last executing test programs:

2.816531561s ago: executing program 1 (id=1803):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x12, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x7}, 0x18)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup(r1)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x7}, 0x1c)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x4000000000000, 0x4, 0x0, 0x0)

2.470303637s ago: executing program 0 (id=1810):
syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
socket(0x1d, 0x5, 0x8)
geteuid()
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000d40)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021100011800c000100636f756e74657200400100000c0a01010000000000000000070000000900020073797a31000000000900010073797a300000000014010380100100800800034000000002030106"], 0x1d4}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

2.418673698s ago: executing program 0 (id=1812):
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/pm_print_times', 0x149a82, 0x0)
writev(r0, &(0x7f0000001a00), 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'veth0_to_team\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
bind$packet(r1, &(0x7f0000000080)={0x11, 0x4, r2, 0x1, 0x6, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3e}}, 0x14)
sendmsg$nl_route_sched(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0800000001000000ffffff7f04000000000a0000", @ANYRES32=0x1, @ANYBLOB="8300e47337c41d3b1000006d6a", @ANYRES32=r2, @ANYBLOB="0200000005"], 0x50)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r5}, 0x18)
r6 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xc3, 0x0, 0x0, 0x0, 0x0, 0x100000000000, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xa19a, 0x1000}, 0x0, 0x0, 0xffffffff, 0x1, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000340)='cpu\t&0&&\t')
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000680)=ANY=[@ANYBLOB="c8010000", @ANYRES16=r8, @ANYBLOB="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"], 0x1c8}}, 0x0)

2.318807309s ago: executing program 0 (id=1815):
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
syz_open_procfs(r0, &(0x7f0000000040)='attr/prev\x00')
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRES32, @ANYRES32=r1], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r2}, 0x18)
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_RX_RING(r3, 0x11b, 0x2, &(0x7f00000004c0)=0x1000000, 0x4)
getsockopt$XDP_STATISTICS(r3, 0x11b, 0x7, &(0x7f00000002c0), &(0x7f0000000480)=0x30)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={0x0}, 0x18)
r4 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000002c0)=0x1)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000340)='kmem_cache_free\x00', r5, 0x0, 0xffffffffffffffff}, 0x18)
r6 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="5c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB], 0x5c}}, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r8, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000040900010073797a300000000048000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a300000000008000540000000210c0009800800014000000005600000000c0a010300000000000000000700fffe0900020073797a31000000000900010073797a300000000034000380300000802c000180250001002130404c6bfef3a31e2587ebd76200eb3ea056f39e3ab8a93c358099bf8cf3007d00000014000000110001"], 0xf0}}, 0x0)
syz_emit_ethernet(0xfdef, &(0x7f0000000380)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x33, 0x0, @private, @broadcast}, {0x0, 0x0, 0x8}}}}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'gre0\x00', &(0x7f00000001c0)={'syztnl1\x00', 0x0, 0x8000, 0x7, 0x5, 0xa, {{0x15, 0x4, 0x2, 0x1b, 0x54, 0x68, 0x0, 0x3, 0x2f, 0x0, @rand_addr=0x64010100, @dev={0xac, 0x14, 0x14, 0x31}, {[@cipso={0x86, 0x3e, 0xffffffffffffffff, [{0x7, 0x10, "33924ccd51072a38e15f758ea20c"}, {0x7, 0x3, "e1"}, {0x6, 0x3, "ff"}, {0x2, 0x2}, {0x6, 0x12, "1156632c5500f549e6ac00d0a4ef933b"}, {0x4, 0xe, "a885e6117d1171de4396487d"}]}]}}}}})
r9 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
bind$x25(r9, 0x0, 0x0)

2.218489551s ago: executing program 2 (id=1817):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="1800"/14, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfd, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_bp={0x0, 0x9}, 0x0, 0x0, 0xffffffbe, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f00000001c0)='cpu~20\t&&')

2.150526903s ago: executing program 2 (id=1819):
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x143a82, 0x8)
r2 = dup(r1)
r3 = open(&(0x7f0000000100)='./bus\x00', 0x40542, 0x0)
sendfile(r2, r3, 0x0, 0x8000fffffffe)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
socket$rds(0x15, 0x5, 0x0)

2.051385004s ago: executing program 0 (id=1821):
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="020000000400000008"], 0x48)
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='sys_enter\x00'}, 0x10)
lgetxattr(0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r1}, 0x18)
r2 = socket(0x10, 0x803, 0x0)
sendto(r2, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="0107000000000000000020000000040003"], 0x1c}, 0x1, 0x0, 0x0, 0x8041}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(r2, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="40000108", @ANYRES16=r3, @ANYBLOB="00032dbd7000fedbdf25120000001c00118004000600040006000400040004000100040005000400030005007400020000000800a40002000000"], 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x40000)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000140)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000680)={0xcc, r3, 0x8, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0x2}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x24}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xf}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x2}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x324}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x27}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x10000}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xd43b}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x37a}], @chandef_params=[@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x5}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x7}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x4}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0xd}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1720}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x7}]]}, 0xcc}}, 0xc001)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/rcu_stall_count', 0x0, 0x122)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x121a02, 0x0)
sendfile(r6, r5, 0x0, 0x8)

