last executing test programs:

5m1.681845598s ago: executing program 1 (id=104):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001c110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000002c0)='rpm_return_int\x00', r0}, 0x10)
syz_open_dev$usbfs(&(0x7f0000000040), 0x12, 0x0)

5m1.634860602s ago: executing program 1 (id=109):
r0 = socket(0x2b, 0x80801, 0x1)
connect$inet6(r0, 0x0, 0x0)
setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000000)=0x3, 0x4)

5m1.569002577s ago: executing program 1 (id=112):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1208002, &(0x7f0000000100)={[{@grpquota}, {@delalloc}, {@resuid}, {@debug}, {@dioread_nolock}, {}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$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")
lchown(&(0x7f00000006c0)='./file0\x00', 0x0, 0xee01)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040))
chown(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)

5m1.453887977s ago: executing program 1 (id=115):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000e40)="$eJzs3T9oM2UcB/DvXRJf+75BXnURxD8gIloor5vg8rooFKQUEUGFioiL0gq1xa1xcnHQWaWTSxE3q6N0KS6K4FS1Q10ELQ4WBx0iybVS24ja1Jz0Ph+43l3vee73HLnvkyyXBGisq0muJ2klmU7SSVIcb3B3tVw93F2f2l5I+v0nfiqG7ar9ylG/K0l6SR5KslUWeamdrG4+s/fLzmP3vbnSuff9zaenJnqRh/b3dh8/eG/ujY9mH1z94qsf5opcT/dP13X+ihH/axfJLf9Fsf+Jol33CPgn5l/78OtB7m9Ncs8w/52UqV68t5Zv2OrkgXf/qu/bP355+yTHCpy/fr8zeA/s9YHGKZN0U5QzSartspyZqT7Df9O6XL68tPzq9ItLK4sv1D1TAeelm+w++smlj6+cyP/3rSr/wMU1yP+T8xvfDrYPWnWPBpiIO6rVIP/Tz63dH/mHxpF/aC75h+aSf2gu+Yfmkn9oLvmHC6xztNEbeVj+obnkH5pL/qG5jucfAGiW/qW6n0AG6lL3/AMAAAAAAAAAAAAAAAAAAJy2PrW9cLRMquZn7yT7jyRpj6rfGv4ecXLj8O/ln4tBsz8UVbexPHvXmCcY0wc1P31903f11v/8znrrry0mvdeTXGu3T99/xeH9d3Y3/83xzvNjFviXihP7Dz812fon/bZRb/3ZneTTwfxzbdT8U+a24Xr0/NM9/hXLZ/TKr2OeAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIn5PQAA//8PK23M")
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x1c, "ef359f41e236ffc6234b02e86dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x204]})
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0)

5m0.832579108s ago: executing program 1 (id=134):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000000c0)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000100)={0x1c, r1, 0x2586ad4018a3b31b, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8040}, 0x8030)

5m0.584693018s ago: executing program 1 (id=147):
pipe2(&(0x7f0000001440)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
splice(r2, 0x0, r1, 0x0, 0x6, 0x0)
sendmsg$NFNL_MSG_CTHELPER_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14, 0x1, 0x9, 0x101}, 0x14}}, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)

5m0.581105059s ago: executing program 32 (id=147):
pipe2(&(0x7f0000001440)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
splice(r2, 0x0, r1, 0x0, 0x6, 0x0)
sendmsg$NFNL_MSG_CTHELPER_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14, 0x1, 0x9, 0x101}, 0x14}}, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)

3m54.962628908s ago: executing program 2 (id=1443):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="0700000004000000000100000100000028000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b70300000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000380)=@newtaction={0x80, 0x30, 0x871a15abc695fb3d, 0x0, 0x0, {}, [{0x6c, 0x1, [@m_tunnel_key={0x68, 0x1, 0x0, 0x0, {{0xf}, {0x38, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_ENC_IPV4_SRC={0x8}, @TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{}, 0x1}}, @TCA_TUNNEL_KEY_ENC_IPV4_DST={0x8, 0x4, @remote}, @TCA_TUNNEL_KEY_ENC_KEY_ID={0x8}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x80}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x48)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000280)={0x77359400}, 0x0, 0x0)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000280)={'\x00', 0x7e, 0x1000, 0x5c8, 0x80000003, 0x6})
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x87)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r7}, 0x18)
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)

3m54.730214927s ago: executing program 2 (id=1448):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000001200)={0x0, 0xffffff1e, 0xffffffff, 0x4, 0x12, "001bf100eeff0000a2c2000100000000002000"})
r1 = syz_open_pts(r0, 0x101)
r2 = dup3(r1, r0, 0x0)
r3 = syz_open_procfs(0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000100), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

3m54.347070948s ago: executing program 2 (id=1449):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f00000000c0), 0x10)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$inet(r0, &(0x7f0000001b00)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="050000007402b8f4191db62b", 0xc}, {&(0x7f0000000440)="9f336d70bf41f19e47e98b4015e3b0384d86a1ceb4e530554ebc8154bf392bcf9ce0b09f879bd7aaf9d086e3", 0x2c}], 0x2}}, {{0x0, 0x0, &(0x7f0000000100), 0x2}}], 0x40000000000003a, 0x0)

3m54.260758025s ago: executing program 2 (id=1450):
mkdir(&(0x7f0000000540)='./file0\x00', 0x108)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f00000004c0)='cgroup2\x00', 0x0, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f00000002c0)='./file0/file0\x00', 0x0, 0x0, 0x101091, 0x0)

3m54.241087447s ago: executing program 2 (id=1451):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000079c0)={0x1a4, 0x19, 0x1, 0x0, 0x25dfdbfb, {0x1d, 0xd601, 0x9}, [@nested={0x50, 0x12, 0x0, 0x1, [@nested={0x4c, 0xf8, 0x0, 0x1, [@typed={0x14, 0x133, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}}, @nested={0x31, 0xfb, 0x0, 0x1, [@generic="b5416b2b80f72979594745504f3a0aa6b036f86ce32d83591c6224e53de96804e6172083eaaa90cf56dd042b72"]}]}]}, @nested={0x140, 0x6, 0x0, 0x1, [@nested={0x13c, 0xac, 0x0, 0x1, [@nested={0x138, 0x13e, 0x0, 0x1, [@nested={0x134, 0xa0, 0x0, 0x1, [@nested={0x130, 0x61, 0x0, 0x1, [@nested={0x12c, 0x9d, 0x0, 0x1, [@nested={0x128, 0x63, 0x0, 0x1, [@typed={0x8, 0x60, 0x0, 0x0, @uid}, @typed={0x4, 0xa5}, @nested={0x115, 0x90, 0x0, 0x1, [@nested={0xe1, 0x44, 0x0, 0x1, [@typed={0x8, 0xb0, 0x0, 0x0, @str='GPL\x00'}, @generic="a4f2bdc07e8cc0404f617143e4f7b263ba6fc1453ff8932426cb0b2024dd0f1b7350887762644cd52aa6864acdf7e959a84b3dad1bc88841ef786cbde7d6215a38138e3e97b04c17bbc1841901c1583a335075ea5754b2eaa78293f03551b0562fb5a45f1f7cbb3d6e117248069b9fb39c95d130e184c9b4c03c06137216485441b97dd59aa0e33633390ce64bf88da83639f53a9b25264f438337448c8ad49b7c34940dd9f68826e015c57dcb", @typed={0x4, 0x13a}, @nested={0x21, 0x5b, 0x0, 0x1, [@generic="bc6dad2ec06ca4d4fe3dd7c279ab0ab97e40888491432f6bcceedf3664"]}]}, @generic="f0d1352a224aadf38cc0be9a1bfc6ea31cfe9abdfc6e08360d8cf57b7256e18c92263487faf40caf4b040e15ce"]}]}]}]}]}]}]}]}]}, 0x1a4}, 0x1, 0x0, 0x0, 0x5}, 0x0)

3m54.150808184s ago: executing program 2 (id=1454):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000a40), 0x1, 0x55e, &(0x7f0000000a80)="$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")
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x389b0d52417bb201)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x6a000}], 0x1, 0x7000, 0x0, 0x3)

3m54.137057646s ago: executing program 33 (id=1454):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000a40), 0x1, 0x55e, &(0x7f0000000a80)="$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")
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x389b0d52417bb201)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x6a000}], 0x1, 0x7000, 0x0, 0x3)

3.544294039s ago: executing program 6 (id=4630):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x800)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f0000000000)={0x80, 0x40000028, 0x3, 0x1, 0x80000001})
close_range(r0, r0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x800)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r2, 0x4058534c, &(0x7f0000000180)={0x80, 0x2a, 0x3})

3.431586479s ago: executing program 6 (id=4634):
ioctl$PTP_PEROUT_REQUEST2(0xffffffffffffffff, 0x40383d0c, &(0x7f0000000240)={{0x20000000004, 0x4}, {0x0, 0xe}, 0xfffffffd, 0x1})
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
getsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x9, 0x0, &(0x7f0000001140))
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0100000003000000000000000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000002000000018910000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
r2 = gettid()
pause()
r3 = syz_open_procfs(r2, &(0x7f0000000080)='stack\x00')
pread64(r3, &(0x7f000001a240)=""/102400, 0x19000, 0x41e)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[], 0x74}}, 0x20000000)

2.92403683s ago: executing program 3 (id=4643):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdde, 0x0, 0x0, 0x0}, 0x94)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)
ioctl$MON_IOCX_GETX(r1, 0x4018920a, &(0x7f0000000180)={&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000a40)=""/4096, 0x1000})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x20c006, &(0x7f0000000480)={[{@debug}, {@mblk_io_submit}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@discard}, {@grpquota}], [{@seclabel}]}, 0x1, 0x446, &(0x7f0000000d40)="$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")
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
r6 = add_key$keyring(&(0x7f0000000280), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r6, &(0x7f0000000300)='asymmetric\x00', &(0x7f00000002c0)=@chain={'key_or_keyring:', r6})
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r8, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002ec0)={0x38, r7, 0x10ada85e65c25359, 0xfffffffd, 0x25dfdbfd, {{0x6b}, {@val={0x8}, @val={0xc, 0x99, {0x2, 0x72}}}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8, 0xd, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x4}]}]}]}]}, 0x38}}, 0x0)

2.712390418s ago: executing program 3 (id=4644):
r0 = socket$kcm(0x29, 0x5, 0x0)
sendmsg(r0, &(0x7f0000002ec0)={0x0, 0x0, &(0x7f0000002c40)=[{&(0x7f0000002b80)="b2", 0x1}], 0x1}, 0x4000)
close(r0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000140))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000200)='kfree\x00', 0xffffffffffffffff, 0x0, 0x80}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f00000015c0)='leases_conflict\x00'}, 0x18)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/mem_sleep', 0x101a02, 0x0)
copy_file_range(r3, &(0x7f0000000000)=0x7, r3, 0x0, 0x7, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'veth0_to_bridge\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=ANY=[@ANYBLOB="440000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800c0001006d616376746170000400028008000500", @ANYRES32=r4, @ANYBLOB="080003"], 0x44}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x7, 0x16, &(0x7f0000000380)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x271}, 0x94)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r3)
sendmsg$NL80211_CMD_STOP_SCHED_SCAN(r3, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)={0x74, r5, 0x400, 0x70bd27, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x4, 0x18}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x2f}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x6}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x18}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x2000000000000000}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x75}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x1d}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x24}]}, 0x74}}, 0x2400c050)
r6 = socket(0x8000000010, 0x6, 0xfffffffe)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
io_uring_setup(0x21a4, &(0x7f0000000000)={0x0, 0x75f, 0x10, 0x1, 0x11cb})
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0xc2f00, 0x4d, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000980)='mm_page_free\x00', r8}, 0x18)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
write(r6, &(0x7f0000000c40)="fc0000001c000704ab5b2509b86803000aab087a0400000001481193210001c0f0030584050060100000000000039815fa2c53c28648000000b9d95662537a00bc000c00f0ff7f0000b400600033d44000040560916a0033f436313012dafd5a32e273fc83ab82d710f74cec184406f90d435ef8b29d3ef3d92c94170e5bba2e177312e081bea05d3a021e8ca062914a46ccfc510bb73c9455cdc8363ae4f5df77bc4cfd6239ec2a0f0d1bcae5fa0f5f283f4bb102b2b8f5566791cf190201ded815b2ccd243f395ed94e0ad91bd6433802e0784f2013cd1890058a10000c880ac801fe4af0000d71da56c721dc51c3349f0d4796f00000905", 0xf9)
setsockopt$inet6_udp_encap(0xffffffffffffffff, 0x11, 0x64, &(0x7f0000000040)=0x2, 0x4)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)

2.643955603s ago: executing program 3 (id=4646):
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000017c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @multicast1}}}], 0x20}}], 0x1, 0x0)
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="160000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000b69e087b9d2f128b78000000200d255a26b88c194bc3c8e96bba0648e4d279a816d3117ca020b6c5e2848cd6e3da36d0ae091865cde291a45e78a7afe754c71dec9f5ad9c215af2400d261cd515af3c65bcb4723f733f46899687457f3990e40fccf819808065bcf8c4474dbc7c46fadd2f6eeff9219800209300d16f3127070e657ad786dd89bbadbe6f644a255dd79c7ae000000e4c5ae35e916a3891e97492ab401907ec97104f53bf4a84873b06bc24c1a380b64d5c76a594bd945f8556621bdd484b123d15a2380bd82c267d747254d12aaa96c434f34470da0f8a4facd"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000300)='io_uring_req_failed\x00', r3, 0x0, 0x8000000000000000}, 0x18)
r4 = syz_io_uring_setup(0x10b, 0x0, &(0x7f00000003c0)=<r5=>0x0, &(0x7f0000000340)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f00000002c0)=0x9, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_STATX={0x15, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x80, 0x6000})
io_uring_enter(r4, 0x1c3a, 0xe176, 0x22, 0x0, 0x0)
writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r1, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
r7 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r7, 0x0, 0x23, &(0x7f0000000080)={@multicast2, @loopback}, 0xc)
setsockopt$inet_msfilter(r7, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027fa80a"], 0x57)
setsockopt$inet_mreqsrc(r0, 0x0, 0x24, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={&(0x7f0000000000), 0xf}, 0x0, 0x10000, 0x0, 0x1, 0xa, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000180)='sys_enter\x00', r8}, 0x10)
io_setup(0x8, &(0x7f0000004200)=<r9=>0x0)
io_pgetevents(r9, 0x3, 0x3, &(0x7f0000000440)=[{}, {}, {}], &(0x7f00000004c0)={0x0, 0x3938700}, 0x0)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r10, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000000706030000000000000000000500000005000100070000000800064000000104"], 0x24}, 0x1, 0x0, 0x0, 0x24000050}, 0x44)
r11 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/ip_vs_stats_percpu\x00')
pread64(r11, &(0x7f000001a240)=""/102385, 0x18ff1, 0x100008)
syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='sched_switch\x00'}, 0x18)

2.56480945s ago: executing program 6 (id=4649):
pipe(&(0x7f0000000080))
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000002400))
pipe(&(0x7f00000001c0))
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000f000000850000007500000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x18)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r2=>0x0})
r3 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001300a7cc4a372eaf541d002007000000", @ANYRES32=r2, @ANYBLOB="00000000100000001c001a80080002802d80ff0008000200", @ANYRES16=r1, @ANYRES32=r3], 0x44}}, 0x0) (fail_nth: 3)

2.492661905s ago: executing program 6 (id=4650):
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000640)='./file0\x00')
acct(&(0x7f00000001c0)='./file0\x00')
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, &(0x7f0000000640)={0x2, 0x0, @loopback}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
mincore(&(0x7f0000f0c000/0x3000)=nil, 0x0, &(0x7f0000afaf0a)=""/246)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x16, 0x7, &(0x7f0000000540)=ANY=[@ANYRES64=r1, @ANYRES32=r2, @ANYRES16=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0xf4c2976d1cf75e2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3}, 0x18)
sendmsg$rds(r1, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}], 0x48}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000cc0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000c00)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="0100000000000000000003000000200001800d0001007564703a73797a32000000000c000280080003000700000057a90880dbaa47a180cb878c8ff3a7e7b4fc9fb077b2723918830f926f9e7186a92e188931cf910f393500000000c1112d0eec29a88aa65bb993ea7a9dd4ee52e4160983930e747060e553cf3f120fd856c825263bec8378d40b3397d3962ab78be8af5b51f8e638049fff5d2ac8bc5d"], 0x34}}, 0x0)
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
setresuid(0x0, 0xee00, 0x0)
syz_clone3(&(0x7f0000000380)={0x20080, 0x0, 0x0, 0x0, {0x28}, 0x0, 0x0, 0x0, &(0x7f0000000000)=[0xffffffffffffffff], 0x1}, 0x58)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
connect$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r8}, 0x10)
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r10, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0x1}}]}}, @TCA_RATE={0x6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48801}, 0x0)
r11 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r11, 0x8108551b, &(0x7f0000000000)={0x0, 0x0, "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"})
ioctl$USBDEVFS_SUBMITURB(r11, 0x8038550a, &(0x7f0000000400)=@urb_type_interrupt={0x1, {0x1, 0x1}, 0x0, 0x60, &(0x7f0000000300)='M', 0x1, 0xc, 0x0, 0x0, 0x5, 0x5f8480, 0x0})
r12 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYRESOCT=r3], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r12, @ANYRESOCT=r4], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)

2.492272265s ago: executing program 6 (id=4651):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b708000000000e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000020850000000100000095"], &(0x7f0000000280)='syzkaller\x00', 0xbab7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet6(0xa, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYRES8, @ANYRES64=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r3, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port1\x00', 0x72, 0x11cfa, 0x0, 0x8000007, 0x3, 0x4, 0x1, 0x0, 0x6})
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETA(r5, 0x5406, &(0x7f0000000280)={0xfeff, 0x8, 0x8, 0xfffe, 0x11, "0100000000000080"})
ioctl$TIOCL_GETMOUSEREPORTING(r5, 0x5412, &(0x7f00000006c0)=0xa)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r4, 0x40505330, &(0x7f00000001c0)={0x800100, 0xffffffff, 0x22, 0xe1d9, 0x1101, 0xff})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r4, 0x40505330, &(0x7f0000000140)={0x800100, 0xffffffff, 0x2, 0xe1db, 0x1101, 0xff})
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x0, 0x2710}, 0x10)
timer_create(0x85c7d5feb7ddec09, &(0x7f00000000c0)={0x0, 0x36, 0x2}, &(0x7f0000000100))

2.272685604s ago: executing program 3 (id=4655):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$inet6(0xa, 0x2, 0x0)
getsockopt$inet6_int(r0, 0x29, 0x49, 0x0, &(0x7f0000000100))
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2, 0x0, 0x3}, 0x18)
lsetxattr$security_capability(&(0x7f0000000080)='./cgroup/cgroup.procs\x00', &(0x7f0000000140), 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0x4, 0x10b, 0x4, 0x0, &(0x7f0000048000), 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000180)={'dummy0\x00', @remote})
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
mount$9p_fd(0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000780)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@version_L}, {@version_L}, {@access_uid}, {@directio}, {@aname={'aname', 0x3d, '#),]&!%[\'-#:\x84(]'}}, {@privport}, {@msize={'msize', 0x3d, 0xc1}}, {@access_uid}], [{@dont_measure}, {@euid_lt}, {@seclabel}, {@flag='ro'}]}})

