+0x10d/0x580
[  403.056216][ T2992]  vprintk_default+0x26/0x30
[  403.060798][ T2992]  vprintk+0x1d/0x30
[  403.064708][ T2992]  _printk+0x79/0xa0
[  403.068690][ T2992]  isofs_fill_super+0x116a/0x12b0
[  403.073719][ T2992]  get_tree_bdev_flags+0x291/0x300
[  403.078857][ T2992]  get_tree_bdev+0x1f/0x30
[  403.083271][ T2992]  isofs_get_tree+0x1c/0x30
[  403.087769][ T2992]  vfs_get_tree+0x57/0x1d0
[  403.092185][ T2992]  do_new_mount+0x24d/0x6a0
[  403.096690][ T2992]  path_mount+0x4ab/0xb80
[  403.101040][ T2992]  __se_sys_mount+0x28c/0x2e0
[  403.105722][ T2992]  __x64_sys_mount+0x67/0x80
[  403.110321][ T2992]  x64_sys_call+0x2cca/0x3000
[  403.115001][ T2992]  do_syscall_64+0xd2/0x200
[  403.119518][ T2992]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  403.125406][ T2992] 
[  403.127715][ T2992] read to 0xffffffff868759c0 of 16 bytes by task 2992 on cpu 1:
[  403.135338][ T2992]  _prb_read_valid+0x1bc/0x920
[  403.140105][ T2992]  prb_read_valid+0x3c/0x60
[  403.144612][ T2992]  syslog_print+0x146/0x540
[  403.149152][ T2992]  do_syslog+0x52b/0x7e0
[  403.153400][ T2992]  __x64_sys_syslog+0x41/0x50
[  403.158078][ T2992]  x64_sys_call+0x27ce/0x3000
[  403.162758][ T2992]  do_syscall_64+0xd2/0x200
[  403.167268][ T2992]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  403.173176][ T2992] 
[  403.175489][ T2992] Reported by Kernel Concurrency Sanitizer on:
[  403.181626][ T2992] CPU: 1 UID: 0 PID: 2992 Comm: klogd Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  403.192467][ T2992] Tainted: [W]=WARN
[  403.196252][ T2992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  403.206323][ T2992] ==================================================================
[  403.218062][ T3395] tipc: Node number set to 423315623
[  403.636395][T13511] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.