2.014998545s ago: executing program 4 (id=1822):
syz_mount_image$iso9660(&(0x7f0000000180), &(0x7f0000000280)='./file0\x00', 0x14806, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0], 0x0, 0x700, &(0x7f0000000a40)="$eJzs3V2P21gZB/D/STJJJoWqAlStqm7ndMpKUzGkTmabKipIGOckY0jiyPbAjIS0KnRmNWqmQFskmpt2bniRli/A3d5wwYdYiQuu9lvAFUgrEBJiBUJGPrbzMnEykzadbtn/b7Qbx358zuNjr896xj4GERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERQVgNw6gItO3uzq6czWq4Tif5ksXU8qi0FdyMJm7Oq3MlrBcQ4T8oFvFWNPutr4xCLof/WsfV6NtVFMOPIgYXLl+6++VcJll/TsIvAosW+Pjp4MG9fn//0Rlis1i4+NcJmTMEtVTX9hy7Y7aUtD1H1ms149Z205NNu628Pc9XHWm5KuM7rtywbspKvb4lVXnP2em2GmZbJTPvfL1qGDX5nUK0owGUPWvbbrftbkvHhIvDmDvygx9EAcrsSHlw2N/fGsvnWVobh0GVlOQz48FhUPW0za0a1WqlUq1Warfrt+8YRm5qhhESxhCmIpZ+0NIbZrkncKKXkLEa/zH+JIA2iuhiB7uQqT8WGnDhoDNjeSzp/9+5pebWO97/J738ymjxFej+/1r07dqs/n9GLhJSr5C2RMyYv9jPis5I4jGeYoAHuIc++tjHoyWULSHXXrqEvBG35FLymfnTgkIXNjw4sNGBiRa+CBnPkaijhhoMvIdtNOFBogkbbSh42IMHHyo8ovJhpgomfDhwIbEBCzchUUEddWxBQqGMPTjYQRctNGDiX0EQHOBQt/tWnM/zlK1GElSZsREF5JLjbh/VOVs7q///4bNo7bj/N9j/f15Fx0Eh+vh4XgzRZ0AQX/8vaO3VZENEREREREREr4LQv30X+q/ybwMI0LTbypiIKby27IiIiIiIiIhoGQSCAq5CRHfl422I6et/IiIiIiIiInqzCf2MnQBQ0jf1i9HjUmf5JUD2HFIkIiIiIiIiopekn/y/lgcCfZf/GsRC1/9ERERERERE9Ab41dgY+7lsPMZukPxZPwNg7c8F8dHfCnBXxHFv96viyAyXmEdxzNQdAH7zirgYD9SrP/IA9DdLXRVxbRL4Z/Lbh9AnB+lj/T8PIkII90QC+ex4ATMSEGHNtVz8DR/gerTK9Xic+fuDDPSSaEThUtNuq7LltO9WYJoXM77a9X/28PDngDvczoPD/n75Rz/u39e5HIezjo/CQp9NpJNJb4xRLk/0eAv6mYu00Y1X0Uyq/HW3UxK6XiPZ/izMo8x4RfN2QG0ViLbyF1iP9tl6EMWWBsMR9wWwpgd/qJT1LpvYendFjLKonNzytB0xY8uLOosbUcyNjRvRR9ImYTkZUfxaFqiWp/fBRBbV8SxObwvx9xPtPz8LiGLYFlthFn8ICzqRxfc/ilbe6u0mw2OcJYupo4CI6HU5GPVCehDzqTH2k+4hOamdvd9BDojPcjN691EtQdx/JL37k98GUQ+VBXLx3ybSa0n6FYRn9A2hy8lHA7rnrqSc0Y3yp0EQmBeLGD+j/zcIkg0yFujdjoMgOHlG//3oHUhx2lNZ/DsIgrsV3ZP85kSv+mG4wocz6/Xa1SyKKODJ0U/0APih9/ff339YrW7VjHcN43YVK/p/FeKPLNj3EBHRlNPfsaMjMnMixLu4HpVx/f5f34mmJnq8L8W3FGi3gD7uYzN5hcBaeqklHOCb/4huQ9iMrlqB9VL0WRrIy5fuhle1w9hDkdNveNmceVWn+9IoVt/eUB3GJu8dOnkFOIrdesV7gYiI6Hytz+iHgYn+H5P9f3Gi/9/ERhSxcSX1urs0dkvhZnJ1PLykH1w4To2tnJ78t5bcGERERJ8Tyv1ElPxfCte1e+9V6vWK6W8r6TrWd6VrN1pK2l1fuda22W0p2XMd37Gctuy5KNirypPeTq/nuL5sOq7sOZ69q9/8LuNXv3uqY3Z92/J6bWV6SlpO1zctXzZsz5K9nW+3bW9buXplr6csu2lbpm87Xek5O66lylJ6So0F2g3V9e2mHU52Zc+1O6a7J7/ntHc6SjaUZ7l2z3eiApO67G7TcTu62DKChV90SERE9P/o8dPBg3v9/v6jkxOr4aV5NOcYM2KmJ/IpBXKMICIios+YUXe9wErFV5gQERERERERERERERERERERERERERERERFNOf2RvgUnVtIeFgSGc356MZ6D5xg9YjhVjsDL5vOp+0c9sN+LrJ5ZtNLkkYjBg4/nBK8O5yTNPx5zvEiluAS8cPv85QvABT0H0ZzcEg+A6edHl36MpU184yBq0VkxemHqosJwX+SW/59DOPHwd9OLRNjyQRAE81cvTLZh/uzHcw7Ao/ycXbB6yvFz3mciIjpv/wsAAP//eO06pA==")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000440)={'wg2\x00', <r1=>0x0})
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000006c0)={0xffffffffffffffff, 0xe0, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000500)=[0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, &(0x7f0000000540)=[0x0], &(0x7f0000000580)=[0x0], <r2=>0x0, 0x89, &(0x7f00000005c0)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000600), &(0x7f0000000640), 0x8, 0xe8, 0x8, 0x8, &(0x7f0000000680)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000001140)={0xc, 0x24, &(0x7f00000002c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0xb2ad}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x1}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}, @map_fd={0x18, 0x1, 0x1, 0x0, r0}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xe}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000240)='GPL\x00', 0xb84, 0x7, &(0x7f0000000400)=""/7, 0x41000, 0x2c, '\x00', r1, @fallback=0x6c, 0xffffffffffffffff, 0x8, &(0x7f0000000480)={0x4, 0x4}, 0x8, 0x10, &(0x7f00000004c0)={0x1, 0xd, 0x9, 0xffffffff}, 0x10, r2, 0xffffffffffffffff, 0x0, &(0x7f0000000700), 0x0, 0x10, 0x7, @void, @value}, 0x94)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000000)={r0, &(0x7f00000000c0), 0x0}, 0x20)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)