2.254373685s ago: executing program 6 (id=4656):
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0xa)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2401, 0x0)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[], 0x15)
r3 = dup(r0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=@deltfilter={0x24, 0x2d, 0x200, 0x70bd2c, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0xf, 0x10}, {0x3, 0xe}, {0x4}}}, 0x24}, 0x1, 0x0, 0x0, 0xc0}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000001600)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x44, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
r5 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000000c0)={'syz_tun\x00', <r6=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005a40)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0xb4}}, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r7, &(0x7f00000002c0), 0x40000000000009f, 0x0)

2.112878067s ago: executing program 0 (id=4659):
ioctl$PTP_PEROUT_REQUEST2(0xffffffffffffffff, 0x40383d0c, &(0x7f0000000240)={{0x20000000004, 0x4}, {0x0, 0xe}, 0xfffffffd, 0x1})
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
getsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x9, 0x0, &(0x7f0000001140))
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0100000003000000000000000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000002000000018910000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
r2 = gettid()
pause()
r3 = syz_open_procfs(r2, &(0x7f0000000080)='stack\x00')
pread64(r3, &(0x7f000001a240)=""/102400, 0x19000, 0x41e)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[], 0x74}}, 0x20000000)

2.062773721s ago: executing program 4 (id=4660):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x800)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f0000000000)={0x80, 0x40000028, 0x3, 0x1, 0x80000001})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x800)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r3, 0x4058534c, &(0x7f0000000180)={0x80, 0x2a, 0x3})

2.025361454s ago: executing program 4 (id=4661):
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000640)='./file0\x00')
acct(&(0x7f00000001c0)='./file0\x00')
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, &(0x7f0000000640)={0x2, 0x0, @loopback}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
mincore(&(0x7f0000f0c000/0x3000)=nil, 0x0, &(0x7f0000afaf0a)=""/246)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x16, 0x7, &(0x7f0000000540)=ANY=[@ANYRES64=r1, @ANYRES32=r2, @ANYRES16=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0xf4c2976d1cf75e2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3}, 0x18)
sendmsg$rds(r1, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}], 0x48}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000cc0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000c00)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="0100000000000000000003000000200001800d0001007564703a73797a32000000000c000280080003000700000057a90880dbaa47a180cb878c8ff3a7e7b4fc9fb077b2723918830f926f9e7186a92e188931cf910f393500000000c1112d0eec29a88aa65bb993ea7a9dd4ee52e4160983930e747060e553cf3f120fd856c825263bec8378d40b3397d3962ab78be8af5b51f8e638049fff5d2ac8bc5d"], 0x34}}, 0x0)
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
setresuid(0x0, 0xee00, 0x0)
syz_clone3(&(0x7f0000000380)={0x20080, 0x0, 0x0, 0x0, {0x28}, 0x0, 0x0, 0x0, &(0x7f0000000000)=[0xffffffffffffffff], 0x1}, 0x58)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
connect$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r8}, 0x10)
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r10, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0x1}}]}}, @TCA_RATE={0x6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48801}, 0x0)
r11 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r11, 0x8108551b, &(0x7f0000000000)={0x0, 0x0, "ec9fe44d4dbe56a60274fcffffffffffffff14e315eeb406bfdd73835e57efa94b1a0275781c647aa7e3470c6028643b17832b10b386a6f73791011c26a9aa141f406e312295ee620a9a46577b9249b738fe7750bec83bf6ed5b67213fa7d6c0823fd154ed29ede1ff379742c3f0b46caa357d70ee438f901d7645c3f87e4b21482b76f2ad8eaac090272081f98fd2e3e5a63e006204df635e731a5bfcf142f4529517454618de595cd179445b4bdbf698b9986356f0ebf7d25a57774ef474f86a3ad24ae9f0bf94b99e6b87de5f79d383d05bb32701daed400785a49788f08caecc9e0c48a3740bbe6e1c1fd400cfdfe756bc00d08e36655c00"})
ioctl$USBDEVFS_SUBMITURB(r11, 0x8038550a, &(0x7f0000000400)=@urb_type_interrupt={0x1, {0x1, 0x1}, 0x0, 0x60, &(0x7f0000000300)='M', 0x1, 0xc, 0x0, 0x0, 0x5, 0x5f8480, 0x0})
r12 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYRESOCT=r3], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r12, @ANYRESOCT=r4], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)

2.017750334s ago: executing program 5 (id=4662):
r0 = socket$kcm(0x29, 0x5, 0x0)
sendmsg(r0, &(0x7f0000002ec0)={0x0, 0x0, &(0x7f0000002c40)=[{&(0x7f0000002b80)="b2", 0x1}], 0x1}, 0x4000)
close(r0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000140))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000200)='kfree\x00', 0xffffffffffffffff, 0x0, 0x80}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f00000015c0)='leases_conflict\x00'}, 0x18)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/mem_sleep', 0x101a02, 0x0)
copy_file_range(r3, &(0x7f0000000000)=0x7, r3, 0x0, 0x7, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'veth0_to_bridge\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=ANY=[@ANYBLOB="440000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800c0001006d616376746170000400028008000500", @ANYRES32=r4, @ANYBLOB="080003"], 0x44}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x7, 0x16, &(0x7f0000000380)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x271}, 0x94)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r3)
sendmsg$NL80211_CMD_STOP_SCHED_SCAN(r3, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)={0x74, r5, 0x400, 0x70bd27, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x4, 0x18}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x2f}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x6}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x18}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x2000000000000000}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x75}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x1d}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x24}]}, 0x74}}, 0x2400c050)
r6 = socket(0x8000000010, 0x6, 0xfffffffe)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
io_uring_setup(0x21a4, &(0x7f0000000000)={0x0, 0x75f, 0x10, 0x1, 0x11cb})
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0xc2f00, 0x4d, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000980)='mm_page_free\x00', r8}, 0x18)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
write(r6, &(0x7f0000000c40)="fc0000001c000704ab5b2509b86803000aab087a0400000001481193210001c0f0030584050060100000000000039815fa2c53c28648000000b9d95662537a00bc000c00f0ff7f0000b400600033d44000040560916a0033f436313012dafd5a32e273fc83ab82d710f74cec184406f90d435ef8b29d3ef3d92c94170e5bba2e177312e081bea05d3a021e8ca062914a46ccfc510bb73c9455cdc8363ae4f5df77bc4cfd6239ec2a0f0d1bcae5fa0f5f283f4bb102b2b8f5566791cf190201ded815b2ccd243f395ed94e0ad91bd6433802e0784f2013cd1890058a10000c880ac801fe4af0000d71da56c721dc51c3349f0d4796f00000905", 0xf9)
setsockopt$inet6_udp_encap(0xffffffffffffffff, 0x11, 0x64, &(0x7f0000000040)=0x2, 0x4)
r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETSW(r9, 0x5435, 0x0)

2.010503515s ago: executing program 4 (id=4663):
socket(0x28, 0x5, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0xbab7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet_int(r0, 0x0, 0xf, &(0x7f0000d10ffc)=0xfffffffffffffff9, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r2=>r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYRES8=r2, @ANYRES64], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r4, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port1\x00', 0x72, 0x11cfa, 0x0, 0x8000007, 0x3, 0x4, 0x1, 0x0, 0x6})
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
r6 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCL_GETMOUSEREPORTING(r6, 0x5412, &(0x7f0000000640)=0x13)
ioctl$TCSETA(r6, 0x5406, &(0x7f0000000280)={0xfeff, 0x8, 0x8, 0xfffe, 0x11, "0100000000000080"})
ioctl$TIOCL_GETMOUSEREPORTING(r6, 0x5412, &(0x7f00000006c0)=0xa)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r5, 0x40505330, &(0x7f00000001c0)={0x800100, 0xffffffff, 0x22, 0xe1d9, 0x1101, 0xff})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r5, 0x40505330, &(0x7f0000000140)={0x800100, 0xffffffff, 0x2, 0xe1db, 0x1101, 0xff})
close(r4)

1.996794376s ago: executing program 4 (id=4664):
symlink(&(0x7f0000000000)='.\x00', &(0x7f0000000100)='./file0\x00')
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000280)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1802000066000000"], 0x0, 0x7ff}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r2, 0x0, 0x2}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00'}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='fdinfo\x00')
socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r4, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xa, 0x101, 0x7ffc, 0xcc}, 0x50)
getdents64(r3, &(0x7f0000000040)=""/44, 0x2c)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1018e58, &(0x7f00000001c0), 0x6, 0x5fc, &(0x7f0000000600)="$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")
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
stat(&(0x7f0000000080)='./file0\x00', &(0x7f00000004c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000002c0)='kfree\x00', r5, 0x0, 0x9}, 0x64)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a30000000000900030073797a310000000038000000030a01040000000000000000010f00010900030073797a32000000000c00024000000000000000010900010073797a30"], 0xac}, 0x1, 0x0, 0x0, 0x8040}, 0x0)

1.927033472s ago: executing program 5 (id=4665):
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000240)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x6}}, './file0\x00'})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@bloom_filter={0x1e, 0x8000, 0xc7b4, 0x0, 0x1a42, 0x1, 0x80000000, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x1, 0x1, 0x5}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000400850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
r2 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0)
munmap(&(0x7f0000002000/0x2000)=nil, 0x2000)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="02000000040000000800000009"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0xc, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000fdffffff00000000b702000018110000", @ANYRES32=r3, @ANYRESDEC=r3], &(0x7f0000000180)='syzkaller\x00', 0xb, 0xfea, &(0x7f0000001e00)=""/4074}, 0x94)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r4}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000006000000000000000000850000000700000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, 0x2}, 0x94)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="200000003e000701fcf7fffffedbdf25017c00000c0004"], 0x20}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$gtp(&(0x7f00000003c0), 0xffffffffffffffff)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r8 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
linkat(r8, &(0x7f0000000440)='./file0/file0\x00', 0xffffffffffffffff, 0x0, 0x1400)
sendmsg$GTP_CMD_NEWPDP(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000004c0)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r7, @ANYBLOB='\a\x00', @ANYRES32, @ANYBLOB="08000400000000000c0003000000000000000100080005000000000008000100", @ANYRES32=0x0, @ANYBLOB="0800020000000000060006"], 0x50}}, 0x0)
getsockopt$PNPIPE_IFINDEX(r2, 0x113, 0x2, &(0x7f0000000080)=<r9=>0x0, &(0x7f00000000c0)=0x4)
sendmsg$GTP_CMD_NEWPDP(r2, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x58, r7, 0x8, 0x70bd2b, 0x25dfdbfc, {}, [@GTPA_MS_ADDR6={0x14, 0xc, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}}, @GTPA_NET_NS_FD={0x8, 0x7, r2}, @GTPA_LINK={0x8, 0x1, r9}, @GTPA_PEER_ADDR6={0x14, 0xb, @loopback}, @GTPA_TID={0xc, 0x3, 0x2}]}, 0x58}, 0x1, 0x0, 0x0, 0x4004015}, 0x1)
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0a000000020000000900000008"], 0x48)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000000)='kfree\x00', r11}, 0x18)
socket$netlink(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000300)={[{@grpquota}, {@noauto_da_alloc}, {@quota}, {@stripe}, {@jqfmt_vfsold}]}, 0xfd, 0x4ff, &(0x7f0000000ac0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLCSG0EmKPILUhcaModhzFTmlCD+mZKxKVOMGRP4BzT9y5ILhxKQckfkSgBomDVzOepG5iN1GT2FH8+UijeW/e1N/3ks579TeNXwBD63pE7EbEWETcjYjp7HouO+KT9pHc92zv4dL+3sOlXLRan/0rl7Yn16LjzySuZa9ZjIgffS/ip7njcRvbO2uL1WplM6vPNmsbs43tnVurtcWVykplvVxemF+Y++j2h+VzG+s7tbGs9NWnf9z91s+Tbk1lVzrHcZ7aQy8cxkmMRsQPLiLYAIxk4xkbdEd4JfmIeDMi3k2f/+kYSb+bAMBV1mpNR2u6sw4AXHX5NAeWy5eyXMBU5POlUjuH91ZM5qv1RvPmvfrW+nI7VzYThfy91WplLssVzkQhl9Tn0/LzevlI/XZEvBERvxyfSOulpXp1eZD/8AGAIXbtyPr/3/H2+g8AXHHFQXcAAOg76z8ADB/rPwAMH+s/AAyf9vo/MehuAAB95P0/AAwf6z8ADJUffvppcrT2s8+/Xr6/vbVWv39rudJYK9W2lkpL9c2N0kq9vpJ+Zk/tpNer1usb8x/E1oOZb280mrON7Z07tfrWevNO+rnedyqF9K7dPowMAOjljXee/CWXrMgfT6RHdOzlUBhoz4CLlh90B4CBGRl0B4CBsdsXDK8zvMeXHoArossWvS8odvsFoVar1bq4LgEX7MaX5P9hWHXk//0vYBgy8v8wvOT/YXi1WrnT7vkfp70RALjc5PiBHj//fzM7/y774cBPlo/e8fgiewUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACX28H+v6VsL/CpyOdLpYjXImImCrl7q9XKXES8HhF/Hi+MJ/X5AfcZADir/N9z2f5fN6bfn3qh6e1rh8WxiPjZrz/71YPFZnPzTxFjuX+PH1xvPs6ul/vfewDgZAfrdHrueCP/bO/h0sHRz/7847sRUWzH398bi/3D+KMxmp6LUYiIyf/ksnpbriN3cRa7jyLii93Gn4upNAfS3vn0aPwk9mt9jZ9/IX4+bWufk6/FF86hLzBsniTzzyfdnr98XE/P3Z//YjpDnV02/yUvtbSfzoHP4x/MfyM95r/rp43xwR++3y5NHG97FPHl0YiD2Psd889B/FyP+O+fMv5fv/L2u73aWr+JuBHd43fGmm3WNmYb2zu3VmuLK5WVynq5vDC/MPfR7Q/Ls2mOerb3avDPj2++3qstGf9kj/jFE8b/9Xbx+Bf1iN/+/+6Pv/aS+N98r1v8fLz1kvjJmviNkwJnFid/X+zVlsRf7jH+k77/N08Z/+nfdo5tGw4ADE5je2dtsVqtbCooXP5C8lf2EnSja+E7/Yo1Ft2bfvFe+5k+0tRqvVKsXjPGeWTdgMvg8KGPiP8NujMAAAAAAAAAAAAAAEBX/fiNpUGPEQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgKvr8wAAAP//j5zPLA==")
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f0000000300), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
unlink(&(0x7f0000000180)='./file1\x00')

1.764982815s ago: executing program 5 (id=4666):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r2, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000440)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x4000c00}, 0x0)

1.744587137s ago: executing program 5 (id=4667):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x4c000)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000500000095"], 0x0, 0x2, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$isdn_base(0x22, 0x3, 0x0)
flistxattr(r3, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x67709000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="611230000000000061134c0000000000bf2000000000000016001000071b48013d030100000000000f02000000000000bc26100000000000bf67200000000000160200000fff07006702000007000000360600000ee600f0bf050000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a83683d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf5fe7030586"], &(0x7f0000000100)='GPL\x00'}, 0x48)

1.734426298s ago: executing program 4 (id=4668):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x4c000)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000500000095"], 0x0, 0x2, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
flistxattr(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x67709000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="611230000000000061134c0000000000bf2000000000000016001000071b48013d030100000000000f02000000000000bc26100000000000bf67200000000000160200000fff07006702000007000000360600000ee600f0bf050000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a83683d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf5fe7030586"], &(0x7f0000000100)='GPL\x00'}, 0x48)

1.333939981s ago: executing program 3 (id=4670):
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket(0x1, 0x803, 0x0)
getpeername(r1, 0x0, 0x0)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fsetxattr$trusted_overlay_upper(r2, &(0x7f00000012c0), 0x0, 0x0, 0x0)
fremovexattr(r2, &(0x7f0000002480)=@known='trusted.overlay.upper\x00')
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x10, 0x803, 0x0)
socket$unix(0x1, 0x5, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0)
r4 = socket(0x23, 0x2, 0x0)
getsockname$tipc(r4, 0x0, &(0x7f0000000300))
sendmsg$nl_route_sched(r3, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x34, 0x2c, 0xd27, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, 0x0, {0x8, 0x4}, {}, {0x5, 0xf}}, [@filter_kind_options=@f_flow={{0x9}, {0x4}}]}, 0x34}}, 0x20040054)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a0904000000000000000002000000400004803c0001800e000100696d6d656469617465000000280002801c0002801800028006000180fffffffd0900020073797a320000000008000140000000000900010073797a30000000000900020073797a32"], 0xa8}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x80000, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0)
flock(r6, 0x2)
r7 = open(&(0x7f00000001c0)='.\x00', 0x60000, 0x0)
flock(r7, 0x2)
r8 = open(&(0x7f0000000180)='.\x00', 0x10000, 0x0)
flock(r8, 0x1)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f0000000500)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r9}, 0x10)
r10 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000080)={'veth0_vlan\x00'})

1.246539038s ago: executing program 0 (id=4671):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000074"], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r0}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000007040)={{0x14}, [@NFT_MSG_NEWRULE={0x30, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0x9}, [@NFTA_RULE_EXPRESSIONS={0x4}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x58}}, 0x0)

1.187747692s ago: executing program 0 (id=4672):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r1)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000800)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0103000000000000000001000000080001001400000008000300", @ANYRES64=r0], 0x30}}, 0x44)

1.105059429s ago: executing program 0 (id=4673):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200"/48, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000040000000000000000000000000000000000000000000000000000100"/102], 0xfc}}, 0x0)
r2 = socket$inet6(0xa, 0x805, 0x0)
getsockopt$bt_hci(r2, 0x84, 0x81, &(0x7f0000000080)=""/4060, &(0x7f00000010c0)=0xfdc)
syz_mount_image$ext4(&(0x7f0000001240)='ext4\x00', &(0x7f00000012c0)='./bus\x00', 0x404, &(0x7f0000001280)={[{@debug}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x3}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r4, &(0x7f0000004200)='t', 0x1)
openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000001200), 0x1, 0x0)
sendfile(r4, r3, 0x0, 0x3ffff)
sendfile(r4, r3, 0x0, 0x7ffff000)