1.962030956s ago: executing program 4 (id=1823):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="8c00000010001fff28bd70000000800000000000", @ANYRES32=0x0, @ANYBLOB="efb00000800000006c0012800b00010062726964676500005c00028008000500010000000c002e000100000000000000060027000500000008001d0009000000080001000600000005001900020000000c002000070000"], 0x8c}, 0x1, 0x0, 0x0, 0x4000084}, 0x14)
r1 = socket$pppoe(0x18, 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
io_setup(0x401, &(0x7f0000000340)=<r4=>0x0)
io_getevents(r4, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f00000004c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xde, 0xde, 0x5, [@enum={0x3, 0x3, 0x0, 0x6, 0x4, [{0x8, 0x5}, {0xb, 0x752}, {0x2, 0x3}]}, @const={0x1}, @datasec={0x1, 0x1, 0x0, 0xf, 0x2, [{0x5, 0x5, 0xffffffff}], "c76a"}, @type_tag={0xc, 0x0, 0x0, 0x12, 0x2}, @volatile={0xe, 0x0, 0x0, 0x9, 0x3}, @func_proto={0x0, 0x2, 0x0, 0xd, 0x0, [{0x7, 0x4}, {0x10, 0x1}]}, @fwd={0x6}, @struct={0x6, 0x5, 0x0, 0x4, 0x0, 0x0, [{0x8, 0x5, 0x4ce}, {0xf, 0x4, 0xe}, {0x4, 0x1, 0x2}, {0x7, 0x1, 0x10}, {0xe, 0x0, 0x2}]}, @volatile={0xd, 0x0, 0x0, 0x9, 0x2}]}, {0x0, [0x30, 0x61, 0x30]}}, &(0x7f0000000740)=""/177, 0xfd, 0xb1, 0x0, 0x8, 0x0, @void, @value}, 0x28)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x1c, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_deliver\x00', r6}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
connect$pppoe(r1, &(0x7f0000000080)={0x18, 0x0, {0x1, @multicast, 'geneve0\x00'}}, 0xe)
r7 = socket$pppoe(0x18, 0x1, 0x0)
socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r7, &(0x7f0000000040)={0x18, 0x0, {0x1, @multicast, 'ip6gre0\x00'}}, 0x1e)
close(r1)
r8 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000), 0x4201, 0x0)
getsockopt$inet6_mptcp_buf(r8, 0x11c, 0x2, &(0x7f0000000380)=""/145, &(0x7f00000000c0)=0x91)

1.810981858s ago: executing program 1 (id=1824):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xa, 0x101, 0x7ffc, 0xcc, 0x0, 0xffffffffffffffff, 0x101, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

1.810200038s ago: executing program 0 (id=1825):
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="020000000400000008"], 0x48)
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='sys_enter\x00'}, 0x10)
lgetxattr(0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r1}, 0x18)
r2 = socket(0x10, 0x803, 0x0)
sendto(r2, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010700000000000000002000000004"], 0x1c}, 0x1, 0x0, 0x0, 0x8041}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(r2, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="40000108", @ANYRES16=r3, @ANYBLOB="00032dbd7000fedbdf25120000001c00118004000600040006000400040004000100040005000400030005007400020000000800a40002000000"], 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x40000)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000140)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000680)={0xcc, r3, 0x8, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0x2}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x24}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xf}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x2}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x324}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x27}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x10000}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xd43b}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x37a}], @chandef_params=[@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x5}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x7}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x4}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0xd}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1720}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x7}]]}, 0xcc}}, 0xc001)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/rcu_stall_count', 0x0, 0x122)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x121a02, 0x0)
sendfile(r6, r5, 0x0, 0x8)