437.740594ms ago: executing program 0 (id=4674):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
socket$rds(0x15, 0x5, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
bind$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x1}, 0x6e)
listen(0xffffffffffffffff, 0x100)
unshare(0x20000400)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000500)={'veth1\x00', &(0x7f0000000200)=@ethtool_per_queue_op={0x4b, 0xf, [0xa, 0x1, 0x7fff, 0x1, 0x4, 0x9, 0xa4, 0xffb, 0x7, 0xb69, 0xc1, 0x4, 0x1, 0x3, 0x5, 0x101, 0x1000, 0x9, 0x3, 0x3, 0x1, 0xfffffffa, 0x0, 0x6, 0x9, 0x4, 0x7, 0x5, 0x100000, 0x762, 0x3, 0x0, 0xe, 0x2b12, 0x100, 0x6, 0x1c00, 0xb, 0x40, 0xbed4, 0x8, 0x8000100, 0x2, 0x0, 0x11000, 0x8, 0x5, 0x79b, 0x2, 0x1, 0x7f, 0x4, 0xa, 0x7, 0xf, 0x101, 0xd7, 0x1fa0860a, 0x7, 0xaa, 0x81, 0x9, 0x180000, 0x4007, 0x8b, 0x5, 0x2af, 0xf7, 0x5, 0x2, 0x6, 0x9, 0x4, 0x7, 0x4009, 0x0, 0x4, 0x100002, 0x8, 0x752, 0x0, 0x3, 0x0, 0x10001, 0x2, 0xffffffff, 0x6, 0x6, 0x9, 0x80000000, 0xfdffffff, 0x2, 0xfffffffe, 0x84, 0x100, 0x5, 0x252, 0x81, 0xb, 0x5, 0x20006, 0x7, 0x2, 0xb, 0x4, 0xd9a, 0xd, 0x2a2, 0xfffffffd, 0x3, 0x2, 0x5, 0x8, 0x0, 0x4, 0x2, 0x3b, 0x8, 0x4, 0x4, 0x401, 0x66cd, 0x8, 0x8, 0x1, 0x1fc, 0xc5c, 0xffffffff]}})
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000080), 0x67, 0x52b, &(0x7f0000000a00)="$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")
r2 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
r3 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
write$binfmt_register(r3, &(0x7f0000000440)={0x3a, 'syz1', 0x3a, 'M', 0x3a, 0x0, 0x3a, 'usrjquota=', 0x3a, '', 0x3a, './file2', 0x3a, [0x46]}, 0x32)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r2, 0x7, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

377.731719ms ago: executing program 5 (id=4675):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0)
socket$inet6(0xa, 0x805, 0x0)
syz_mount_image$ext4(&(0x7f0000001240)='ext4\x00', &(0x7f00000012c0)='./bus\x00', 0x404, &(0x7f0000001280)={[{@debug}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x3}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, r2, 0x0, 0x3ffff)

295.299686ms ago: executing program 4 (id=4676):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r2, 0x27, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5a, 0x0, 0x0}, 0x40)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r3, 0xffffffffffffffff, 0x0)

167.558666ms ago: executing program 3 (id=4677):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r2, 0x27, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5a, 0x0, 0x0}, 0x40)

156.248847ms ago: executing program 0 (id=4678):
symlink(&(0x7f0000000000)='.\x00', &(0x7f0000000100)='./file0\x00')
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000280)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1802000066000000"], 0x0, 0x7ff}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r2, 0x0, 0x2}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00'}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='fdinfo\x00')
socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r4, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xa, 0x101, 0x7ffc, 0xcc}, 0x50)
getdents64(r3, &(0x7f0000000040)=""/44, 0x2c)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1018e58, &(0x7f00000001c0), 0x6, 0x5fc, &(0x7f0000000600)="$eJzs3c9rHGUfAPDvzCZ5kzavaUXEFsWAhxakaVKLVS+29WAPBQv2IOKhoUlq6PYHTQq2FkzBg4KCiFeRXvwHvEvv3kRQb56FKlJRUOnK7M62m2Q3XdPsTpr5fGCzz/PM7D7PdydP5pmZPDsBlNZ49iON2BVx51QSMdaybDQaC8fz9W7/du109kiiVnv91ySSvKy5fpI/b88zwxHx7dGIRyur6124cvXsdLXW8F7E/sVzF/cvXLm6b/7c9JnZM7Pnpw68cPDQ5ItTB6c2JM7t+fOx4689+fH7bz8/9111XxKH4+TguzOxIo6NMh7jcScPsbV8ICIOZYk2n8vDZguEUGqV/PdxMCIej7Go1HMNYzH/UaGNA3qqVomoASWV6P9QUs1xQPPYvrvj4JM9HpX0z60jjQOg1fEPNM6NxHD92Gjb7aTlyKhxbmPHBtSf1fHPtd2fZ49Ydh7iz7tbZ2AD6ulk6XpEPNEu/qTeth31SLP402XtSCJiMiKG8va98gBtSFrSvTgPs5b1xp9GxOH8OSs/us76x1fk+x0/AOV080i+I1/Kcvf2f9nYozn+iTbjn9E2+671KHr/13n819zfD9fPkacrxmHZmOVE+7ccXFnw04fHPu1Uf+v4L3tk9TfHgv1w63rE7hXxf5AFm49/sviTNts/W+XU4e7qePX7X451WlZ0/LUbEXvaHv/cG5VmqTWuT+6fm6/OTjZ+tq3j62/e+rJT/UXHn23/bR3ib9n+6crXZZ/JxS7r+OrEjXOdlo3eN/7056Gkcbw5lJe8M724eGkqYig5nq/SUn5g7bY012m+Rxb/3mfa9/9lv//Xl7/PSPNPZhcuvnH2dqdl69n+LReT79S6bEMnWfwz99/+q/p/VvZJl3X88eblpzotWyv+kQcJDAAAAAAAAEoorV+DTdKJu+k0nZhozJd9LLal1QsLi8/OXbh8fiZib/3/IQfT5pXusUY+yfJT+f/DNvMHVuSfi4idEfFZZaSenzh9oTpTdPAAAAAAAAAAAAAAAAAAAACwSWzP5/8371P9e6Ux/x8oiV7eYA7Y3PR/KK96/191iyegDOz/obz0fygv/R/KS/+H8tL/obz0fygv/R/KS/8HAAAAgC1p59M3f0wiYumlkfojM5QvMyMItrbBohsAFKZSdAOAwty99G+wD6XT1fj/r/zLAXvfHKAASbvC+uCgtnbnv9n2lQAAAAAAAAAAAABAD+zZ1Xn+v7nBsLWZ9gfl9QDz/311ADzkfPU/lJdjfOB+s/iHOy0w/x8AAAAAAAAAAAAA+ma0/kjSiXwu8Gik6cRExP8jYkcMJnPz1dnJiHgkIn6oDP4vy08V3WgAAAAAAAAAAAAAAAAAAADYYhauXD07Xa3OXmpN/L2qZGsnmndB7UNdL8d/fFUk/f9YRiKi8I3Ss8RAS0kSsZRt+U3RsEsLsTmaUU8U/IcJAAAAAAAAAAAAAAAAAABKqGXucXu7v+hziwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACg/+7d/793iaJjBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeTv8GAAD//7V5QCw=")
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
stat(&(0x7f0000000080)='./file0\x00', &(0x7f00000004c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000002c0)='kfree\x00', r5, 0x0, 0x9}, 0x64)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a30000000000900030073797a310000000038000000030a01040000000000000000010f00010900030073797a32000000000c00024000000000000000010900010073797a30"], 0xac}, 0x1, 0x0, 0x0, 0x8040}, 0x0)

0s ago: executing program 5 (id=4679):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$inet6(0xa, 0x2, 0x0)
getsockopt$inet6_int(r0, 0x29, 0x49, 0x0, &(0x7f0000000100))
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2, 0x0, 0x3}, 0x18)
lsetxattr$security_capability(&(0x7f0000000080)='./cgroup/cgroup.procs\x00', &(0x7f0000000140), 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0x4, 0x10b, 0x4, 0x0, &(0x7f0000048000), 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000180)={'dummy0\x00', @remote})
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
mount$9p_fd(0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000780)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@version_L}, {@version_L}, {@access_uid}, {@directio}, {@aname={'aname', 0x3d, '#),]&!%[\'-#:\x84(]'}}, {@privport}, {@msize={'msize', 0x3d, 0xc1}}, {@access_uid}], [{@dont_measure}, {@euid_lt}, {@seclabel}, {@flag='ro'}]}})

kernel console output (not intermixed with test programs):