1.785718219s ago: executing program 4 (id=1826):
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/pm_print_times', 0x149a82, 0x0)
writev(r0, &(0x7f0000001a00), 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'veth0_to_team\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
bind$packet(r1, &(0x7f0000000080)={0x11, 0x4, r2, 0x1, 0x6, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3e}}, 0x14)
sendmsg$nl_route_sched(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0800000001000000ffffff7f04000000000a0000", @ANYRES32=0x1, @ANYBLOB="8300e47337c41d3b1000006d6a", @ANYRES32=r2, @ANYBLOB="0200000005000000"], 0x50)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r5}, 0x18)
r6 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xc3, 0x0, 0x0, 0x0, 0x0, 0x100000000000, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xa19a, 0x1000}, 0x0, 0x0, 0xffffffff, 0x1, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000340)='cpu\t&0&&\t')
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000680)=ANY=[@ANYBLOB="c8010000", @ANYRES16=r8, @ANYBLOB="0100000000000000000001000000060006000000000024000300a0cb879a47f5bc644c0e693fa6d031c74a1553b6e901b9ff2f518c78042fb5426c010880f4000080060005000180000024000100dbffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff240002001bc715ee4868b12a49f4df11bc05475489f6a27c4d6483ad2fa5e45903b0ce851400040002000000ac1414aa00000000000000008c00098028000080060001000a00000014000200ff020000000000000000000000000001050003000000000028000080060001000a000000140002000000000000000000000000000000000105000300030000001c000080060001000200da0008000200e000000105000300000000001c000080060001000200000008000200ac141400050003000000000074000080200004000a004e2200000000fc0000000000000000000000000000000400000024000100dbffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff080003000100000024000200cde20bc0d9b90ac13642d7b66459dd9db5e20b4b16d3d23f2cb03a8aa417dce6080007000000000014000200776730"], 0x1c8}}, 0x0)

1.609454552s ago: executing program 4 (id=1827):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xe, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
io_submit(0x0, 0x0, 0x0)
ioperm(0x0, 0x44, 0x7)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[], 0x39)
r1 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_opts(r1, 0x0, 0x4, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x18)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'geneve1\x00', <r3=>0x0})
sendto$packet(r2, &(0x7f00000002c0)="1441c05465f0006fc8afa8e488a8", 0xe, 0x4000000, &(0x7f00000000c0)={0x11, 0xf6, r3, 0x1, 0x0, 0x6, @multicast}, 0x14)
pipe2(&(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x4000)
r6 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc))
write$P9_RGETLOCK(r5, &(0x7f00000000c0)=ANY=[], 0xffffff6a)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x84000)
tee(r4, r7, 0xfffffffffffffc01, 0x0)
tee(r4, r7, 0x60000000000, 0x0)

1.537311843s ago: executing program 0 (id=1828):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0x200001b4, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000300)='sched_switch\x00'}, 0x18)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file1\x00', 0x50, &(0x7f0000000280)={[{@usrquota}, {}, {@nobh}, {@grpjquota}, {@dioread_nolock}]}, 0x1, 0x3eb, &(0x7f0000000880)="$eJzs3M1uG0UcAPD/br5I+uEgcUCFQwQIgoCkDgQoQqJw5eMCPICVpKXCbarGSLTkUBAnThwQNw59AQ48QFUhJCRegRdAlSqU5gC3oLV3HTe2Qyw7der8ftLIM+txZv7ezWpmvTsBHFtzEXE+IsYiYikiSvn2NE9xs5Gyeve3Nle2tzZXktjZ+fjvJJJ8W/G3kvz1RF6YTyPSbyOeutne7sb1G59XqtW1a3l5sXb56uLG9RuvXLpcubh2ce1K+Y1z5fLy0pvl1wYW64/PvXhu7L3zZ376s3RneXJyOuvvyfy91jgGZS7mmt/JXsuDbmzIJofdAQAADiTNx/7j9fF/KcbquYZSLG4OtXMAAADAQOy8k78CAAAAIywx9wcAAIARV9wHcH9rc6VIB7pxoHRotyQ8VPfejYjZ3Webt5vxj8djeZ2JQ3y+dS4irj6flLIUh/QcMgBAqzvZ+Odsp/FfGk+21JuKqI+Hpgfc/tyecvv4J7074CYfkI3/3o6I7bbxX1pUmR3LS6fqQ8WJ5MKl6trZiDgdEfMxMZWVy/u08f4/P3/U7b0s/t+SU6eLlLWfve7WSO+OTz34mdVKrdJPzK3ufR1xZrxT/Elz/JtExEwfbYx9deutbu/9f/yHa+dWxAsd9//uyj3J/usTLdaPh8XiqGj37ze/fNit/WHHn+3/mf3jn01a12va6L2N25/98XQ90yGq1vlPL8f/ZPJJPV/My76s1GrXyhGTyQft25d2P1uUi/pZ/PPPdv7/L85/Sb6m1cn8HNCr777/9eX9azTiz1LWfjEXfBiy+Fd72v+9Z16//fun3dpv3f+d48/2f2MNsPl8y0HOfwftYD/fHQAAADwq0vp1jSRdaObTdGGhcb3jiZhJq+sbtZcurH9xZbVx/WM2JtLiSlep5XpoufEzerO8tKf8akQ8HhE/lKbr5YWV9erqsIMHAACAY+JEl/l/5q8RuccfAAAAyH+oBwAAAEab+T8AAACMtH7W9Tu+meybOwLdOPKZZ45GN4aQmYgj0Y0+MsM+MwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADza/gsAAP//Bdqy/A==")

1.493780934s ago: executing program 1 (id=1829):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000007c0)={<r0=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r0, 0x1, 0x14, &(0x7f00000000c0), 0x43)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
readv(r3, &(0x7f0000001340)=[{&(0x7f0000000580)=""/148, 0x94}], 0x1)
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x4098, &(0x7f00000005c0)={[{@nogrpid}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x66}}, {@nobarrier}, {@nodiscard}, {@quota}]}, 0x3, 0x438, &(0x7f0000000d80)="$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")
r4 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x84042, 0x1fb)
write$P9_RUNLINKAT(r5, &(0x7f0000000000)={0xfffffffffffffecb, 0x4d, 0x1}, 0xffffffd7)
sendfile(r4, r4, 0x0, 0x800000009)