 Unknown parameter 'devtmpfs'
[  317.235822][T15788] random: crng reseeded on system resumption
[  317.327046][T15800] loop0: detected capacity change from 0 to 764
[  317.463223][T11927] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  317.531844][T15811] loop5: detected capacity change from 0 to 1024
[  317.637412][T15811] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  317.702674][T15811] System zones: 0-1, 3-36
[  317.707849][T15811] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  317.920791][T15826] loop6: detected capacity change from 0 to 256
[  318.008524][T15826] FAT-fs (loop6): codepage cp862 not found
[  318.167717][T13414] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  318.431594][T15835] loop0: detected capacity change from 0 to 256
[  318.596897][T15835] FAT-fs (loop0): codepage cp862 not found
[  318.603175][T15843] loop5: detected capacity change from 0 to 764
[  318.613620][T15843] iso9660: Unknown parameter 'devtmpfs'
[  318.693265][T15850] random: crng reseeded on system resumption
[  318.720400][T15853] __nla_validate_parse: 4 callbacks suppressed
[  318.720413][T15853] netlink: 68 bytes leftover after parsing attributes in process `syz.3.4098'.
[  318.746472][T15853] loop3: detected capacity change from 0 to 1024
[  318.914890][T15853] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  318.939031][T15853] System zones: 0-1, 3-36
[  318.951644][T15856] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  318.980650][T15853] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  319.088177][T15862] loop6: detected capacity change from 0 to 512
[  319.152738][T15862] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  319.221335][T15870] netlink: 132 bytes leftover after parsing attributes in process `syz.5.4104'.
[  319.326133][   T29] kauditd_printk_skb: 383 callbacks suppressed
[  319.326257][   T29] audit: type=1326 audit(1753930583.266:9748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15872 comm="syz.0.4105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f94e3a15967 code=0x7ffc0000
[  319.431596][   T29] audit: type=1326 audit(1753930583.296:9749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15872 comm="syz.0.4105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f94e39bab89 code=0x7ffc0000
[  319.455163][   T29] audit: type=1326 audit(1753930583.296:9750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15872 comm="syz.0.4105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f94e3a15967 code=0x7ffc0000
[  319.478979][   T29] audit: type=1326 audit(1753930583.296:9751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15872 comm="syz.0.4105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f94e39bab89 code=0x7ffc0000
[  319.502500][   T29] audit: type=1326 audit(1753930583.296:9752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15872 comm="syz.0.4105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e3a1e9a9 code=0x7ffc0000
[  319.526006][   T29] audit: type=1326 audit(1753930583.296:9753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15872 comm="syz.0.4105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94e3a1e9a9 code=0x7ffc0000
[  319.537162][T15879] netlink: 68 bytes leftover after parsing attributes in process `syz.0.4106'.
[  319.549573][   T29] audit: type=1326 audit(1753930583.296:9754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15872 comm="syz.0.4105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e3a1e9a9 code=0x7ffc0000
[  319.579319][T15879] loop0: detected capacity change from 0 to 1024
[  319.581945][   T29] audit: type=1326 audit(1753930583.296:9755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15872 comm="syz.0.4105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94e3a1e9a9 code=0x7ffc0000
[  319.611734][   T29] audit: type=1326 audit(1753930583.296:9756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15872 comm="syz.0.4105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f94e3a15967 code=0x7ffc0000
[  319.635204][   T29] audit: type=1326 audit(1753930583.296:9757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15872 comm="syz.0.4105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f94e39bab89 code=0x7ffc0000
[  319.699935][T15882] loop4: detected capacity change from 0 to 764
[  319.706523][T15882] iso9660: Unknown parameter 'devtmpfs'
[  319.713047][T15879] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  319.715075][T12603] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  319.749712][T15879] System zones: 0-1, 3-36
[  319.763188][T15879] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  319.831109][T15887] netlink: 68 bytes leftover after parsing attributes in process `syz.3.4108'.
[  319.846174][T15887] loop3: detected capacity change from 0 to 1024
[  319.863027][T15887] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  319.872944][T15887] System zones: 0-1, 3-36
[  319.878346][T15887] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  319.935259][ T7549] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  320.407599][T12603] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  320.465073][T15909] netlink: 68 bytes leftover after parsing attributes in process `syz.6.4119'.
[  320.477563][T15910] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4115'.
[  320.523577][T15910] loop4: detected capacity change from 0 to 512
[  320.546188][T15910] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.4115: bg 0: block 16: invalid block bitmap
[  320.558823][T15910] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  320.567787][T15910] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #13: comm syz.4.4115: attempt to clear invalid blocks 1669132790 len 1
[  320.581701][T15910] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.4115: invalid indirect mapped block 4294967295 (level 1)
[  320.595942][T15910] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.4115: invalid indirect mapped block 4294967295 (level 2)
[  320.611483][T15910] EXT4-fs (loop4): 1 truncate cleaned up
[  320.618037][T15910] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  320.682808][T15909] loop6: detected capacity change from 0 to 1024
[  320.733046][T12170] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  320.737012][T15909] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  320.751861][T15909] System zones: 0-1, 3-36
[  320.757138][T15909] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  320.796934][T15916] loop0: detected capacity change from 0 to 764
[  320.808714][T15916] iso9660: Unknown parameter 'devtmpfs'
[  320.817062][T15915] netlink: 132 bytes leftover after parsing attributes in process `syz.3.4117'.
[  320.998515][T15933] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  321.055224][T15937] loop0: detected capacity change from 0 to 512
[  321.134809][ T7549] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.144351][T11927] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.145644][T15937] EXT4-fs (loop0): orphan cleanup on readonly fs
[  321.158858][T15941] random: crng reseeded on system resumption
[  321.196856][T15937] EXT4-fs error (device loop0): ext4_orphan_get:1419: comm syz.0.4128: bad orphan inode 13
[  321.225325][T15937] ext4_test_bit(bit=12, block=18) = 1
[  321.230784][T15937] is_bad_inode(inode)=0
[  321.234930][T15937] NEXT_ORPHAN(inode)=2130706432
[  321.239876][T15937] max_ino=32
[  321.243109][T15937] i_nlink=1
[  321.290047][T15937] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  321.290595][T15947] loop5: detected capacity change from 0 to 1024
[  321.309797][T15947] EXT4-fs: inline encryption not supported
[  321.315631][T15947] EXT4-fs: Ignoring removed i_version option
[  321.344019][T15947] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  321.368514][T15947] EXT4-fs error (device loop5): ext4_map_blocks:816: inode #3: block 1: comm syz.5.4132: lblock 1 mapped to illegal pblock 1 (length 1)
[  321.428722][T15947] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.4132: Failed to acquire dquot type 0
[  321.449200][T15937] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  321.481881][T15937] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.4128: bg 0: block 248: padding at end of block bitmap is not set
[  321.509983][T15937] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.4128: Failed to acquire dquot type 1
[  321.532600][T15947] EXT4-fs error (device loop5): ext4_free_blocks:6587: comm syz.5.4132: Freeing blocks not in datazone - block = 0, count = 4096
[  321.565904][T15937] EXT4-fs warning (device loop0): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  321.583368][T15947] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.4132: Invalid inode bitmap blk 0 in block_group 0
[  321.606954][T14594] EXT4-fs error (device loop5): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:17: lblock 1 mapped to illegal pblock 1 (length 1)
[  321.621758][T15947] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[  321.634077][T15947] EXT4-fs (loop5): 1 orphan inode deleted
[  321.639441][T14594] EXT4-fs error (device loop5): ext4_release_dquot:6969: comm kworker/u8:17: Failed to release dquot type 0
[  321.664208][T15947] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  321.701270][T12170] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.718275][T15968] loop3: detected capacity change from 0 to 512
[  321.719507][T15947] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4132'.
[  321.770183][T15968] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  321.776927][T15947] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4132'.
[  321.797848][T15947] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5134 sclass=netlink_route_socket pid=15947 comm=syz.5.4132
[  321.814896][T15947] EXT4-fs error (device loop5): ext4_lookup:1787: inode #15: comm syz.5.4132: iget: bad extra_isize 65535 (inode size 256)
[  321.867304][T13414] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.974773][T15983] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  322.071348][T15991] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  322.114729][T15993] loop5: detected capacity change from 0 to 512
[  322.142030][T15993] EXT4-fs (loop5): orphan cleanup on readonly fs
[  322.156838][T15993] EXT4-fs error (device loop5): ext4_orphan_get:1419: comm syz.5.4150: bad orphan inode 13
[  322.205139][T15993] ext4_test_bit(bit=12, block=18) = 1
[  322.210667][T15993] is_bad_inode(inode)=0
[  322.214808][T15993] NEXT_ORPHAN(inode)=2130706432
[  322.219690][T15993] max_ino=32
[  322.222939][T15993] i_nlink=1
[  322.242146][T15993] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  322.258733][T16000] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  322.295805][T15993] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  322.361579][T15993] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.4150: bg 0: block 248: padding at end of block bitmap is not set
[  322.379392][T15993] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.4150: Failed to acquire dquot type 1
[  322.410128][T15993] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  322.505962][T13414] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  322.532838][T16007] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4156'.
[  322.627097][T16008] loop4: detected capacity change from 0 to 512
[  322.905221][T16012] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  322.913590][T12603] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  322.915001][T16008] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.4154: bg 0: block 16: invalid block bitmap
[  322.939147][T16008] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  322.949530][T16008] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #13: comm syz.4.4154: attempt to clear invalid blocks 1669132790 len 1
[  322.969513][T16008] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.4154: invalid indirect mapped block 4294967295 (level 1)
[  322.975067][T16016] loop5: detected capacity change from 0 to 512
[  322.991654][T16008] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.4154: invalid indirect mapped block 4294967295 (level 2)
[  323.015232][T16008] EXT4-fs (loop4): 1 truncate cleaned up
[  323.021206][T16008] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  323.071510][T16016] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  323.098028][T16021] loop3: detected capacity change from 0 to 1024
[  323.138539][T16021] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  323.149568][T16021] System zones: 0-1, 3-36
[  323.155541][T16021] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  323.241433][T11927] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  323.533960][T12603] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  323.570538][T16041] loop4: detected capacity change from 0 to 512
[  323.593051][T16043] loop3: detected capacity change from 0 to 512
[  323.603386][T16041] EXT4-fs (loop4): orphan cleanup on readonly fs
[  323.610355][T16043] EXT4-fs (loop3): orphan cleanup on readonly fs
[  323.617387][T16043] EXT4-fs error (device loop3): ext4_orphan_get:1419: comm syz.3.4167: bad orphan inode 13
[  323.631277][T16043] ext4_test_bit(bit=12, block=18) = 1
[  323.636696][T16043] is_bad_inode(inode)=0
[  323.640894][T16043] NEXT_ORPHAN(inode)=2130706432
[  323.645728][T16043] max_ino=32
[  323.648910][T16043] i_nlink=1
[  323.653931][T16041] EXT4-fs error (device loop4): ext4_orphan_get:1419: comm syz.4.4166: bad orphan inode 13
[  323.690003][T16043] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  323.712666][T16041] ext4_test_bit(bit=12, block=18) = 1
[  323.718054][T16041] is_bad_inode(inode)=0
[  323.722260][T16041] NEXT_ORPHAN(inode)=2130706432
[  323.727110][T16041] max_ino=32
[  323.730329][T16041] i_nlink=1
[  323.739933][T16041] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  323.762551][T16041] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  323.815658][T16043] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  323.825562][T16041] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.4166: bg 0: block 248: padding at end of block bitmap is not set
[  323.860080][T16043] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.4167: bg 0: block 248: padding at end of block bitmap is not set
[  323.862570][T16041] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.4166: Failed to acquire dquot type 1
[  323.886771][T13414] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  323.899501][T16041] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  323.915297][T16043] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.4167: Failed to acquire dquot type 1
[  323.948924][T16043] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  323.989872][T16041] syz.4.4166 (16041) used greatest stack depth: 9200 bytes left
[  324.029011][T12603] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.055702][T11927] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.133047][T16058] loop5: detected capacity change from 0 to 1024
[  324.173702][T16058] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  324.200804][T16063] __nla_validate_parse: 3 callbacks suppressed
[  324.200817][T16063] netlink: 132 bytes leftover after parsing attributes in process `syz.3.4173'.
[  324.229476][T16058] EXT4-fs error (device loop5): ext4_map_blocks:816: inode #3: block 1: comm syz.5.4169: lblock 1 mapped to illegal pblock 1 (length 1)
[  324.244533][T16058] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.4169: Failed to acquire dquot type 0
[  324.267119][T16058] EXT4-fs error (device loop5): ext4_free_blocks:6587: comm syz.5.4169: Freeing blocks not in datazone - block = 0, count = 4096
[  324.316483][T16058] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.4169: Invalid inode bitmap blk 0 in block_group 0
[  324.340924][T14616] EXT4-fs error (device loop5): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:39: lblock 1 mapped to illegal pblock 1 (length 1)
[  324.357686][T14616] __quota_error: 546 callbacks suppressed
[  324.357702][T14616] Quota error (device loop5): remove_tree: Can't read quota data block 1
[  324.368047][T16058] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[  324.372058][T14616] EXT4-fs error (device loop5): ext4_release_dquot:6969: comm kworker/u8:39: Failed to release dquot type 0
[  324.445185][T16058] EXT4-fs (loop5): 1 orphan inode deleted
[  324.454246][T16058] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  324.543230][   T29] audit: type=1326 audit(1753930588.486:10291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16052 comm="syz.5.4169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa38eb6e9a9 code=0x7ffc0000
[  324.566897][   T29] audit: type=1326 audit(1753930588.486:10292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16052 comm="syz.5.4169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa38eb65967 code=0x7ffc0000
[  324.590441][   T29] audit: type=1326 audit(1753930588.486:10293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16052 comm="syz.5.4169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa38eb0ab89 code=0x7ffc0000
[  324.614097][   T29] audit: type=1326 audit(1753930588.486:10294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16052 comm="syz.5.4169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa38eb65967 code=0x7ffc0000
[  324.637720][   T29] audit: type=1326 audit(1753930588.486:10295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16052 comm="syz.5.4169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa38eb0ab89 code=0x7ffc0000
[  324.661270][   T29] audit: type=1326 audit(1753930588.486:10296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16052 comm="syz.5.4169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa38eb6e9a9 code=0x7ffc0000
[  324.684888][   T29] audit: type=1326 audit(1753930588.486:10297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16052 comm="syz.5.4169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa38eb6e9a9 code=0x7ffc0000
[  324.708534][   T29] audit: type=1326 audit(1753930588.486:10298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16052 comm="syz.5.4169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=4 compat=0 ip=0x7fa38eb6e9a9 code=0x7ffc0000
[  324.732131][   T29] audit: type=1326 audit(1753930588.486:10299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16052 comm="syz.5.4169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa38eb6e9a9 code=0x7ffc0000
[  325.009929][T16074] netlink: 68 bytes leftover after parsing attributes in process `syz.5.4176'.
[  325.071390][T16074] loop5: detected capacity change from 0 to 1024
[  325.099877][T16076] random: crng reseeded on system resumption
[  325.113228][T16074] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  325.174154][T16074] System zones: 0-1, 3-36
[  325.193805][T16079] loop3: detected capacity change from 0 to 512
[  325.525506][T16088] netlink: 'syz.5.4181': attribute type 4 has an invalid length.
[  325.759928][T16097] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  325.934225][T16104] loop6: detected capacity change from 0 to 1024
[  325.958749][T16104] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  325.967534][T16104] System zones: 0-1, 3-36
[  326.050253][T16107] loop0: detected capacity change from 0 to 512
[  326.069583][T16107] EXT4-fs (loop0): orphan cleanup on readonly fs
[  326.089771][T16107] EXT4-fs error (device loop0): ext4_orphan_get:1419: comm syz.0.4189: bad orphan inode 13
[  326.104895][T16110] loop3: detected capacity change from 0 to 512
[  326.116014][T16110] EXT4-fs (loop3): orphan cleanup on readonly fs
[  326.127544][T16107] ext4_test_bit(bit=12, block=18) = 1
[  326.133037][T16107] is_bad_inode(inode)=0
[  326.137215][T16107] NEXT_ORPHAN(inode)=2130706432
[  326.142092][T16107] max_ino=32
[  326.145283][T16107] i_nlink=1
[  326.152451][T16110] EXT4-fs error (device loop3): ext4_orphan_get:1419: comm syz.3.4190: bad orphan inode 13
[  326.163483][T16110] ext4_test_bit(bit=12, block=18) = 1
[  326.168865][T16110] is_bad_inode(inode)=0
[  326.173100][T16110] NEXT_ORPHAN(inode)=2130706432
[  326.178046][T16110] max_ino=32
[  326.181266][T16110] i_nlink=1
[  326.190515][T16113] usb usb1: usbfs: process 16113 (syz.4.4191) did not claim interface 0 before use
[  326.200181][T16113] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  326.226576][T16107] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  326.253485][T16110] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  326.263296][T16118] loop4: detected capacity change from 0 to 1024
[  326.270266][T16118] EXT4-fs: Ignoring removed i_version option
[  326.281431][T16107] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.4189: bg 0: block 248: padding at end of block bitmap is not set
[  326.296001][T16118] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  326.307143][T16110] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.4190: bg 0: block 248: padding at end of block bitmap is not set
[  326.311739][T16107] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.4189: Failed to acquire dquot type 1
[  326.324318][T16118] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.4193: Invalid block bitmap block 0 in block_group 0
[  326.346449][T16107] EXT4-fs warning (device loop0): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  326.346892][T16110] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.4190: Failed to acquire dquot type 1
[  326.385319][T16118] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.4193: Failed to acquire dquot type 0
[  326.396988][T16110] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  326.400278][T16118] EXT4-fs error (device loop4): ext4_free_blocks:6587: comm syz.4.4193: Freeing blocks not in datazone - block = 0, count = 4096
[  326.428031][T16118] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.4193: Invalid inode bitmap blk 0 in block_group 0
[  326.441566][T16118] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  326.457981][   T51] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:3: Failed to release dquot type 0
[  326.458055][T16118] EXT4-fs (loop4): 1 orphan inode deleted
[  326.526775][T16127] netlink: 'syz.6.4196': attribute type 4 has an invalid length.
[  326.586458][T16133] random: crng reseeded on system resumption
[  326.598134][T16131] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  326.620442][T16135] loop5: detected capacity change from 0 to 512
[  326.638166][T16135] EXT4-fs (loop5): orphan cleanup on readonly fs
[  326.642269][T16140] loop0: detected capacity change from 0 to 512
[  326.661032][T16135] EXT4-fs error (device loop5): ext4_orphan_get:1419: comm syz.5.4200: bad orphan inode 13
[  326.691943][T16135] ext4_test_bit(bit=12, block=18) = 1
[  326.697356][T16135] is_bad_inode(inode)=0
[  326.701564][T16135] NEXT_ORPHAN(inode)=2130706432
[  326.706422][T16135] max_ino=32
[  326.706564][T16143] loop4: detected capacity change from 0 to 2048
[  326.709640][T16135] i_nlink=1
[  326.757915][T16135] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  326.770926][T16135] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.4200: bg 0: block 248: padding at end of block bitmap is not set
[  326.793822][T16135] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.4200: Failed to acquire dquot type 1
[  326.833500][T16135] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  327.196494][T16150] loop5: detected capacity change from 0 to 1024
[  327.206792][T16150] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  327.220828][T16150] System zones: 0-1, 3-36
[  327.435214][T16153] loop3: detected capacity change from 0 to 764
[  327.498706][T16157] loop3: detected capacity change from 0 to 764
[  327.707648][T16165] loop3: detected capacity change from 0 to 1024
[  327.723867][T16165] EXT4-fs: Ignoring removed i_version option
[  327.738525][T16165] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  327.757384][T16165] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.4209: Invalid block bitmap block 0 in block_group 0
[  327.787299][T16165] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.4209: Failed to acquire dquot type 0
[  327.800491][T16170] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  327.841734][T16165] EXT4-fs error (device loop3): ext4_free_blocks:6587: comm syz.3.4209: Freeing blocks not in datazone - block = 0, count = 4096