1.419188435s ago: executing program 2 (id=1831):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xb007}, 0x4)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'wg0\x00', <r4=>0x0})
sendto$packet(r3, &(0x7f0000000180)="0b03feff4f00021202004788aa96a13bb1000011000088ca1a00", 0x1fffc, 0x0, &(0x7f0000000140)={0x11, 0x0, r4}, 0x14)

1.265438858s ago: executing program 2 (id=1833):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000200)='cpuset.mem_hardwall\x00', 0x2, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000080000000000000004850000006d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r1}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff})
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r5, 0x84, 0x81, &(0x7f0000000280)="1a00", 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0xd, 0x10, &(0x7f0000000140)=ANY=[@ANYBLOB="18050000000020000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x3, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r6}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@newtaction={0x68, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x2, 0x0, 0x0, 0x3}, 0x2, r4}}]}, {0x4, 0xa}, {0xc}, {0xc}}}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x40}, 0x4800)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newtaction={0x88, 0x30, 0xffff, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x1300}, [{0x74, 0x1, [@m_mirred={0x70, 0x1, 0x0, 0x0, {{0xb}, {0x44, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x4, {{0xffdff7e8}, 0x1}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x1, 0x0, 0x4, 0x3, 0xfffffff7}, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

1.17587682s ago: executing program 2 (id=1834):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x12, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x7}, 0x18)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup(r1)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x7}, 0x1c)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x4000000000000, 0x4, 0x0, 0x0)

799.430946ms ago: executing program 3 (id=1836):
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="020000000400000008"], 0x48)
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='sys_enter\x00'}, 0x10)
lgetxattr(0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r1}, 0x18)
r2 = socket(0x10, 0x803, 0x0)
sendto(r2, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c00", @ANYRES16=r3, @ANYBLOB="0107000000000000000020000000040003"], 0x1c}, 0x1, 0x0, 0x0, 0x8041}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(r2, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="40000108", @ANYRES16=r3, @ANYBLOB="00032dbd7000fedbdf25120000001c00118004000600040006000400040004000100040005000400030005007400020000000800a40002000000"], 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x40000)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000140)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000680)={0xcc, r3, 0x8, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0x2}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x24}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xf}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x2}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x324}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x27}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x10000}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xd43b}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x37a}], @chandef_params=[@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x5}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x7}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x4}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0xd}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1720}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x7}]]}, 0xcc}}, 0xc001)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/rcu_stall_count', 0x0, 0x122)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x121a02, 0x0)
sendfile(r6, r5, 0x0, 0x8)

798.571486ms ago: executing program 3 (id=1837):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
writev(0xffffffffffffffff, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x7, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r2}, 0x18)
socket$inet6(0xa, 0x3, 0x7)
sendmmsg$inet6(r0, &(0x7f0000000040)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x1, @loopback}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000001680)='\t', 0x1}], 0x1}}], 0x1, 0x0)

769.046706ms ago: executing program 3 (id=1838):
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/pm_print_times', 0x149a82, 0x0)
writev(r0, &(0x7f0000001a00), 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'veth0_to_team\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
bind$packet(r1, &(0x7f0000000080)={0x11, 0x4, r2, 0x1, 0x6, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3e}}, 0x14)
sendmsg$nl_route_sched(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0800000001000000ffffff7f04000000000a0000", @ANYRES32=0x1, @ANYBLOB="8300e47337c41d3b1000006d6a", @ANYRES32=r2, @ANYBLOB="0200000005000000"], 0x50)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r5}, 0x18)
r6 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xc3, 0x0, 0x0, 0x0, 0x0, 0x100000000000, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xa19a, 0x1000}, 0x0, 0x0, 0xffffffff, 0x1, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000340)='cpu\t&0&&\t')
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000680)=ANY=[@ANYBLOB="c8010000", @ANYRES16=r8, @ANYBLOB="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"], 0x1c8}}, 0x0)

737.847867ms ago: executing program 4 (id=1839):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4000000, 0x0, 0x0, 0x41000, 0x38, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301)
ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)

686.295228ms ago: executing program 3 (id=1840):
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x2a36, 0x10100, 0x2000004, 0x20000002}, 0x0, &(0x7f00000001c0))
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x143a82, 0x8)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x8000fffffffe)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000003c0)=0x3)
ioctl$TIOCVHANGUP(r2, 0x5437, 0x2)

642.632989ms ago: executing program 4 (id=1841):
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f00000001c0))
socket$xdp(0x2c, 0x3, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00')
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
read$eventfd(r0, &(0x7f0000000340), 0x8)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f0000000200)={[{@inlinecrypt}, {@jqfmt_vfsv1}, {@quota}, {@init_itable_val={'init_itable', 0x3d, 0x8}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@sysvgroups}, {@noauto_da_alloc}, {@stripe={'stripe', 0x3d, 0x5}}, {@orlov}], [{@appraise}]}, 0x1, 0x56f, &(0x7f0000003780)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x14a)
fallocate(r1, 0x20, 0x0, 0x8)
unshare(0x8000000)
r2 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f0000000140)='asymmetric\x00', 0x0, &(0x7f00000002c0)="9fcc", 0x2, r2)
semget$private(0x0, 0x4000, 0x555)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f00000012c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x5)
futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x31, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r5, &(0x7f0000004200)='t', 0x1)
sendfile(r5, r4, 0x0, 0x3ffff)
sendfile(r5, r4, 0x0, 0x7ffff000)

641.769069ms ago: executing program 3 (id=1842):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="1800"/14, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfd, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_bp={0x0, 0x9}, 0x0, 0x0, 0xffffffbe, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f00000001c0)='cpu~20\t&&')