[  327.858137][T16174] netlink: 'syz.4.4213': attribute type 4 has an invalid length.
[  327.899589][T16165] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.4209: Invalid inode bitmap blk 0 in block_group 0
[  327.929773][   T41] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 0
[  327.948860][T16165] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  327.958300][T16165] EXT4-fs (loop3): 1 orphan inode deleted
[  328.146714][T16187] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4215'.
[  328.178923][T16187] loop6: detected capacity change from 0 to 512
[  328.270637][T16187] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.4215: bg 0: block 16: invalid block bitmap
[  328.285810][T16187] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  328.295546][T16187] EXT4-fs error (device loop6): ext4_clear_blocks:876: inode #13: comm syz.6.4215: attempt to clear invalid blocks 1669132790 len 1
[  328.314401][T16187] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #13: comm syz.6.4215: invalid indirect mapped block 4294967295 (level 1)
[  328.328894][T16187] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #13: comm syz.6.4215: invalid indirect mapped block 4294967295 (level 2)
[  328.345012][T16187] EXT4-fs (loop6): 1 truncate cleaned up
[  328.493532][T16191] loop3: detected capacity change from 0 to 764
[  328.618277][T16200] loop0: detected capacity change from 0 to 1024
[  328.624763][T16201] loop3: detected capacity change from 0 to 512
[  328.632338][T16200] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  328.641809][T16200] System zones: 0-1, 3-36
[  328.652524][T16201] EXT4-fs (loop3): orphan cleanup on readonly fs
[  328.670291][T16201] EXT4-fs error (device loop3): ext4_orphan_get:1419: comm syz.3.4220: bad orphan inode 13
[  328.681260][T16201] ext4_test_bit(bit=12, block=18) = 1
[  328.686644][T16201] is_bad_inode(inode)=0
[  328.690831][T16201] NEXT_ORPHAN(inode)=2130706432
[  328.695685][T16201] max_ino=32
[  328.698875][T16201] i_nlink=1
[  328.704693][T16201] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  328.720398][T16201] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.4220: bg 0: block 248: padding at end of block bitmap is not set
[  328.735235][T16201] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.4220: Failed to acquire dquot type 1
[  328.747501][T16201] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  328.780632][T16206] netlink: 68 bytes leftover after parsing attributes in process `syz.5.4222'.
[  328.836442][T16206] loop5: detected capacity change from 0 to 1024
[  328.859651][T16206] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  328.887190][T16206] System zones: 0-1, 3-36
[  328.964195][T16219] loop6: detected capacity change from 0 to 764
[  329.088662][T16227] loop3: detected capacity change from 0 to 1024
[  329.097770][T16227] EXT4-fs: inline encryption not supported
[  329.103701][T16227] EXT4-fs: Ignoring removed i_version option
[  329.113605][T16227] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  329.177525][T16228] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4226'.
[  329.223525][T16228] loop4: detected capacity change from 0 to 512
[  329.321085][T16228] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.4226: bg 0: block 16: invalid block bitmap
[  329.334432][T16228] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  329.346058][T16228] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #13: comm syz.4.4226: attempt to clear invalid blocks 1669132790 len 1
[  329.360584][T16228] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.4226: invalid indirect mapped block 4294967295 (level 1)
[  329.374774][T16228] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.4226: invalid indirect mapped block 4294967295 (level 2)
[  329.393612][T16228] EXT4-fs (loop4): 1 truncate cleaned up
[  329.413824][T16227] EXT4-fs error (device loop3): ext4_map_blocks:816: inode #3: block 1: comm syz.3.4230: lblock 1 mapped to illegal pblock 1 (length 1)
[  329.444361][T16227] __quota_error: 152 callbacks suppressed
[  329.444375][T16227] Quota error (device loop3): write_blk: dquota write failed
[  329.457552][T16227] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  329.493832][T16232] loop6: detected capacity change from 0 to 1024
[  329.503096][   T29] audit: type=1326 audit(1753930593.446:10438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16233 comm="syz.0.4231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e3a1e9a9 code=0x7ffc0000
[  329.522491][T16227] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.4230: Failed to acquire dquot type 0
[  329.527787][   T29] audit: type=1326 audit(1753930593.446:10439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16233 comm="syz.0.4231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94e3a1e9a9 code=0x7ffc0000
[  329.561632][   T29] audit: type=1326 audit(1753930593.446:10440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16233 comm="syz.0.4231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e3a1e9a9 code=0x7ffc0000
[  329.563387][T16227] EXT4-fs error (device loop3): ext4_free_blocks:6587: comm syz.3.4230: Freeing blocks not in datazone - block = 0, count = 4096
[  329.585306][   T29] audit: type=1326 audit(1753930593.446:10441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16233 comm="syz.0.4231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94e3a1e9a9 code=0x7ffc0000
[  329.622186][   T29] audit: type=1326 audit(1753930593.446:10442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16233 comm="syz.0.4231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e3a1e9a9 code=0x7ffc0000
[  329.623456][   T29] audit: type=1326 audit(1753930593.486:10443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16233 comm="syz.0.4231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94e3a1e9a9 code=0x7ffc0000
[  329.623513][   T29] audit: type=1326 audit(1753930593.486:10444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16233 comm="syz.0.4231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e3a1e9a9 code=0x7ffc0000
[  329.623536][   T29] audit: type=1326 audit(1753930593.486:10445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16233 comm="syz.0.4231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94e3a1e9a9 code=0x7ffc0000
[  329.630603][T16232] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  329.667718][T16227] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.4230: Invalid inode bitmap blk 0 in block_group 0
[  329.698000][T14635] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:58: lblock 1 mapped to illegal pblock 1 (length 1)
[  329.727751][T16232] System zones: 
[  329.738947][T14635] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:58: Failed to release dquot type 0
[  329.742104][T16232] 0-1
[  329.764103][T16227] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  329.771699][T16232] , 3-36
[  329.774529][T16227] EXT4-fs (loop3): 1 orphan inode deleted
[  329.782690][T16232] 
[  329.792266][T16227] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4230'.
[  329.803334][T16227] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4230'.
[  329.808364][T16227] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5134 sclass=netlink_route_socket pid=16227 comm=syz.3.4230
[  329.808636][T16227] EXT4-fs error (device loop3): ext4_lookup:1787: inode #15: comm syz.3.4230: iget: bad extra_isize 65535 (inode size 256)
[  330.029106][T16250] loop5: detected capacity change from 0 to 764
[  330.112539][T16259] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4234'.
[  330.145166][T16259] loop4: detected capacity change from 0 to 512
[  330.216213][T16259] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.4234: bg 0: block 16: invalid block bitmap
[  330.228941][T16259] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  330.237817][T16259] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #13: comm syz.4.4234: attempt to clear invalid blocks 1669132790 len 1
[  330.251628][T16259] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.4234: invalid indirect mapped block 4294967295 (level 1)
[  330.265844][T16259] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.4234: invalid indirect mapped block 4294967295 (level 2)
[  330.280125][T16259] EXT4-fs (loop4): 1 truncate cleaned up
[  330.492987][T16266] loop6: detected capacity change from 0 to 1024
[  330.508037][T16266] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  330.518250][T16266] System zones: 0-1, 3-36
[  330.864668][T16273] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  330.967247][T16285] loop3: detected capacity change from 0 to 512
[  331.002816][T16285] EXT4-fs (loop3): orphan cleanup on readonly fs
[  331.036940][T16285] EXT4-fs error (device loop3): ext4_orphan_get:1419: comm syz.3.4251: bad orphan inode 13
[  331.054169][T16292] netlink: 20 bytes leftover after parsing attributes in process `syz.6.4253'.
[  331.097127][T16285] ext4_test_bit(bit=12, block=18) = 1
[  331.102709][T16285] is_bad_inode(inode)=0
[  331.106987][T16285] NEXT_ORPHAN(inode)=2130706432
[  331.111891][T16285] max_ino=32
[  331.115086][T16285] i_nlink=1
[  331.176946][T16297] loop6: detected capacity change from 0 to 512
[  331.200709][T16285] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  331.222889][T16297] EXT4-fs (loop6): orphan cleanup on readonly fs
[  331.237766][T16297] EXT4-fs error (device loop6): ext4_orphan_get:1419: comm syz.6.4254: bad orphan inode 13
[  331.260573][T16285] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.4251: bg 0: block 248: padding at end of block bitmap is not set
[  331.326975][T16304] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4255'.
[  331.378636][T16304] loop0: detected capacity change from 0 to 512
[  331.473695][T16304] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.4255: bg 0: block 16: invalid block bitmap
[  331.487336][T16304] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  331.498163][T16304] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #13: comm syz.0.4255: attempt to clear invalid blocks 1669132790 len 1
[  331.513455][T16304] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.4255: invalid indirect mapped block 4294967295 (level 1)
[  331.542197][T16304] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.4255: invalid indirect mapped block 4294967295 (level 2)
[  331.557349][T16297] ext4_test_bit(bit=12, block=18) = 1
[  331.562795][T16297] is_bad_inode(inode)=0
[  331.566945][T16297] NEXT_ORPHAN(inode)=2130706432
[  331.571835][T16297] max_ino=32
[  331.575022][T16297] i_nlink=1
[  331.581976][T16304] EXT4-fs (loop0): 1 truncate cleaned up
[  331.610945][T16285] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.4251: Failed to acquire dquot type 1
[  331.640420][T16297] EXT4-fs (loop6): warning: mounting fs with errors, running e2fsck is recommended
[  331.656209][T16285] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  331.693783][T16297] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.4254: bg 0: block 248: padding at end of block bitmap is not set
[  331.721788][T16297] EXT4-fs error (device loop6): ext4_acquire_dquot:6933: comm syz.6.4254: Failed to acquire dquot type 1
[  331.747080][T16297] EXT4-fs warning (device loop6): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  331.820833][T16314] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  331.974388][T16329] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=16329 comm=syz.3.4265
[  331.987023][T16329] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=16329 comm=syz.3.4265
[  332.014468][T16329] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=16329 comm=syz.3.4265
[  332.022531][T16327] loop6: detected capacity change from 0 to 1024
[  332.027026][T16329] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=16329 comm=syz.3.4265
[  332.062581][T16327] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  332.088626][T16329] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=16329 comm=syz.3.4265
[  332.101287][T16329] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=16329 comm=syz.3.4265
[  332.117095][T16329] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=16329 comm=syz.3.4265
[  332.129667][T16329] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=16329 comm=syz.3.4265
[  332.143352][T16329] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=16329 comm=syz.3.4265
[  332.160720][T16327] System zones: 0-1, 3-36
[  332.466119][T16344] loop5: detected capacity change from 0 to 512
[  332.475081][T16344] EXT4-fs (loop5): orphan cleanup on readonly fs
[  332.487749][T16344] EXT4-fs error (device loop5): ext4_orphan_get:1419: comm syz.5.4271: bad orphan inode 13
[  332.541592][T16344] ext4_test_bit(bit=12, block=18) = 1
[  332.546995][T16344] is_bad_inode(inode)=0
[  332.551196][T16344] NEXT_ORPHAN(inode)=2130706432
[  332.556051][T16344] max_ino=32
[  332.559240][T16344] i_nlink=1
[  332.567215][T16347] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  332.607488][T16344] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  332.620650][T16344] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.4271: bg 0: block 248: padding at end of block bitmap is not set
[  332.635308][T16344] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.4271: Failed to acquire dquot type 1
[  332.649832][T16344] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  332.749255][T16360] netlink: 68 bytes leftover after parsing attributes in process `syz.5.4275'.
[  332.764268][T16360] loop5: detected capacity change from 0 to 1024
[  332.785022][T16360] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  332.800387][T16360] System zones: 0-1, 3-36
[  332.833974][T16366] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4280'.
[  332.882475][T16368] loop4: detected capacity change from 0 to 1024
[  332.926994][T16368] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  332.986894][T16368] System zones: 0-1, 3-36
[  333.079560][T16374] loop0: detected capacity change from 0 to 256
[  333.166480][T16377] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  333.202361][T16379] loop0: detected capacity change from 0 to 512
[  333.254203][T16379] EXT4-fs (loop0): orphan cleanup on readonly fs
[  333.304002][T16379] EXT4-fs error (device loop0): ext4_orphan_get:1419: comm syz.0.4285: bad orphan inode 13
[  333.348207][T16379] ext4_test_bit(bit=12, block=18) = 1
[  333.353655][T16379] is_bad_inode(inode)=0
[  333.357834][T16379] NEXT_ORPHAN(inode)=2130706432
[  333.362715][T16379] max_ino=32
[  333.365905][T16379] i_nlink=1
[  333.440327][T16379] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  333.481876][T16379] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.4285: bg 0: block 248: padding at end of block bitmap is not set
[  333.511982][T16393] FAULT_INJECTION: forcing a failure.
[  333.511982][T16393] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  333.525092][T16393] CPU: 0 UID: 0 PID: 16393 Comm: ,&#^% Tainted: G        W           6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(voluntary) 
[  333.525198][T16393] Tainted: [W]=WARN
[  333.525204][T16393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  333.525282][T16393] Call Trace:
[  333.525354][T16393]  <TASK>
[  333.525362][T16393]  __dump_stack+0x1d/0x30
[  333.525384][T16393]  dump_stack_lvl+0xe8/0x140
[  333.525414][T16393]  dump_stack+0x15/0x1b
[  333.525429][T16393]  should_fail_ex+0x265/0x280
[  333.525452][T16393]  should_fail+0xb/0x20
[  333.525494][T16393]  should_fail_usercopy+0x1a/0x20
[  333.525516][T16393]  _copy_to_iter+0xcf/0xe30
[  333.525543][T16393]  ? chacha_block_generic+0x218/0x240
[  333.525587][T16393]  get_random_bytes_user+0x12d/0x290
[  333.525618][T16393]  ? import_ubuf+0xe8/0x120
[  333.525683][T16393]  __x64_sys_getrandom+0xcf/0x1a0
[  333.525706][T16393]  x64_sys_call+0x1fa6/0x2ff0
[  333.525730][T16393]  do_syscall_64+0xd2/0x200
[  333.525828][T16393]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  333.525857][T16393]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  333.525894][T16393]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  333.525979][T16393] RIP: 0033:0x7fa38eb6e9a9
[  333.525993][T16393] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  333.526037][T16393] RSP: 002b:00007fa38d1cf038 EFLAGS: 00000246 ORIG_RAX: 000000000000013e
[  333.526058][T16393] RAX: ffffffffffffffda RBX: 00007fa38ed95fa0 RCX: 00007fa38eb6e9a9
[  333.526072][T16393] RDX: 0000000000000000 RSI: 000000000000011e RDI: 0000200000000380
[  333.526086][T16393] RBP: 00007fa38d1cf090 R08: 0000000000000000 R09: 0000000000000000
[  333.526100][T16393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  333.526157][T16393] R13: 0000000000000000 R14: 00007fa38ed95fa0 R15: 00007ffe90ecc2c8
[  333.526177][T16393]  </TASK>
[  333.735033][T16379] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.4285: Failed to acquire dquot type 1
[  333.784385][T16379] EXT4-fs warning (device loop0): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  333.851059][T16404] loop6: detected capacity change from 0 to 1024
[  333.880767][T16406] loop5: detected capacity change from 0 to 1024
[  333.945958][T16409] netlink: 68 bytes leftover after parsing attributes in process `syz.0.4298'.
[  333.960407][T16404] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  334.034214][T16409] loop0: detected capacity change from 0 to 1024
[  334.039514][T16406] EXT4-fs: inline encryption not supported
[  334.040677][T16404] System zones: 0-1, 3-36
[  334.046463][T16406] EXT4-fs: Ignoring removed i_version option
[  334.062398][T16413] loop4: detected capacity change from 0 to 512
[  334.069540][T16406] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  334.082718][T16406] EXT4-fs error (device loop5): ext4_map_blocks:816: inode #3: block 1: comm syz.5.4297: lblock 1 mapped to illegal pblock 1 (length 1)
[  334.105351][T16409] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  334.114564][T16413] EXT4-fs (loop4): orphan cleanup on readonly fs
[  334.121768][T16406] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.4297: Failed to acquire dquot type 0
[  334.139418][T16409] System zones: 0-1, 3-36
[  334.146485][T16406] EXT4-fs error (device loop5): ext4_free_blocks:6587: comm syz.5.4297: Freeing blocks not in datazone - block = 0, count = 4096
[  334.173104][T16413] EXT4-fs error (device loop4): ext4_orphan_get:1419: comm syz.4.4300: bad orphan inode 13
[  334.226531][T16406] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.4297: Invalid inode bitmap blk 0 in block_group 0
[  334.236875][T16413] ext4_test_bit(bit=12, block=18) = 1
[  334.244602][T16413] is_bad_inode(inode)=0
[  334.248786][T16413] NEXT_ORPHAN(inode)=2130706432
[  334.253662][T16413] max_ino=32
[  334.256910][T16413] i_nlink=1
[  334.260502][T16406] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[  334.269128][   T51] EXT4-fs error (device loop5): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1)
[  334.286832][   T51] EXT4-fs error (device loop5): ext4_release_dquot:6969: comm kworker/u8:3: Failed to release dquot type 0
[  334.308602][T16406] EXT4-fs (loop5): 1 orphan inode deleted
[  334.327798][T16406] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4297'.
[  334.336762][T16413] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  334.352219][T16406] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4297'.
[  334.364199][T16413] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.4300: bg 0: block 248: padding at end of block bitmap is not set
[  334.380232][T16413] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.4300: Failed to acquire dquot type 1
[  334.407564][T16413] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  334.423314][T16406] EXT4-fs error (device loop5): ext4_lookup:1787: inode #15: comm syz.5.4297: iget: bad extra_isize 65535 (inode size 256)
[  334.486779][T16421] loop5: detected capacity change from 0 to 1024
[  334.518506][T16421] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  334.529147][T16421] System zones: 0-1, 3-36
[  334.553582][T16426] loop3: detected capacity change from 0 to 1024
[  334.572453][T16426] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  334.591927][T16426] System zones: 0-1, 3-36
[  334.674593][   T29] kauditd_printk_skb: 467 callbacks suppressed
[  334.674609][   T29] audit: type=1326 audit(1753930598.616:10899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.0.4305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e3a1e9a9 code=0x7ffc0000
[  334.709422][   T29] audit: type=1326 audit(1753930598.656:10900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.0.4305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e3a1e9a9 code=0x7ffc0000
[  334.733284][   T29] audit: type=1326 audit(1753930598.656:10901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.0.4305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94e3a1e9a9 code=0x7ffc0000
[  334.756929][   T29] audit: type=1326 audit(1753930598.656:10902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.0.4305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e3a1e9a9 code=0x7ffc0000
[  334.757028][   T29] audit: type=1326 audit(1753930598.656:10903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.0.4305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94e3a1e9a9 code=0x7ffc0000
[  334.757051][   T29] audit: type=1326 audit(1753930598.656:10904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.0.4305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e3a1e9a9 code=0x7ffc0000
[  334.757141][   T29] audit: type=1326 audit(1753930598.656:10905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.0.4305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94e3a1e9a9 code=0x7ffc0000
[  334.757211][   T29] audit: type=1326 audit(1753930598.656:10906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.0.4305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e3a1e9a9 code=0x7ffc0000
[  334.757249][   T29] audit: type=1326 audit(1753930598.656:10907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.0.4305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94e3a1e9a9 code=0x7ffc0000
[  334.757276][   T29] audit: type=1326 audit(1753930598.656:10908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.0.4305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e3a1e9a9 code=0x7ffc0000
[  335.021519][T16456] netlink: 'syz.5.4308': attribute type 4 has an invalid length.
[  335.021689][T16456] netlink: 'syz.5.4308': attribute type 4 has an invalid length.
[  335.161655][T16468] loop6: detected capacity change from 0 to 1024
[  335.171922][T16468] EXT4-fs: inline encryption not supported
[  335.177787][T16468] EXT4-fs: Ignoring removed i_version option
[  335.193475][T16471] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  335.220986][T16468] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  335.254422][T16468] EXT4-fs error (device loop6): ext4_map_blocks:816: inode #3: block 1: comm syz.6.4312: lblock 1 mapped to illegal pblock 1 (length 1)
[  335.270613][T16468] EXT4-fs error (device loop6): ext4_acquire_dquot:6933: comm syz.6.4312: Failed to acquire dquot type 0
[  335.272995][T16475] __nla_validate_parse: 1 callbacks suppressed
[  335.273008][T16475] netlink: 68 bytes leftover after parsing attributes in process `syz.3.4315'.
[  335.282559][T16468] EXT4-fs error (device loop6): ext4_free_blocks:6587: comm syz.6.4312: Freeing blocks not in datazone - block = 0, count = 4096
[  335.297679][T16475] loop3: detected capacity change from 0 to 1024
[  335.327980][T16468] EXT4-fs error (device loop6): ext4_read_inode_bitmap:139: comm syz.6.4312: Invalid inode bitmap blk 0 in block_group 0
[  335.341129][T14629] EXT4-fs error (device loop6): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:52: lblock 1 mapped to illegal pblock 1 (length 1)
[  335.358327][T16475] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  335.383281][T14629] EXT4-fs error (device loop6): ext4_release_dquot:6969: comm kworker/u8:52: Failed to release dquot type 0
[  335.395624][T16475] System zones: 0-1, 3-36
[  335.403837][T16468] EXT4-fs error (device loop6) in ext4_free_inode:361: Corrupt filesystem
[  335.431570][T16468] EXT4-fs (loop6): 1 orphan inode deleted
[  335.443312][T16482] loop5: detected capacity change from 0 to 512