570.40336ms ago: executing program 1 (id=1843):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xb007}, 0x4)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'wg0\x00', <r4=>0x0})
sendto$packet(r3, &(0x7f0000000180)="0b03feff4f00021202004788aa96a13bb1000011000088ca1a00", 0x1fffc, 0x0, &(0x7f0000000140)={0x11, 0x0, r4}, 0x14)

513.907181ms ago: executing program 3 (id=1844):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0x200001b4, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000300)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00'}, 0x18)
r4 = syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file1\x00', 0x50, &(0x7f0000000280)={[{@usrquota}, {}, {@nobh}, {@grpjquota}, {@dioread_nolock}]}, 0x1, 0x3eb, &(0x7f0000000880)="$eJzs3M1uG0UcAPD/br5I+uEgcUCFQwQIgoCkDgQoQqJw5eMCPICVpKXCbarGSLTkUBAnThwQNw59AQ48QFUhJCRegRdAlSqU5gC3oLV3HTe2Qyw7der8ftLIM+txZv7ezWpmvTsBHFtzEXE+IsYiYikiSvn2NE9xs5Gyeve3Nle2tzZXktjZ+fjvJJJ8W/G3kvz1RF6YTyPSbyOeutne7sb1G59XqtW1a3l5sXb56uLG9RuvXLpcubh2ce1K+Y1z5fLy0pvl1wYW64/PvXhu7L3zZ376s3RneXJyOuvvyfy91jgGZS7mmt/JXsuDbmzIJofdAQAADiTNx/7j9fF/KcbquYZSLG4OtXMAAADAQOy8k78CAAAAIywx9wcAAIARV9wHcH9rc6VIB7pxoHRotyQ8VPfejYjZ3Webt5vxj8djeZ2JQ3y+dS4irj6flLIUh/QcMgBAqzvZ+Odsp/FfGk+21JuKqI+Hpgfc/tyecvv4J7074CYfkI3/3o6I7bbxX1pUmR3LS6fqQ8WJ5MKl6trZiDgdEfMxMZWVy/u08f4/P3/U7b0s/t+SU6eLlLWfve7WSO+OTz34mdVKrdJPzK3ufR1xZrxT/Elz/JtExEwfbYx9deutbu/9f/yHa+dWxAsd9//uyj3J/usTLdaPh8XiqGj37ze/fNit/WHHn+3/mf3jn01a12va6L2N25/98XQ90yGq1vlPL8f/ZPJJPV/My76s1GrXyhGTyQft25d2P1uUi/pZ/PPPdv7/L85/Sb6m1cn8HNCr777/9eX9azTiz1LWfjEXfBiy+Fd72v+9Z16//fun3dpv3f+d48/2f2MNsPl8y0HOfwftYD/fHQAAADwq0vp1jSRdaObTdGGhcb3jiZhJq+sbtZcurH9xZbVx/WM2JtLiSlep5XpoufEzerO8tKf8akQ8HhE/lKbr5YWV9erqsIMHAACAY+JEl/l/5q8RuccfAAAAyH+oBwAAAEab+T8AAACMtH7W9Tu+meybOwLdOPKZZ45GN4aQmYgj0Y0+MsM+MwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADza/gsAAP//Bdqy/A==")
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
pwrite64(r5, &(0x7f0000000140)='2', 0xfdef, 0xe7c)
ioctl$F2FS_IOC_DEFRAGMENT(r0, 0xc010f508, &(0x7f0000000000)={0x8, 0x2})
ioctl$FS_IOC_GETFSSYSFSPATH(r4, 0x80811501, &(0x7f0000000580)={0x80})
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000002c0)='cq_free\x00', r7, 0x0, 0x6}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r6}, &(0x7f0000000380), &(0x7f00000003c0)=r7}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xfffffffffffffffd)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x19f, &(0x7f0000000100)={[{@noquota}, {@noblock_validity}, {@min_batch_time={'min_batch_time', 0x3d, 0x82f}}, {@grpquota}, {@debug}, {@debug}, {@grpid}]}, 0x80, 0x536, &(0x7f0000000680)="$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")
fspick(0xffffffffffffff9c, &(0x7f00000004c0)='.\x00', 0x1)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r8}, 0x10)

349.942094ms ago: executing program 1 (id=1845):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000004000000e27f00000100000000", @ANYRES32], 0x48)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000300)={0x0, r0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000070000000000000007010000f8ffffffb702000008000000b703000000008f00850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x18)
r3 = socket(0x10, 0x80003, 0x0)
r4 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
readv(r4, &(0x7f0000000500)=[{&(0x7f0000001800)=""/154, 0x9a}], 0x1)
close_range(r3, 0xffffffffffffffff, 0x0)

278.825495ms ago: executing program 2 (id=1846):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="8c00000010001fff28bd70000000800000000000", @ANYRES32=0x0, @ANYBLOB="efb00000800000006c0012800b00010062726964676500005c00028008000500010000000c002e000100000000000000060027000500000008001d0009000000080001000600000005001900020000000c002000070000"], 0x8c}, 0x1, 0x0, 0x0, 0x4000084}, 0x14)
r1 = socket$pppoe(0x18, 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
io_setup(0x401, &(0x7f0000000340)=<r4=>0x0)
io_getevents(r4, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f00000004c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xde, 0xde, 0x5, [@enum={0x3, 0x3, 0x0, 0x6, 0x4, [{0x8, 0x5}, {0xb, 0x752}, {0x2, 0x3}]}, @const={0x1}, @datasec={0x1, 0x1, 0x0, 0xf, 0x2, [{0x5, 0x5, 0xffffffff}], "c76a"}, @type_tag={0xc, 0x0, 0x0, 0x12, 0x2}, @volatile={0xe, 0x0, 0x0, 0x9, 0x3}, @func_proto={0x0, 0x2, 0x0, 0xd, 0x0, [{0x7, 0x4}, {0x10, 0x1}]}, @fwd={0x6}, @struct={0x6, 0x5, 0x0, 0x4, 0x0, 0x0, [{0x8, 0x5, 0x4ce}, {0xf, 0x4, 0xe}, {0x4, 0x1, 0x2}, {0x7, 0x1, 0x10}, {0xe, 0x0, 0x2}]}, @volatile={0xd, 0x0, 0x0, 0x9, 0x2}]}, {0x0, [0x30, 0x61, 0x30]}}, &(0x7f0000000740)=""/177, 0xfd, 0xb1, 0x0, 0x8, 0x0, @void, @value}, 0x28)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x1c, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_deliver\x00', r6}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
connect$pppoe(r1, &(0x7f0000000080)={0x18, 0x0, {0x1, @multicast, 'geneve0\x00'}}, 0xe)
r7 = socket$pppoe(0x18, 0x1, 0x0)
socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r7, &(0x7f0000000040)={0x18, 0x0, {0x1, @multicast, 'ip6gre0\x00'}}, 0x1e)
close(r1)
r8 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000), 0x4201, 0x0)
getsockopt$inet6_mptcp_buf(r8, 0x11c, 0x2, &(0x7f0000000380)=""/145, &(0x7f00000000c0)=0x91)

0s ago: executing program 1 (id=1847):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0x200001b4, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000300)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00'}, 0x18)
r4 = syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file1\x00', 0x50, &(0x7f0000000280)={[{@usrquota}, {}, {@nobh}, {@grpjquota}, {@dioread_nolock}]}, 0x1, 0x3eb, &(0x7f0000000880)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
ioctl$F2FS_IOC_DEFRAGMENT(r0, 0xc010f508, &(0x7f0000000000)={0x8, 0x2})
ioctl$FS_IOC_GETFSSYSFSPATH(r4, 0x80811501, &(0x7f0000000580)={0x80})
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000002c0)='cq_free\x00', r6, 0x0, 0x6}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r5}, &(0x7f0000000380), &(0x7f00000003c0)=r6}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xfffffffffffffffd)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x19f, &(0x7f0000000100)={[{@noquota}, {@noblock_validity}, {@min_batch_time={'min_batch_time', 0x3d, 0x82f}}, {@grpquota}, {@debug}, {@debug}, {@grpid}]}, 0x80, 0x536, &(0x7f0000000680)="$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")
fspick(0xffffffffffffff9c, &(0x7f00000004c0)='.\x00', 0x1)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r7}, 0x10)

kernel console output (not intermixed with test programs):