[  335.444519][T16468] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4312'.
[  335.464386][T16482] EXT4-fs (loop5): orphan cleanup on readonly fs
[  335.475864][T16482] EXT4-fs error (device loop5): ext4_orphan_get:1419: comm syz.5.4318: bad orphan inode 13
[  335.486330][T16468] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4312'.
[  335.500479][T16482] ext4_test_bit(bit=12, block=18) = 1
[  335.500763][T16468] selinux_netlink_send: 122 callbacks suppressed
[  335.500798][T16468] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5134 sclass=netlink_route_socket pid=16468 comm=syz.6.4312
[  335.505952][T16482] is_bad_inode(inode)=0
[  335.514222][T16468] EXT4-fs error (device loop6): ext4_lookup:1787: inode #15: comm syz.6.4312: iget: bad extra_isize 65535 (inode size 256)
[  335.525066][T16482] NEXT_ORPHAN(inode)=2130706432
[  335.525077][T16482] max_ino=32
[  335.525084][T16482] i_nlink=1
[  335.606766][T16482] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  335.626049][T16482] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.4318: bg 0: block 248: padding at end of block bitmap is not set
[  335.689373][T16482] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.4318: Failed to acquire dquot type 1
[  335.708662][T16482] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  335.731252][T16498] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  335.767128][T16502] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4327'.
[  336.157726][T16537] loop0: detected capacity change from 0 to 764
[  336.190074][T16537] iso9660: Unknown parameter 'devtmpfs'
[  336.378882][T16550] syz.0.4347: attempt to access beyond end of device
[  336.378882][T16550] loop1: rw=0, sector=0, nr_sectors = 1 limit=0
[  336.406843][T16550] FAT-fs (loop1): unable to read boot sector
[  336.451338][T16552] netlink: 100 bytes leftover after parsing attributes in process `syz.0.4348'.
[  336.853611][T16562] loop6: detected capacity change from 0 to 1024
[  336.875071][T16562] EXT4-fs: Ignoring removed i_version option
[  336.881616][T16562] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  336.907897][T16565] loop3: detected capacity change from 0 to 512
[  336.927300][T16562] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:483: comm syz.6.4352: Invalid block bitmap block 0 in block_group 0
[  336.952968][T16565] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  336.961903][T16569] loop4: detected capacity change from 0 to 512
[  336.962626][T16562] EXT4-fs error (device loop6): ext4_acquire_dquot:6933: comm syz.6.4352: Failed to acquire dquot type 0
[  336.975793][T16569] EXT4-fs (loop4): invalid inodes per group: 131104
[  336.975793][T16569] 
[  337.000141][T16565] EXT4-fs error (device loop3): ext4_iget_extra_inode:5030: inode #15: comm syz.3.4354: corrupted in-inode xattr: overlapping e_value 
[  337.009204][T16562] EXT4-fs error (device loop6): ext4_free_blocks:6587: comm syz.6.4352: Freeing blocks not in datazone - block = 0, count = 4096
[  337.037305][T16562] EXT4-fs error (device loop6): ext4_read_inode_bitmap:139: comm syz.6.4352: Invalid inode bitmap blk 0 in block_group 0
[  337.043960][T16565] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.4354: couldn't read orphan inode 15 (err -117)
[  337.057723][   T51] EXT4-fs error (device loop6): ext4_release_dquot:6969: comm kworker/u8:3: Failed to release dquot type 0
[  337.081267][T16562] EXT4-fs error (device loop6) in ext4_free_inode:361: Corrupt filesystem
[  337.100254][T16562] EXT4-fs (loop6): 1 orphan inode deleted
[  337.105052][T16576] syz.0.4358: attempt to access beyond end of device
[  337.105052][T16576] loop1: rw=0, sector=0, nr_sectors = 1 limit=0
[  337.121283][T16576] FAT-fs (loop1): unable to read boot sector
[  337.155225][T16582] netlink: 68 bytes leftover after parsing attributes in process `syz.3.4360'.
[  337.181866][T16582] loop3: detected capacity change from 0 to 1024
[  337.191383][T16584] netlink: 100 bytes leftover after parsing attributes in process `syz.0.4361'.
[  337.205309][T16582] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  337.213628][T16582] System zones: 0-1, 3-36
[  337.255988][T16591] netlink: 132 bytes leftover after parsing attributes in process `syz.4.4362'.
[  337.344410][T16597] syz.0.4366: attempt to access beyond end of device
[  337.344410][T16597] loop1: rw=0, sector=0, nr_sectors = 1 limit=0
[  337.365453][T16597] FAT-fs (loop1): unable to read boot sector
[  337.518077][T16602] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  337.617688][T16616] netlink: 'syz.3.4375': attribute type 4 has an invalid length.
[  337.651044][T16616] netlink: 'syz.3.4375': attribute type 4 has an invalid length.
[  337.742969][T16624] loop5: detected capacity change from 0 to 512
[  337.777884][T16624] EXT4-fs (loop5): orphan cleanup on readonly fs
[  337.797594][T16629] loop6: detected capacity change from 0 to 1024
[  337.829755][T16624] EXT4-fs error (device loop5): ext4_orphan_get:1419: comm syz.5.4378: bad orphan inode 13
[  337.861224][T16629] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  337.871640][T16624] ext4_test_bit(bit=12, block=18) = 1
[  337.875224][T16631] loop3: detected capacity change from 0 to 512
[  337.877010][T16624] is_bad_inode(inode)=0
[  337.877019][T16624] NEXT_ORPHAN(inode)=2130706432
[  337.877027][T16624] max_ino=32
[  337.895590][T16624] i_nlink=1
[  337.926393][T16624] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  337.936768][T16629] EXT4-fs error (device loop6): ext4_map_blocks:816: inode #3: block 1: comm syz.6.4376: lblock 1 mapped to illegal pblock 1 (length 1)
[  337.960857][T16631] EXT4-fs (loop3): orphan cleanup on readonly fs
[  337.968262][T16631] EXT4-fs error (device loop3): ext4_orphan_get:1419: comm syz.3.4380: bad orphan inode 13
[  337.997357][T16629] EXT4-fs error (device loop6): ext4_acquire_dquot:6933: comm syz.6.4376: Failed to acquire dquot type 0
[  338.026571][T16638] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  338.052236][T16629] EXT4-fs error (device loop6): ext4_free_blocks:6587: comm syz.6.4376: Freeing blocks not in datazone - block = 0, count = 4096
[  338.066616][T16624] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.4378: bg 0: block 248: padding at end of block bitmap is not set
[  338.081054][T16631] ext4_test_bit(bit=12, block=18) = 1
[  338.086503][T16631] is_bad_inode(inode)=0
[  338.090696][T16631] NEXT_ORPHAN(inode)=2130706432
[  338.095572][T16631] max_ino=32
[  338.098766][T16631] i_nlink=1
[  338.102527][T16629] EXT4-fs error (device loop6): ext4_read_inode_bitmap:139: comm syz.6.4376: Invalid inode bitmap blk 0 in block_group 0
[  338.113913][T16643] netlink: 68 bytes leftover after parsing attributes in process `syz.0.4383'.
[  338.115579][T16624] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.4378: Failed to acquire dquot type 1
[  338.135540][T14595] EXT4-fs error (device loop6): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:18: lblock 1 mapped to illegal pblock 1 (length 1)
[  338.149917][T16629] EXT4-fs error (device loop6) in ext4_free_inode:361: Corrupt filesystem
[  338.150953][T14595] EXT4-fs error (device loop6): ext4_release_dquot:6969: comm kworker/u8:18: Failed to release dquot type 0
[  338.170328][T16629] EXT4-fs (loop6): 1 orphan inode deleted
[  338.175972][T16643] loop0: detected capacity change from 0 to 1024
[  338.177682][T16641] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  338.193244][T16624] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  338.209784][T16631] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  338.229954][T16643] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  338.238154][T16643] System zones: 0-1, 3-36
[  338.245419][T16631] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.4380: bg 0: block 248: padding at end of block bitmap is not set
[  338.280620][T16631] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.4380: Failed to acquire dquot type 1
[  338.310954][T16650] loop5: detected capacity change from 0 to 1024
[  338.321610][T16650] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  338.325482][T16631] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  338.344721][T16650] System zones: 0-1, 3-36
[  338.446837][T16662] loop6: detected capacity change from 0 to 1024
[  338.454137][T16662] EXT4-fs: Ignoring removed i_version option
[  338.476055][T16662] /dev/loop6: Can't open blockdev
[  338.618510][T16669] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  338.665942][T16671] netlink: 132 bytes leftover after parsing attributes in process `syz.4.4394'.
[  338.715085][T16675] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  338.765766][T16680] loop3: detected capacity change from 0 to 512
[  338.774203][T16680] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  338.804404][T16680] ext4 filesystem being mounted at /277/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  338.852861][T16687] loop0: detected capacity change from 0 to 1024
[  338.884372][T16687] EXT4-fs: inline encryption not supported
[  338.890304][T16687] EXT4-fs: Ignoring removed i_version option
[  338.905634][T16687] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  338.954579][T16687] EXT4-fs error (device loop0): ext4_map_blocks:816: inode #3: block 1: comm syz.0.4400: lblock 1 mapped to illegal pblock 1 (length 1)
[  338.982322][T16687] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.4400: Failed to acquire dquot type 0
[  339.087967][T16687] EXT4-fs error (device loop0): ext4_free_blocks:6587: comm syz.0.4400: Freeing blocks not in datazone - block = 0, count = 4096
[  339.121516][T16687] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.4400: Invalid inode bitmap blk 0 in block_group 0
[  339.149434][T14631] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:54: lblock 1 mapped to illegal pblock 1 (length 1)
[  339.161729][T16687] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[  339.183031][T14631] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:54: Failed to release dquot type 0
[  339.205072][T16687] EXT4-fs (loop0): 1 orphan inode deleted
[  339.367460][T16687] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5134 sclass=netlink_route_socket pid=16687 comm=syz.0.4400
[  339.468705][T16687] EXT4-fs error (device loop0): ext4_lookup:1787: inode #15: comm syz.0.4400: iget: bad extra_isize 65535 (inode size 256)
[  339.645308][T16702] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  339.716329][T16708] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  339.751875][T16710] loop5: detected capacity change from 0 to 1024
[  339.779505][T16710] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  339.791609][T16710] System zones: 0-1, 3-36
[  339.826501][   T29] kauditd_printk_skb: 1010 callbacks suppressed
[  339.826525][   T29] audit: type=1400 audit(1753930603.766:11899): avc:  denied  { setopt } for  pid=16713 comm="syz.0.4407" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  339.877635][T16720] loop4: detected capacity change from 0 to 512
[  340.094047][T16725] loop0: detected capacity change from 0 to 512
[  340.106189][T16725] EXT4-fs (loop0): orphan cleanup on readonly fs
[  340.119449][T16725] EXT4-fs error (device loop0): ext4_orphan_get:1419: comm syz.0.4414: bad orphan inode 13
[  340.130348][T16725] ext4_test_bit(bit=12, block=18) = 1
[  340.135807][T16725] is_bad_inode(inode)=0
[  340.140031][T16725] NEXT_ORPHAN(inode)=2130706432
[  340.144885][T16725] max_ino=32
[  340.148072][T16725] i_nlink=1
[  340.159501][T16725] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  340.200558][T16725] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.4414: bg 0: block 248: padding at end of block bitmap is not set
[  340.218204][T16725] Quota error (device loop0): write_blk: dquota write failed
[  340.225620][T16725] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  340.235540][T16725] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.4414: Failed to acquire dquot type 1
[  340.247167][T16725] EXT4-fs warning (device loop0): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  340.292746][   T29] audit: type=1326 audit(1753930604.236:11900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16731 comm="syz.3.4416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4ba45e9a9 code=0x7ffc0000
[  340.316367][   T29] audit: type=1326 audit(1753930604.236:11901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16731 comm="syz.3.4416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4ba45e9a9 code=0x7ffc0000
[  340.360734][T16734] __nla_validate_parse: 5 callbacks suppressed
[  340.360748][T16734] netlink: 68 bytes leftover after parsing attributes in process `syz.3.4418'.
[  340.398850][T16736] loop0: detected capacity change from 0 to 1024
[  340.420375][   T29] audit: type=1326 audit(1753930604.286:11902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16731 comm="syz.3.4416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe4ba45e9a9 code=0x7ffc0000
[  340.444225][   T29] audit: type=1326 audit(1753930604.286:11903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16731 comm="syz.3.4416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4ba45e9a9 code=0x7ffc0000
[  340.467852][   T29] audit: type=1326 audit(1753930604.286:11904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16731 comm="syz.3.4416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe4ba45e9a9 code=0x7ffc0000
[  340.491487][   T29] audit: type=1326 audit(1753930604.286:11905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16731 comm="syz.3.4416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4ba45e9a9 code=0x7ffc0000
[  340.500244][T16736] EXT4-fs: inline encryption not supported
[  340.515103][   T29] audit: type=1326 audit(1753930604.286:11906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16731 comm="syz.3.4416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4ba45e9a9 code=0x7ffc0000
[  340.520911][T16736] EXT4-fs: Ignoring removed i_version option
[  340.555484][T16736] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  340.555770][T16737] loop3: detected capacity change from 0 to 1024
[  340.588708][T16736] EXT4-fs error (device loop0): ext4_map_blocks:816: inode #3: block 1: comm syz.0.4417: lblock 1 mapped to illegal pblock 1 (length 1)
[  340.621365][T16736] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.4417: Failed to acquire dquot type 0
[  340.634153][T16742] loop6: detected capacity change from 0 to 1024
[  340.636733][T16736] EXT4-fs error (device loop0): ext4_free_blocks:6587: comm syz.0.4417: Freeing blocks not in datazone - block = 0, count = 4096
[  340.655158][T16742] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  340.655548][T16736] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.4417: Invalid inode bitmap blk 0 in block_group 0
[  340.665627][T16737] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  340.684455][T16737] System zones: 0-1, 3-36
[  340.686298][T14594] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:17: lblock 1 mapped to illegal pblock 1 (length 1)
[  340.689045][T16742] System zones: 0-1, 3-36
[  340.708300][T16742] EXT4-fs mount: 98 callbacks suppressed
[  340.708313][T16742] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  340.716254][T16737] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  340.739613][T14594] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:17: Failed to release dquot type 0
[  340.751304][T16736] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[  340.760756][T16736] EXT4-fs (loop0): 1 orphan inode deleted
[  340.767319][T16736] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  340.795117][T16736] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4417'.
[  340.797631][T11927] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  340.804415][T16736] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4417'.
[  340.834423][T16736] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5134 sclass=netlink_route_socket pid=16736 comm=syz.0.4417
[  340.847567][T16736] EXT4-fs error (device loop0): ext4_lookup:1787: inode #15: comm syz.0.4417: iget: bad extra_isize 65535 (inode size 256)
[  340.886241][T12170] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  340.948367][T16746] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  341.018710][T16757] loop4: detected capacity change from 0 to 512
[  341.028792][T16757] EXT4-fs (loop4): orphan cleanup on readonly fs
[  341.050598][T16757] EXT4-fs error (device loop4): ext4_orphan_get:1419: comm syz.4.4427: bad orphan inode 13
[  341.062706][T16757] ext4_test_bit(bit=12, block=18) = 1
[  341.068091][T16757] is_bad_inode(inode)=0
[  341.072321][T16757] NEXT_ORPHAN(inode)=2130706432
[  341.077162][T16757] max_ino=32
[  341.080438][T16757] i_nlink=1
[  341.083915][T16757] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  341.098642][T16757] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  341.113621][T16763] netlink: 68 bytes leftover after parsing attributes in process `syz.0.4429'.
[  341.127674][T16763] loop0: detected capacity change from 0 to 1024
[  341.134586][T16757] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.4427: bg 0: block 248: padding at end of block bitmap is not set
[  341.152102][T16757] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.4427: Failed to acquire dquot type 1
[  341.174725][T16763] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  341.183334][T16763] System zones: 0-1, 3-36
[  341.193773][T16757] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  341.210896][T16763] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  341.229819][T16770] netlink: 68 bytes leftover after parsing attributes in process `syz.5.4431'.
[  341.246331][T16770] loop5: detected capacity change from 0 to 1024
[  341.253996][T12603] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  341.253993][T11927] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  341.291824][T16770] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  341.320575][ T7549] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  341.333052][T16770] System zones: 0-1, 3-36
[  341.360968][T16770] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  341.501974][T16785] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  341.597509][T12170] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  341.625708][T16792] netlink: 'syz.0.4441': attribute type 4 has an invalid length.
[  341.638920][T16792] netlink: 'syz.0.4441': attribute type 4 has an invalid length.
[  341.768648][T13414] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  341.820701][T16799] netlink: 68 bytes leftover after parsing attributes in process `syz.5.4442'.
[  341.834721][T16801] loop4: detected capacity change from 0 to 1024
[  341.854686][T16803] netlink: 68 bytes leftover after parsing attributes in process `syz.0.4445'.
[  341.862863][T16801] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  341.882399][T16801] System zones: 0-1, 3-36
[  341.892958][T16805] loop5: detected capacity change from 0 to 1024
[  341.905967][T16801] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  341.934240][T16806] loop0: detected capacity change from 0 to 1024
[  341.955817][T16806] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  341.966454][T16805] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  341.979930][T16806] System zones: 0-1, 3-36
[  341.984757][T16805] System zones: 0-1, 3-36
[  342.000591][T16805] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  342.016021][T16806] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  342.348171][T16812] loop3: detected capacity change from 0 to 512
[  342.361695][T11927] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  342.370890][T16812] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  342.419789][T16812] EXT4-fs (loop3): 1 truncate cleaned up
[  342.425892][T16812] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  342.485410][T12170] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  342.504470][T12603] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  342.663777][T13414] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  342.691233][T16829] loop3: detected capacity change from 0 to 512
[  342.704575][T16829] EXT4-fs (loop3): orphan cleanup on readonly fs
[  342.726480][T16829] EXT4-fs error (device loop3): ext4_orphan_get:1419: comm syz.3.4455: bad orphan inode 13
[  342.738576][T16829] ext4_test_bit(bit=12, block=18) = 1
[  342.744039][T16829] is_bad_inode(inode)=0
[  342.748190][T16829] NEXT_ORPHAN(inode)=2130706432
[  342.753135][T16829] max_ino=32
[  342.756326][T16829] i_nlink=1
[  342.764586][T16834] loop4: detected capacity change from 0 to 1024
[  342.772185][T16829] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  342.778961][T16834] EXT4-fs: Ignoring removed i_version option
[  342.796357][T16837] netlink: 68 bytes leftover after parsing attributes in process `syz.5.4458'.
[  342.809056][T16834] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  342.830138][T16837] loop5: detected capacity change from 0 to 1024
[  342.842956][T16834] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.4454: Invalid block bitmap block 0 in block_group 0
[  342.863868][T16837] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  342.872221][T16834] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.4454: Failed to acquire dquot type 0
[  342.873003][T16829] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  342.873355][T16834] EXT4-fs error (device loop4): ext4_free_blocks:6587: comm syz.4.4454: Freeing blocks not in datazone - block = 0, count = 4096
[  342.873569][T16834] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.4454: Invalid inode bitmap blk 0 in block_group 0
[  342.873730][T16834] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  342.873810][T16834] EXT4-fs (loop4): 1 orphan inode deleted
[  342.874156][T16834] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  342.890720][T16829] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.4455: bg 0: block 248: padding at end of block bitmap is not set
[  342.891081][T16829] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.4455: Failed to acquire dquot type 1
[  342.891460][T16837] System zones: 0-1, 3-36
[  342.892693][T16837] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  342.893126][T14594] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:17: Failed to release dquot type 0
[  342.899036][T16829] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  343.086017][T12603] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  343.136400][T13414] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  343.150895][T16853] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  343.181702][T16859] loop3: detected capacity change from 0 to 764
[  343.199091][T16859] iso9660: Unknown parameter 'devtmpfs'
[  343.387810][T16884] loop6: detected capacity change from 0 to 512
[  343.397976][T16884] /dev/loop6: Can't open blockdev
[  343.520678][T11927] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  343.536179][T16898] loop3: detected capacity change from 0 to 764
[  343.560304][T16900] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  343.561592][T16898] iso9660: Unknown parameter 'devtmpfs'
[  343.596811][T16904] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  343.732475][T16919] netlink: 68 bytes leftover after parsing attributes in process `syz.4.4491'.
[  343.749261][T16917] loop0: detected capacity change from 0 to 512
[  343.758040][T16919] loop4: detected capacity change from 0 to 1024
[  343.819432][T16924] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4486'.
[  343.869928][T16924] loop5: detected capacity change from 0 to 512
[  343.943448][T16917] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  343.966135][T16924] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.4486: bg 0: block 16: invalid block bitmap
[  343.985155][T16924] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  343.994449][T16924] EXT4-fs error (device loop5): ext4_clear_blocks:876: inode #13: comm syz.5.4486: attempt to clear invalid blocks 1669132790 len 1
[  344.008990][T16924] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.4486: invalid indirect mapped block 4294967295 (level 1)
[  344.023740][T16924] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.4486: invalid indirect mapped block 4294967295 (level 2)
[  344.037951][T16924] EXT4-fs (loop5): 1 truncate cleaned up
[  344.044356][T16924] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  344.070591][T16919] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  344.120296][T16919] System zones: 0-1, 3-36
[  344.143834][T16919] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  344.159906][T16917] EXT4-fs (loop0): 1 truncate cleaned up
[  344.166056][T16917] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  344.224873][T16936] sch_tbf: burst 3298 is lower than device lo mtu (11337746) !
[  344.236694][T12170] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  344.288787][T16942] loop6: detected capacity change from 0 to 1024
[  344.295881][T16941] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  344.313134][T16942] EXT4-fs: Ignoring removed i_version option
[  344.320651][T16942] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  344.334094][T16942] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:483: comm syz.6.4497: Invalid block bitmap block 0 in block_group 0
[  344.348176][T16942] EXT4-fs error (device loop6): ext4_acquire_dquot:6933: comm syz.6.4497: Failed to acquire dquot type 0
[  344.361024][T16942] EXT4-fs error (device loop6): ext4_free_blocks:6587: comm syz.6.4497: Freeing blocks not in datazone - block = 0, count = 4096
[  344.403350][T16942] EXT4-fs error (device loop6): ext4_read_inode_bitmap:139: comm syz.6.4497: Invalid inode bitmap blk 0 in block_group 0
[  344.416265][T16942] EXT4-fs error (device loop6) in ext4_free_inode:361: Corrupt filesystem
[  344.425312][T16942] EXT4-fs (loop6): 1 orphan inode deleted
[  344.425673][T16942] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  344.448551][T16949] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  344.489441][T14631] EXT4-fs error (device loop6): ext4_release_dquot:6969: comm kworker/u8:54: Failed to release dquot type 0
[  344.511427][T13414] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  344.579283][T11927] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  344.639523][T16962] loop3: detected capacity change from 0 to 512
[  344.648659][T16962] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  344.660469][T16962] EXT4-fs (loop3): 1 truncate cleaned up
[  344.666707][T16962] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  344.675393][T16966] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  344.701843][T12603] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  344.769745][T16973] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  344.875629][T16987] syz.3.4518: attempt to access beyond end of device
[  344.875629][T16987] loop7: rw=0, sector=0, nr_sectors = 1 limit=0
[  344.918005][T16989] FAULT_INJECTION: forcing a failure.
[  344.918005][T16989] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  344.919912][T16987] FAT-fs (loop7): unable to read boot sector
[  344.931099][T16989] CPU: 1 UID: 0 PID: 16989 Comm: syz.5.4519 Tainted: G        W           6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(voluntary) 
[  344.931132][T16989] Tainted: [W]=WARN
[  344.931138][T16989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  344.931151][T16989] Call Trace:
[  344.931159][T16989]  <TASK>
[  344.931198][T16989]  __dump_stack+0x1d/0x30
[  344.931220][T16989]  dump_stack_lvl+0xe8/0x140
[  344.931254][T16989]  dump_stack+0x15/0x1b
[  344.931271][T16989]  should_fail_ex+0x265/0x280
[  344.931357][T16989]  should_fail+0xb/0x20
[  344.931374][T16989]  should_fail_usercopy+0x1a/0x20
[  344.931460][T16989]  _copy_to_user+0x20/0xa0
[  344.931486][T16989]  simple_read_from_buffer+0xb5/0x130
[  344.931512][T16989]  proc_fail_nth_read+0x10e/0x150
[  344.931628][T16989]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  344.931658][T16989]  vfs_read+0x19d/0x6f0
[  344.931681][T16989]  ? __rcu_read_unlock+0x4f/0x70
[  344.931740][T16989]  ? __fget_files+0x184/0x1c0
[  344.931767][T16989]  ? __sys_setsockopt+0x18e/0x200
[  344.931799][T16989]  ksys_read+0xda/0x1a0
[  344.931825][T16989]  __x64_sys_read+0x40/0x50
[  344.931892][T16989]  x64_sys_call+0x27bc/0x2ff0
[  344.931913][T16989]  do_syscall_64+0xd2/0x200
[  344.931935][T16989]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  344.931962][T16989]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  344.932044][T16989]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  344.932066][T16989] RIP: 0033:0x7fa38eb6d3bc
[  344.932082][T16989] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  344.932101][T16989] RSP: 002b:00007fa38d1cf030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  344.932121][T16989] RAX: ffffffffffffffda RBX: 00007fa38ed95fa0 RCX: 00007fa38eb6d3bc
[  344.932188][T16989] RDX: 000000000000000f RSI: 00007fa38d1cf0a0 RDI: 0000000000000007
[  344.932201][T16989] RBP: 00007fa38d1cf090 R08: 0000000000000000 R09: 0000000000000000
[  344.932214][T16989] R10: 0000200000000180 R11: 0000000000000246 R12: 0000000000000001
[  344.932228][T16989] R13: 0000000000000000 R14: 00007fa38ed95fa0 R15: 00007ffe90ecc2c8
[  344.932247][T16989]  </TASK>
[  345.136021][T16995] loop5: detected capacity change from 0 to 512
[  345.165058][ T7549] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.174322][T16995] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  345.238921][T16995] EXT4-fs (loop5): 1 truncate cleaned up
[  345.254944][T16995] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  345.304636][T13414] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.344137][T17002] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  345.429838][T17009] loop6: detected capacity change from 0 to 1024
[  345.455155][T17019] loop5: detected capacity change from 0 to 2048
[  345.459702][T17009] EXT4-fs: Ignoring removed nobh option
[  345.467077][T17009] EXT4-fs: Ignoring removed bh option
[  345.493589][T17009] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  345.515611][T17019] EXT4-fs: Ignoring removed nobh option
[  345.521252][T17019] ext4: Unknown parameter 'fowner>00000000000000000000'
[  345.609971][T17030] __nla_validate_parse: 4 callbacks suppressed
[  345.609985][T17030] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4533'.
[  345.632001][   T29] kauditd_printk_skb: 352 callbacks suppressed
[  345.632013][   T29] audit: type=1326 audit(1753930609.576:12246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17032 comm="syz.3.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4ba45e9a9 code=0x7ffc0000
[  345.661805][   T29] audit: type=1326 audit(1753930609.576:12247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17032 comm="syz.3.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4ba45e9a9 code=0x7ffc0000
[  345.699765][T17031] loop0: detected capacity change from 0 to 1024
[  345.709576][T17030] loop4: detected capacity change from 0 to 512
[  345.734617][T17033] loop3: detected capacity change from 0 to 1024
[  345.743597][T17033] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  345.754087][T17031] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  345.763067][T17031] System zones: 0-1, 3-36
[  345.770749][T17031] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  345.772380][T17030] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  345.792230][   T29] audit: type=1326 audit(1753930609.626:12248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17032 comm="syz.3.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe4ba45e9a9 code=0x7ffc0000
[  345.815947][   T29] audit: type=1326 audit(1753930609.626:12249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17032 comm="syz.3.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4ba45e9a9 code=0x7ffc0000
[  345.831841][T17033] EXT4-fs error (device loop3): ext4_map_blocks:816: inode #3: block 1: comm syz.3.4534: lblock 1 mapped to illegal pblock 1 (length 1)
[  345.839529][   T29] audit: type=1326 audit(1753930609.626:12250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17032 comm="syz.3.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4ba45e9a9 code=0x7ffc0000
[  345.877098][   T29] audit: type=1326 audit(1753930609.626:12251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17032 comm="syz.3.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe4ba45e9a9 code=0x7ffc0000
[  345.900734][   T29] audit: type=1326 audit(1753930609.626:12252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17032 comm="syz.3.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4ba45e9a9 code=0x7ffc0000
[  345.924300][   T29] audit: type=1326 audit(1753930609.626:12253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17032 comm="syz.3.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe4ba45e9a9 code=0x7ffc0000
[  345.947863][   T29] audit: type=1326 audit(1753930609.626:12254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17032 comm="syz.3.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4ba45e9a9 code=0x7ffc0000
[  345.971437][   T29] audit: type=1326 audit(1753930609.626:12255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17032 comm="syz.3.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe4ba45e9a9 code=0x7ffc0000
[  345.999422][T17033] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.4534: Failed to acquire dquot type 0
[  346.013307][T17009] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4529'.
[  346.024308][T17030] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  346.038006][T17033] EXT4-fs error (device loop3): ext4_free_blocks:6587: comm syz.3.4534: Freeing blocks not in datazone - block = 0, count = 4096
[  346.053068][T17030] ext4 filesystem being mounted at /321/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  346.053499][T17033] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.4534: Invalid inode bitmap blk 0 in block_group 0
[  346.084306][T14616] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:39: lblock 1 mapped to illegal pblock 1 (length 1)
[  346.107566][T17033] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  346.116778][T14616] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:39: Failed to release dquot type 0
[  346.129512][T17033] EXT4-fs (loop3): 1 orphan inode deleted
[  346.135688][T17033] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  346.149167][T12170] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  346.159717][T11927] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  346.187939][ T7549] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  346.236045][T12603] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  346.276366][T17049] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  346.402829][T17045] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4538'.
[  346.411819][T17045] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  346.419261][T17045] batman_adv: batadv0: Removing interface: batadv_slave_0
[  346.430322][T17045] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  346.437747][T17045] batman_adv: batadv0: Removing interface: batadv_slave_1
[  346.591066][T17081] loop5: detected capacity change from 0 to 1024
[  346.610505][T17081] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  346.622344][T17081] EXT4-fs error (device loop5): ext4_map_blocks:816: inode #3: block 1: comm syz.5.4550: lblock 1 mapped to illegal pblock 1 (length 1)
[  346.637802][T17085] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  346.641825][T17081] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.4550: Failed to acquire dquot type 0
[  346.698548][T17088] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4548'.
[  346.750286][T17088] loop4: detected capacity change from 0 to 512
[  346.803245][T17088] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.4548: bg 0: block 16: invalid block bitmap
[  346.816463][T17088] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  346.826240][T17088] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #13: comm syz.4.4548: attempt to clear invalid blocks 1669132790 len 1
[  346.843120][T17088] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.4548: invalid indirect mapped block 4294967295 (level 1)
[  346.858164][T17088] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.4548: invalid indirect mapped block 4294967295 (level 2)
[  346.873128][T17088] EXT4-fs (loop4): 1 truncate cleaned up
[  346.879476][T17088] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  346.993877][T17081] EXT4-fs error (device loop5): ext4_free_blocks:6587: comm syz.5.4550: Freeing blocks not in datazone - block = 0, count = 4096
[  347.047514][T17081] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.4550: Invalid inode bitmap blk 0 in block_group 0
[  347.062740][T17094] loop0: detected capacity change from 0 to 512
[  347.071001][   T51] EXT4-fs error (device loop5): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1)
[  347.085550][   T51] EXT4-fs error (device loop5): ext4_release_dquot:6969: comm kworker/u8:3: Failed to release dquot type 0
[  347.085898][T17081] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[  347.106624][T17081] EXT4-fs (loop5): 1 orphan inode deleted
[  347.119010][T17094] EXT4-fs (loop0): orphan cleanup on readonly fs
[  347.125615][T17081] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  347.125931][T17094] EXT4-fs error (device loop0): ext4_orphan_get:1419: comm syz.0.4554: bad orphan inode 13
[  347.158492][T17094] ext4_test_bit(bit=12, block=18) = 1
[  347.163993][T17094] is_bad_inode(inode)=0
[  347.168151][T17094] NEXT_ORPHAN(inode)=2130706432
[  347.169809][T17099] netlink: 'syz.6.4556': attribute type 4 has an invalid length.
[  347.173052][T17094] max_ino=32
[  347.183965][T17094] i_nlink=1
[  347.184600][T17099] netlink: 'syz.6.4556': attribute type 4 has an invalid length.
[  347.188628][T17094] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  347.267593][T13414] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  347.298488][T17094] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  347.377541][T11927] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  347.387865][T17094] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.4554: bg 0: block 248: padding at end of block bitmap is not set
[  347.402632][T17094] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.4554: Failed to acquire dquot type 1
[  347.429733][T17094] EXT4-fs warning (device loop0): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  347.486206][T12170] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  347.545333][T17122] loop6: detected capacity change from 0 to 1024
[  347.552498][T17120] loop0: detected capacity change from 0 to 1024
[  347.559154][T17122] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  347.568408][T17122] System zones: 0-1, 3-36
[  347.574555][T17122] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  347.591258][T17120] EXT4-fs: inline encryption not supported
[  347.597096][T17120] EXT4-fs: Ignoring removed i_version option
[  347.619308][T17120] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  347.636971][T17120] EXT4-fs error (device loop0): ext4_map_blocks:816: inode #3: block 1: comm syz.0.4563: lblock 1 mapped to illegal pblock 1 (length 1)
[  347.652070][T17120] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.4563: Failed to acquire dquot type 0
[  347.673468][T17120] EXT4-fs error (device loop0): ext4_free_blocks:6587: comm syz.0.4563: Freeing blocks not in datazone - block = 0, count = 4096
[  347.687094][T17120] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.4563: Invalid inode bitmap blk 0 in block_group 0
[  347.700239][T17120] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[  347.700295][T14626] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:49: lblock 1 mapped to illegal pblock 1 (length 1)
[  347.708897][T17120] EXT4-fs (loop0): 1 orphan inode deleted
[  347.729131][T17120] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  347.748128][T17120] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4563'.
[  347.757426][T17120] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4563'.
[  347.771171][T17120] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5134 sclass=netlink_route_socket pid=17120 comm=syz.0.4563
[  347.789563][T14626] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:49: Failed to release dquot type 0
[  347.795915][T17120] EXT4-fs error (device loop0): ext4_lookup:1787: inode #15: comm syz.0.4563: iget: bad extra_isize 65535 (inode size 256)
[  347.816546][ T7549] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  347.863771][T12170] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  347.910892][T17127] loop6: detected capacity change from 0 to 8192
[  347.995568][T17132] syz.6.4565: attempt to access beyond end of device
[  347.995568][T17132] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  348.024320][T17132] FAT-fs (loop6): error, invalid access to FAT (entry 0x0000e1b1)
[  348.032225][T17132] FAT-fs (loop6): Filesystem has been set read-only
[  348.065567][T17132] FAT-fs (loop6): error, invalid access to FAT (entry 0x0000e1b1)
[  348.098098][T17132] FAT-fs (loop6): error, invalid access to FAT (entry 0x0000e1b1)
[  348.106519][T17136] netlink: 68 bytes leftover after parsing attributes in process `syz.0.4568'.
[  348.134868][T17136] loop0: detected capacity change from 0 to 1024
[  348.147968][T17136] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  348.165593][T17136] System zones: 0-1, 3-36
[  348.173791][T17136] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  348.199480][T12170] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  348.239155][T17141] loop5: detected capacity change from 0 to 512
[  348.274721][T17143] loop0: detected capacity change from 0 to 512
[  348.300962][T17146] loop6: detected capacity change from 0 to 1024
[  348.316838][T17141] EXT4-fs (loop5): orphan cleanup on readonly fs
[  348.339608][T17143] EXT4-fs (loop0): orphan cleanup on readonly fs
[  348.350094][T17141] EXT4-fs error (device loop5): ext4_orphan_get:1419: comm syz.5.4571: bad orphan inode 13
[  348.361793][T17143] EXT4-fs error (device loop0): ext4_orphan_get:1419: comm syz.0.4570: bad orphan inode 13
[  348.373101][T17146] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  348.385701][T17141] ext4_test_bit(bit=12, block=18) = 1
[  348.387885][T17152] loop4: detected capacity change from 0 to 512
[  348.391114][T17141] is_bad_inode(inode)=0
[  348.391124][T17141] NEXT_ORPHAN(inode)=2130706432
[  348.391213][T17141] max_ino=32
[  348.397646][T17143] ext4_test_bit(bit=12, block=18) = 1
[  348.401542][T17141] i_nlink=1
[  348.406354][T17143] is_bad_inode(inode)=0
[  348.410542][T17141] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  348.414921][T17143] NEXT_ORPHAN(inode)=2130706432
[  348.414930][T17143] max_ino=32
[  348.442669][T17143] i_nlink=1
[  348.448050][T17141] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  348.458304][T17146] EXT4-fs error (device loop6): ext4_map_blocks:816: inode #3: block 1: comm syz.6.4569: lblock 1 mapped to illegal pblock 1 (length 1)
[  348.473163][T17152] EXT4-fs (loop4): orphan cleanup on readonly fs
[  348.480345][T17152] EXT4-fs error (device loop4): ext4_orphan_get:1419: comm syz.4.4574: bad orphan inode 13
[  348.492129][T17146] EXT4-fs error (device loop6): ext4_acquire_dquot:6933: comm syz.6.4569: Failed to acquire dquot type 0
[  348.499952][T17143] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  348.504238][T17152] ext4_test_bit(bit=12, block=18) = 1
[  348.516730][T17146] EXT4-fs error (device loop6): ext4_free_blocks:6587: comm syz.6.4569: Freeing blocks not in datazone - block = 0, count = 4096
[  348.521162][T17152] is_bad_inode(inode)=0
[  348.521172][T17152] NEXT_ORPHAN(inode)=2130706432
[  348.521180][T17152] max_ino=32
[  348.546610][T17152] i_nlink=1
[  348.557861][T17141] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.4571: bg 0: block 248: padding at end of block bitmap is not set
[  348.573884][T17143] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  348.583909][T17146] EXT4-fs error (device loop6): ext4_read_inode_bitmap:139: comm syz.6.4569: Invalid inode bitmap blk 0 in block_group 0
[  348.597469][T14652] EXT4-fs error (device loop6): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:67: lblock 1 mapped to illegal pblock 1 (length 1)
[  348.612323][T17143] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.4570: bg 0: block 248: padding at end of block bitmap is not set
[  348.626899][T17141] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.4571: Failed to acquire dquot type 1
[  348.627677][T17143] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.4570: Failed to acquire dquot type 1
[  348.650073][T14652] EXT4-fs error (device loop6): ext4_release_dquot:6969: comm kworker/u8:67: Failed to release dquot type 0
[  348.656210][T17161] netlink: 100 bytes leftover after parsing attributes in process `syz.3.4576'.
[  348.662439][T17152] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  348.673732][T17146] EXT4-fs error (device loop6) in ext4_free_inode:361: Corrupt filesystem
[  348.684002][T17141] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  348.698191][T17146] EXT4-fs (loop6): 1 orphan inode deleted
[  348.706998][T17143] EXT4-fs warning (device loop0): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  348.712596][T17146] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  348.739144][T17152] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  348.760068][T17152] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.4574: bg 0: block 248: padding at end of block bitmap is not set
[  348.782826][T17152] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.4574: Failed to acquire dquot type 1
[  348.795818][T17165] syz.3.4577: attempt to access beyond end of device
[  348.795818][T17165] loop7: rw=0, sector=0, nr_sectors = 1 limit=0
[  348.818953][T17165] FAT-fs (loop7): unable to read boot sector
[  348.829638][T17152] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  348.844729][ T7549] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  348.892793][T17169] loop0: detected capacity change from 0 to 764
[  348.914336][T17172] loop5: detected capacity change from 0 to 512
[  348.941574][T17172] EXT4-fs (loop5): orphan cleanup on readonly fs
[  348.955719][T17172] EXT4-fs error (device loop5): ext4_orphan_get:1419: comm syz.5.4580: bad orphan inode 13
[  348.978545][T17172] ext4_test_bit(bit=12, block=18) = 1
[  348.983970][T17172] is_bad_inode(inode)=0
[  348.988135][T17172] NEXT_ORPHAN(inode)=2130706432
[  348.992989][T17172] max_ino=32
[  348.992996][T17172] i_nlink=1
[  349.038915][T17172] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  349.061208][T17182] loop6: detected capacity change from 0 to 1024
[  349.074464][T17172] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.4580: bg 0: block 248: padding at end of block bitmap is not set
[  349.089236][T17182] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  349.097918][T17182] System zones: 0-1, 3-36
[  349.106301][T17172] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.4580: Failed to acquire dquot type 1
[  349.133549][T17172] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  349.199070][T17189] loop0: detected capacity change from 0 to 1024
[  349.271240][T17189] EXT4-fs: Ignoring removed i_version option
[  349.309390][T17189] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  349.354432][T17189] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.4585: Invalid block bitmap block 0 in block_group 0
[  349.385142][T17189] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.4585: Failed to acquire dquot type 0
[  349.419582][T17189] EXT4-fs error (device loop0): ext4_free_blocks:6587: comm syz.0.4585: Freeing blocks not in datazone - block = 0, count = 4096
[  349.428007][T17199] loop5: detected capacity change from 0 to 1024
[  349.472098][T17189] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.4585: Invalid inode bitmap blk 0 in block_group 0
[  349.489476][T14638] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:61: Failed to release dquot type 0
[  349.509690][T17189] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[  349.518658][T17199] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  349.531083][T17199] EXT4-fs error (device loop5): ext4_map_blocks:816: inode #3: block 1: comm syz.5.4588: lblock 1 mapped to illegal pblock 1 (length 1)
[  349.559241][T17199] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.4588: Failed to acquire dquot type 0
[  349.572168][T17189] EXT4-fs (loop0): 1 orphan inode deleted
[  349.608868][T17199] EXT4-fs error (device loop5): ext4_free_blocks:6587: comm syz.5.4588: Freeing blocks not in datazone - block = 0, count = 4096
[  349.637497][T17202] loop6: detected capacity change from 0 to 1024
[  349.644664][T17199] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.4588: Invalid inode bitmap blk 0 in block_group 0
[  349.658100][T17202] EXT4-fs: Ignoring removed i_version option
[  349.664158][T14652] EXT4-fs error (device loop5): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:67: lblock 1 mapped to illegal pblock 1 (length 1)
[  349.685018][T17199] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[  349.695231][T14652] EXT4-fs error (device loop5): ext4_release_dquot:6969: comm kworker/u8:67: Failed to release dquot type 0
[  349.715984][T17199] EXT4-fs (loop5): 1 orphan inode deleted
[  349.719380][T17202] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  349.748260][T17204] loop0: detected capacity change from 0 to 512
[  349.764513][T17204] EXT4-fs (loop0): orphan cleanup on readonly fs
[  349.785693][T17202] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:483: comm syz.6.4589: Invalid block bitmap block 0 in block_group 0
[  349.801609][T17204] EXT4-fs error (device loop0): ext4_orphan_get:1419: comm syz.0.4590: bad orphan inode 13
[  349.843318][T17208] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  349.905097][T17204] ext4_test_bit(bit=12, block=18) = 1
[  349.909563][T17202] EXT4-fs error (device loop6): ext4_acquire_dquot:6933: comm syz.6.4589: Failed to acquire dquot type 0
[  349.910565][T17204] is_bad_inode(inode)=0
[  349.926006][T17204] NEXT_ORPHAN(inode)=2130706432
[  349.930973][T17204] max_ino=32
[  349.934163][T17204] i_nlink=1
[  349.980016][T17204] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  349.990421][T17202] EXT4-fs error (device loop6): ext4_free_blocks:6587: comm syz.6.4589: Freeing blocks not in datazone - block = 0, count = 4096
[  350.017045][T17204] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.4590: bg 0: block 248: padding at end of block bitmap is not set
[  350.018625][T17202] EXT4-fs error (device loop6): ext4_read_inode_bitmap:139: comm syz.6.4589: Invalid inode bitmap blk 0 in block_group 0
[  350.044696][   T51] EXT4-fs error (device loop6): ext4_release_dquot:6969: comm kworker/u8:3: Failed to release dquot type 0
[  350.058788][T17202] EXT4-fs error (device loop6) in ext4_free_inode:361: Corrupt filesystem
[  350.072022][T17204] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.4590: Failed to acquire dquot type 1
[  350.083933][T17202] EXT4-fs (loop6): 1 orphan inode deleted
[  350.100816][T17204] EXT4-fs warning (device loop0): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  350.143140][T17228] netlink: 100 bytes leftover after parsing attributes in process `syz.5.4599'.
[  350.180264][T17234] netlink: 100 bytes leftover after parsing attributes in process `syz.6.4600'.
[  350.226060][T17237] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  350.315109][T17251] loop5: detected capacity change from 0 to 764
[  350.335318][T17251] iso9660: Unknown parameter 'devtmpfs'
[  350.481175][T17261] loop5: detected capacity change from 0 to 764
[  350.493172][T17261] iso9660: Unknown parameter 'devtmpfs'
[  350.620791][T17269] netlink: 132 bytes leftover after parsing attributes in process `syz.6.4614'.
[  350.821570][T17273] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4617'.
[  350.926233][T17283] loop6: detected capacity change from 0 to 764
[  351.039953][T17291] netlink: 'syz.6.4623': attribute type 4 has an invalid length.
[  351.070226][T17291] netlink: 'syz.6.4623': attribute type 4 has an invalid length.
[  351.110834][T17295] loop0: detected capacity change from 0 to 764
[  351.154115][T17295] iso9660: Unknown parameter 'devtmpfs'
[  351.301890][T17313] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4631'.
[  351.320939][   T29] kauditd_printk_skb: 521 callbacks suppressed
[  351.320954][   T29] audit: type=1326 audit(1753930615.266:12744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17314 comm="syz.5.4633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa38eb6e9a9 code=0x7ffc0000
[  351.391283][   T29] audit: type=1326 audit(1753930615.296:12745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17314 comm="syz.5.4633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa38eb6e9a9 code=0x7ffc0000
[  351.414995][   T29] audit: type=1326 audit(1753930615.296:12746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17314 comm="syz.5.4633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa38eb6e9a9 code=0x7ffc0000
[  351.428547][T17325] syz.4.4637: attempt to access beyond end of device
[  351.428547][T17325] loop9: rw=0, sector=0, nr_sectors = 1 limit=0
[  351.438672][   T29] audit: type=1326 audit(1753930615.296:12747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17314 comm="syz.5.4633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa38eb6e9a9 code=0x7ffc0000
[  351.475172][   T29] audit: type=1326 audit(1753930615.296:12748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17314 comm="syz.5.4633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa38eb6e9a9 code=0x7ffc0000
[  351.499037][   T29] audit: type=1326 audit(1753930615.296:12749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17314 comm="syz.5.4633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa38eb6e9a9 code=0x7ffc0000
[  351.522742][   T29] audit: type=1326 audit(1753930615.296:12750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17314 comm="syz.5.4633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa38eb6e9a9 code=0x7ffc0000
[  351.546460][   T29] audit: type=1326 audit(1753930615.296:12751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17314 comm="syz.5.4633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa38eb6e9a9 code=0x7ffc0000
[  351.554908][T17321] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  351.570223][   T29] audit: type=1326 audit(1753930615.296:12752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17314 comm="syz.5.4633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa38eb6e9a9 code=0x7ffc0000
[  351.601094][   T29] audit: type=1326 audit(1753930615.296:12753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17314 comm="syz.5.4633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa38eb6e9a9 code=0x7ffc0000
[  351.625704][T17325] FAT-fs (loop9): unable to read boot sector
[  351.648030][T17331] loop3: detected capacity change from 0 to 1024
[  351.685855][T17335] netlink: 68 bytes leftover after parsing attributes in process `syz.0.4641'.
[  351.695544][T17331] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  351.703780][T17331] System zones: 0-1, 3-36
[  351.743990][T17338] loop5: detected capacity change from 0 to 1024
[  351.754585][T17338] EXT4-fs: Ignoring removed i_version option
[  351.895202][T17338] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  351.916677][T17345] loop3: detected capacity change from 0 to 512
[  351.923509][T17345] EXT4-fs: Ignoring removed mblk_io_submit option
[  351.935388][T17345] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  351.956723][T17345] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e016c018, mo2=0002]
[  351.965312][T17345] System zones: 1-12
[  351.970502][T17338] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.4640: Invalid block bitmap block 0 in block_group 0
[  351.986501][T17345] EXT4-fs (loop3): 1 truncate cleaned up
[  351.993348][T17338] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.4640: Failed to acquire dquot type 0
[  352.023259][T17338] EXT4-fs error (device loop5): ext4_free_blocks:6587: comm syz.5.4640: Freeing blocks not in datazone - block = 0, count = 4096
[  352.057863][T17338] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.4640: Invalid inode bitmap blk 0 in block_group 0
[  352.071207][   T12] EXT4-fs error (device loop5): ext4_release_dquot:6969: comm kworker/u8:0: Failed to release dquot type 0
[  352.083760][T17338] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[  352.093793][T17338] EXT4-fs (loop5): 1 orphan inode deleted
[  352.184625][T17353] netlink: 'syz.3.4646': attribute type 4 has an invalid length.
[  352.232604][T17353] netlink: 'syz.3.4646': attribute type 4 has an invalid length.
[  352.292291][T17361] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  352.351669][T17365] loop5: detected capacity change from 0 to 1024
[  352.352252][T17365] EXT4-fs: Ignoring removed i_version option
[  352.355857][T17365] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  352.358267][T17365] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.4652: Invalid block bitmap block 0 in block_group 0
[  352.358407][T17365] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.4652: Failed to acquire dquot type 0
[  352.358502][T17365] EXT4-fs error (device loop5): ext4_free_blocks:6587: comm syz.5.4652: Freeing blocks not in datazone - block = 0, count = 4096
[  352.359242][T17365] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.4652: Invalid inode bitmap blk 0 in block_group 0
[  352.360183][T17365] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[  352.360443][T17365] EXT4-fs (loop5): 1 orphan inode deleted
[  352.371801][T14584] EXT4-fs error (device loop5): ext4_release_dquot:6969: comm kworker/u8:10: Failed to release dquot type 0
[  352.457436][T17372] loop5: detected capacity change from 0 to 512
[  352.563416][T17372] EXT4-fs (loop5): orphan cleanup on readonly fs
[  352.594205][T17372] EXT4-fs error (device loop5): ext4_orphan_get:1419: comm syz.5.4654: bad orphan inode 13
[  352.617368][T17381] vlan2: entered allmulticast mode
[  352.645723][T17372] ext4_test_bit(bit=12, block=18) = 1
[  352.651179][T17372] is_bad_inode(inode)=0
[  352.655441][T17372] NEXT_ORPHAN(inode)=2130706432
[  352.660367][T17372] max_ino=32
[  352.663558][T17372] i_nlink=1
[  352.669734][T17372] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  352.699957][T17372] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.4654: bg 0: block 248: padding at end of block bitmap is not set
[  352.728237][T17372] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.4654: Failed to acquire dquot type 1
[  352.741569][T17372] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  352.776530][T17393] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  352.868111][T17397] loop4: detected capacity change from 0 to 1024
[  352.877752][T17397] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  352.892680][T17397] EXT4-fs error (device loop4): ext4_map_blocks:816: inode #3: block 1: comm syz.4.4664: lblock 1 mapped to illegal pblock 1 (length 1)
[  352.895433][T17401] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4665'.
[  352.912564][T17397] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.4664: Failed to acquire dquot type 0
[  352.927275][T17397] EXT4-fs error (device loop4): ext4_free_blocks:6587: comm syz.4.4664: Freeing blocks not in datazone - block = 0, count = 4096
[  352.941133][T17401] loop5: detected capacity change from 0 to 512
[  352.941130][T17397] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.4664: Invalid inode bitmap blk 0 in block_group 0
[  352.961097][ T4342] EXT4-fs error (device loop4): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:8: lblock 1 mapped to illegal pblock 1 (length 1)
[  352.963410][T17397] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  352.979063][ T4342] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:8: Failed to release dquot type 0
[  352.985773][T17397] EXT4-fs (loop4): 1 orphan inode deleted
[  353.001125][T17401] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  353.012331][T17401] ext4 filesystem being mounted at /272/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  353.520761][ T7549] bridge0: port 3(syz_tun) entered disabled state
[  353.535603][ T7549] syz_tun (unregistering): left promiscuous mode
[  353.542056][ T7549] bridge0: port 3(syz_tun) entered disabled state
[  353.644482][T17429] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4672'.
[  353.682448][   T12] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  353.733580][T17433] netlink: 68 bytes leftover after parsing attributes in process `syz.0.4673'.
[  353.778732][T17433] loop0: detected capacity change from 0 to 1024
[  353.787212][   T12] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  353.816814][T17433] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  353.901366][   T12] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  353.962307][T17433] System zones: 0-1, 3-36
[  354.046712][   T12] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  354.183413][   T12] bridge_slave_1: left allmulticast mode
[  354.189118][   T12] bridge_slave_1: left promiscuous mode
[  354.194851][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  354.235207][   T12] bridge_slave_0: left allmulticast mode
[  354.240906][   T12] bridge_slave_0: left promiscuous mode
[  354.246569][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  354.387069][   T12] team0: Port device geneve1 removed
[  354.396086][T17439] loop0: detected capacity change from 0 to 512
[  354.417976][T17439] EXT4-fs (loop0): orphan cleanup on readonly fs
[  354.426114][T17439] EXT4-fs error (device loop0): ext4_orphan_get:1419: comm syz.0.4674: bad orphan inode 13
[  354.446440][T17439] ext4_test_bit(bit=12, block=18) = 1
[  354.451888][T17439] is_bad_inode(inode)=0
[  354.456168][T17439] NEXT_ORPHAN(inode)=2130706432
[  354.461041][T17439] max_ino=32
[  354.464229][T17439] i_nlink=1
[  354.490988][T17442] loop5: detected capacity change from 0 to 1024
[  354.520827][T17442] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  354.529160][T17439] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  354.539393][T17442] System zones: 0-1, 3-36
[  354.551619][T17439] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.4674: bg 0: block 248: padding at end of block bitmap is not set
[  354.581661][T17439] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.4674: Failed to acquire dquot type 1
[  354.595703][T17439] EXT4-fs warning (device loop0): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  354.780198][T17452] loop0: detected capacity change from 0 to 1024
[  354.791289][T17452] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  354.810005][T17452] EXT4-fs error (device loop0): ext4_map_blocks:816: inode #3: block 1: comm syz.0.4678: lblock 1 mapped to illegal pblock 1 (length 1)
[  354.831312][T17452] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.4678: Failed to acquire dquot type 0
[  354.842914][T17452] EXT4-fs error (device loop0): ext4_free_blocks:6587: comm syz.0.4678: Freeing blocks not in datazone - block = 0, count = 4096
[  354.857010][T17452] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.4678: Invalid inode bitmap blk 0 in block_group 0
[  354.870881][  T332] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 1)
[  354.870981][T17452] ==================================================================
[  354.886190][  T332] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 0
[  354.893175][T17452] BUG: KCSAN: data-race in data_alloc / prb_reserve
[  354.911094][T17452] 
[  354.913407][T17452] write to 0xffffffff86871010 of 8 bytes by task 332 on cpu 0:
[  354.920929][T17452]  data_alloc+0x27d/0x2b0
[  354.925286][T17452]  prb_reserve+0x808/0xaf0
[  354.929690][T17452]  vprintk_store+0x56d/0x860
[  354.934280][T17452]  vprintk_emit+0x178/0x650
[  354.938764][T17452]  vprintk_default+0x26/0x30
[  354.943359][T17452]  vprintk+0x1d/0x30
[  354.947427][T17452]  _printk+0x79/0xa0
[  354.951306][T17452]  __ext4_error_inode+0x30f/0x3f0
[  354.956312][T17452]  ext4_map_blocks+0xa7a/0xd70
[  354.961107][T17452]  ext4_getblk+0x114/0x510
[  354.965593][T17452]  ext4_bread+0x28/0x110
[  354.969993][T17452]  ext4_quota_read+0xe8/0x260
[  354.974667][T17452]  remove_tree+0x129/0x1120
[  354.979152][T17452]  qtree_release_dquot+0x16e/0x180
[  354.984242][T17452]  v2_release_dquot+0x98/0xd0
[  354.988914][T17452]  dquot_release+0x10e/0x210
[  354.993496][T17452]  ext4_release_dquot+0x1e4/0x460
[  354.998543][T17452]  quota_release_workfn+0x253/0x530
[  355.003736][T17452]  process_scheduled_works+0x4cb/0x9d0
[  355.009185][T17452]  worker_thread+0x582/0x770
[  355.013764][T17452]  kthread+0x486/0x510
[  355.017812][T17452]  ret_from_fork+0xdd/0x150
[  355.022299][T17452]  ret_from_fork_asm+0x1a/0x30
[  355.027049][T17452] 
[  355.029364][T17452] read to 0xffffffff86871010 of 8 bytes by task 17452 on cpu 1:
[  355.036969][T17452]  prb_reserve+0x221/0xaf0
[  355.041373][T17452]  vprintk_store+0x56d/0x860
[  355.045941][T17452]  vprintk_emit+0x178/0x650
[  355.050424][T17452]  vprintk_default+0x26/0x30
[  355.055010][T17452]  vprintk+0x1d/0x30
[  355.058894][T17452]  _printk+0x79/0xa0
[  355.062777][T17452]  __ext4_std_error+0x346/0x370
[  355.067606][T17452]  ext4_free_inode+0x79e/0x870
[  355.072349][T17452]  ext4_evict_inode+0xaff/0xd80
[  355.077182][T17452]  evict+0x2e0/0x550
[  355.081056][T17452]  iput+0x447/0x5b0
[  355.084844][T17452]  ext4_process_orphan+0x1a9/0x1c0
[  355.089931][T17452]  ext4_orphan_cleanup+0x6a8/0xa00
[  355.095020][T17452]  ext4_fill_super+0x3171/0x34e0
[  355.099939][T17452]  get_tree_bdev_flags+0x291/0x300
[  355.105059][T17452]  get_tree_bdev+0x1f/0x30
[  355.109459][T17452]  ext4_get_tree+0x1c/0x30
[  355.113862][T17452]  vfs_get_tree+0x54/0x1d0
[  355.118260][T17452]  do_new_mount+0x207/0x5e0
[  355.122747][T17452]  path_mount+0x4a4/0xb20
[  355.127057][T17452]  __se_sys_mount+0x28f/0x2e0
[  355.131713][T17452]  __x64_sys_mount+0x67/0x80
[  355.136281][T17452]  x64_sys_call+0x2b4d/0x2ff0
[  355.140940][T17452]  do_syscall_64+0xd2/0x200
[  355.145423][T17452]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.151320][T17452] 
[  355.153630][T17452] value changed: 0xfffffffffffd96f8 -> 0x000000000009ab48
[  355.160708][T17452] 
[  355.163012][T17452] Reported by Kernel Concurrency Sanitizer on:
[  355.169146][T17452] CPU: 1 UID: 0 PID: 17452 Comm: syz.0.4678 Tainted: G        W           6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(voluntary) 
[  355.182840][T17452] Tainted: [W]=WARN
[  355.186619][T17452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  355.196651][T17452] ==================================================================
[  354.870874][T17452] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[  355.214380][T17452] EXT4-fs (loop0): 1 orphan inode deleted
[  355.231403][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  355.242002][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  355.251731][   T12] bond0 (unregistering): Released all slaves
[  355.305481][T17419] chnl_net:caif_netlink_parms(): no params data found
[  355.326587][   T12] tipc: Left network mode
[  355.349601][T17419] bridge0: port 1(bridge_slave_0) entered blocking state
[  355.356703][T17419] bridge0: port 1(bridge_slave_0) entered disabled state
[  355.363936][T17419] bridge_slave_0: entered allmulticast mode
[  355.370452][T17419] bridge_slave_0: entered promiscuous mode
[  355.378211][   T12] hsr_slave_0: left promiscuous mode
[  355.385674][   T12] hsr_slave_1: left promiscuous mode
[  355.393634][   T12] veth1_macvtap: left promiscuous mode
[  355.399180][   T12] veth0_macvtap: left promiscuous mode
[  355.404842][   T12] veth1_vlan: left promiscuous mode
[  355.410075][   T12] veth0_vlan: left promiscuous mode
[  355.461922][   T12] team0 (unregistering): Port device team_slave_1 removed
[  355.471552][   T12] team0 (unregistering): Port device team_slave_0 removed
[  355.479021][T14606] smc: removing ib device syz!
[  355.499054][T17419] bridge0: port 2(bridge_slave_1) entered blocking state
[  355.506158][T17419] bridge0: port 2(bridge_slave_1) entered disabled state
[  355.513568][T17419] bridge_slave_1: entered allmulticast mode
[  355.519970][T17419] bridge_slave_1: entered promiscuous mode
[  355.560767][T17419] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  355.571440][T17419] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  355.597659][T17419] team0: Port device team_slave_0 added
[  355.604591][T17419] team0: Port device team_slave_1 added
[  355.626494][T17419] batman_adv: batadv0: Adding interface: batadv_slave_0
[  355.633498][T17419] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  355.659428][T17419] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  355.670811][T17419] batman_adv: batadv0: Adding interface: batadv_slave_1
[  355.677762][T17419] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  355.703730][T17419] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  355.737407][T17419] hsr_slave_0: entered promiscuous mode
[  355.743911][T17419] hsr_slave_1: entered promiscuous mode
[  355.749754][T17419] debugfs: 'hsr0' already exists in 'hsr'
[  355.755543][T17419] Cannot create hsr debugfs directory
[  355.993620][T17419] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  356.002586][T17419] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  356.010883][T17419] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  356.019161][T17419] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  356.033983][T17419] bridge0: port 2(bridge_slave_1) entered blocking state
[  356.041109][T17419] bridge0: port 2(bridge_slave_1) entered forwarding state
[  356.048408][T17419] bridge0: port 1(bridge_slave_0) entered blocking state
[  356.055469][T17419] bridge0: port 1(bridge_slave_0) entered forwarding state
[  356.080087][T17419] 8021q: adding VLAN 0 to HW filter on device bond0
[  356.090793][T17419] 8021q: adding VLAN 0 to HW filter on device team0
[  356.099210][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  356.107403][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  356.120840][T14584] bridge0: port 1(bridge_slave_0) entered blocking state
[  356.127914][T14584] bridge0: port 1(bridge_slave_0) entered forwarding state
[  356.137693][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  356.144913][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  356.198952][T17419] 8021q: adding VLAN 0 to HW filter on device batadv0
[  356.282515][T17419] veth0_vlan: entered promiscuous mode
[  356.289904][T17419] veth1_vlan: entered promiscuous mode
[  356.303602][T17419] veth0_macvtap: entered promiscuous mode
[  356.311309][T17419] veth1_macvtap: entered promiscuous mode
[  356.321155][T17419] batman_adv: batadv0: Interface activated: batadv_slave_0
[  356.332171][T17419] batman_adv: batadv0: Interface activated: batadv_slave_1
[  356.342225][  T332] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  356.351861][  T332] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  356.362277][  T332] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  356.371681][  T332] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  356.387671][   T29] kauditd_printk_skb: 318 callbacks suppressed
[  356.387685][   T29] audit: type=1400 audit(1753930620.326:13056): avc:  denied  { mounton } for  pid=17419 comm="syz-executor" path="/root/syzkaller.4S2sIP/syz-tmp" dev="sda1" ino=2059 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[  356.418889][   T29] audit: type=1400 audit(1753930620.326:13057): avc:  denied  { mount } for  pid=17419 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  356.441237][   T29] audit: type=1400 audit(1753930620.326:13058): avc:  denied  { mounton } for  pid=17419 comm="syz-executor" path="/root/syzkaller.4S2sIP/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  356.468284][   T29] audit: type=1400 audit(1753930620.326:13059): avc:  denied  { mounton } for  pid=17419 comm="syz-executor" path="/root/syzkaller.4S2sIP/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=54530 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[  356.496439][   T29] audit: type=1400 audit(1753930620.366:13060): avc:  denied  { mounton } for  pid=17419 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=536 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  356.520137][   T29] audit: type=1400 audit(1753930620.366:13061): avc:  denied  { mount } for  pid=17419 comm="syz-executor" name="/" dev="gadgetfs" ino=3716 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1