 (loop3): orphan cleanup on readonly fs
[  176.354649][ T7339] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1094: bg 0: block 248: padding at end of block bitmap is not set
[  176.370948][ T7339] Quota error (device loop3): write_blk: dquota write failed
[  176.378389][ T7339] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  176.388572][ T7339] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.1094: Failed to acquire dquot type 1
[  176.402803][ T7339] EXT4-fs (loop3): 1 truncate cleaned up
[  176.412980][ T7339] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  176.458949][   T29] audit: type=1326 audit(2000000124.573:4733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7342 comm="syz.0.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  176.482660][   T29] audit: type=1326 audit(2000000124.573:4734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7342 comm="syz.0.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  176.506643][   T29] audit: type=1326 audit(2000000124.573:4735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7342 comm="syz.0.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  176.530256][   T29] audit: type=1326 audit(2000000124.573:4736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7342 comm="syz.0.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  176.553812][   T29] audit: type=1326 audit(2000000124.573:4737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7342 comm="syz.0.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  176.577498][   T29] audit: type=1326 audit(2000000124.573:4738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7342 comm="syz.0.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  176.649542][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.750142][ T7362] loop0: detected capacity change from 0 to 2048
[  176.804383][ T7362]  loop0: p1 < > p4
[  176.812693][ T7362] loop0: p4 size 8388608 extends beyond EOD, truncated
[  176.907905][ T7380] loop2: detected capacity change from 0 to 512
[  176.914628][ T7380] EXT4-fs: Ignoring removed nobh option
[  176.925234][ T7380] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  177.025877][ T7385] tmpfs: Unknown parameter 'Ã'
[  177.809150][ T7385] loop0: detected capacity change from 0 to 512
[  177.823610][ T7385] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  178.625772][ T7396] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1111'.
[  178.636945][ T3606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.685248][ T7414] netlink: 'syz.4.1116': attribute type 4 has an invalid length.
[  178.686610][ T7412] loop2: detected capacity change from 0 to 2048
[  178.750026][ T7422] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1120'.
[  178.759243][ T7422] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1120'.
[  178.759708][ T7412]  loop2: p1 < > p4
[  178.774906][ T7412] loop2: p4 size 8388608 extends beyond EOD, truncated
[  178.799272][ T7424] loop4: detected capacity change from 0 to 1024
[  178.806284][ T7424] EXT4-fs: inline encryption not supported
[  178.812463][ T7424] EXT4-fs: Ignoring removed orlov option
[  178.815064][ T7426] loop2: detected capacity change from 0 to 512
[  178.818156][ T7424] ext4: Unknown parameter 'appraise'
[  178.837691][ T7426] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  178.849787][ T7424] loop4: detected capacity change from 0 to 1024
[  178.856630][ T7424] EXT4-fs: Ignoring removed orlov option
[  178.860369][ T7426] EXT4-fs (loop2): 1 truncate cleaned up
[  178.868749][ T7426] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  178.870602][ T7424] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  179.042792][ T3606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.139887][ T7441] lo speed is unknown, defaulting to 1000
[  179.146047][ T7444] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1126'.
[  179.146581][ T7441] lo speed is unknown, defaulting to 1000
[  179.170457][ T7444] team0: Port device team_slave_0 removed
[  179.489911][ T7456] netlink: 'syz.3.1130': attribute type 4 has an invalid length.
[  179.668755][ T7461] loop2: detected capacity change from 0 to 512
[  179.683215][ T7461] EXT4-fs: Ignoring removed nobh option
[  179.690889][ T7461] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  179.709384][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.867147][ T7472] netlink: 296 bytes leftover after parsing attributes in process `syz.4.1134'.
[  180.247170][ T7485] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1142'.
[  180.310871][ T7485] netlink: 10 bytes leftover after parsing attributes in process `syz.4.1142'.
[  180.380023][   T29] kauditd_printk_skb: 92 callbacks suppressed
[  180.380040][   T29] audit: type=1400 audit(2000000128.493:4831): avc:  denied  { read } for  pid=7486 comm="syz.0.1141" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  180.633125][ T7511] loop3: detected capacity change from 0 to 164
[  180.679554][ T7511] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  181.144199][   T29] audit: type=1326 audit(2000000129.263:4832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7520 comm="syz.0.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  181.223356][   T29] audit: type=1326 audit(2000000129.283:4833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7520 comm="syz.0.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  181.247062][   T29] audit: type=1326 audit(2000000129.283:4834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7520 comm="syz.0.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  181.270565][   T29] audit: type=1326 audit(2000000129.283:4835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7520 comm="syz.0.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  181.294269][   T29] audit: type=1326 audit(2000000129.293:4836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7520 comm="syz.0.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  181.317936][   T29] audit: type=1326 audit(2000000129.293:4837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7520 comm="syz.0.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  181.341613][   T29] audit: type=1326 audit(2000000129.293:4838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7520 comm="syz.0.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  181.365199][   T29] audit: type=1326 audit(2000000129.293:4839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7520 comm="syz.0.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  181.388888][   T29] audit: type=1326 audit(2000000129.293:4840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7520 comm="syz.0.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  181.615206][ T7536] loop4: detected capacity change from 0 to 512
[  181.626544][ T7536] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  181.641560][ T7536] EXT4-fs (loop4): invalid journal inode
[  181.647329][ T7536] EXT4-fs (loop4): can't get journal size
[  181.656211][ T7536] EXT4-fs (loop4): 1 truncate cleaned up
[  181.662509][ T7536] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  181.796471][ T7541] loop0: detected capacity change from 0 to 512
[  181.803297][ T7541] EXT4-fs: Ignoring removed nobh option
[  181.874636][ T7541] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  181.895028][ T7541] EXT4-fs error (device loop0): ext4_lookup:1787: inode #15: comm syz.0.1160: iget: bad i_size value: 15393162788874
[  182.537293][ T7548] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1163'.
[  182.836316][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.295676][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.744773][ T7571] loop0: detected capacity change from 0 to 512
[  183.761377][ T7571] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  183.790566][ T7571] EXT4-fs (loop0): 1 truncate cleaned up
[  183.803958][ T7571] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  184.056318][ T3606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.362282][ T7584] loop2: detected capacity change from 0 to 2048
[  184.392377][ T7584]  loop2: p1 < > p4
[  184.397106][ T7584] loop2: p4 size 8388608 extends beyond EOD, truncated
[  184.539285][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.606889][ T7597] vhci_hcd: invalid port number 208
[  184.639693][ T7599] loop0: detected capacity change from 0 to 1024
[  184.648368][ T7599] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  184.719117][ T7599] EXT4-fs error (device loop0): ext4_ext_check_inode:523: inode #11: comm syz.0.1182: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  184.761970][ T7599] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.1182: couldn't read orphan inode 11 (err -117)
[  184.790576][ T7599] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  184.828706][ T7599] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.1182: Invalid block bitmap block 0 in block_group 0
[  184.866744][ T7599] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.1182: Failed to acquire dquot type 0
[  184.882622][ T7599] veth1_to_bond: entered allmulticast mode
[  184.888794][ T7599] veth1_to_bond: entered promiscuous mode
[  184.981437][ T7616] loop3: detected capacity change from 0 to 512
[  185.002389][ T7616] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  185.015458][ T7616] EXT4-fs (loop3): 1 truncate cleaned up
[  185.023444][ T7616] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  185.053349][ T7611] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1185'.
[  185.469497][ T7598] veth1_to_bond: left promiscuous mode
[  185.475278][ T7598] veth1_to_bond: left allmulticast mode
[  185.539231][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  185.753342][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  185.802388][ T7666] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  185.823620][ T7666] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  185.885400][ T7669] hub 6-0:1.0: USB hub found
[  185.895496][ T7669] hub 6-0:1.0: 8 ports detected
[  185.963546][ T7680] loop0: detected capacity change from 0 to 256
[  185.970301][ T7680] vfat: Bad value for 'fmask'
[  186.022643][ T7680] loop0: detected capacity change from 0 to 128
[  186.056724][ T7688] loop2: detected capacity change from 0 to 1024
[  186.067871][ T7688] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  186.090372][ T7688] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  186.101712][ T7688] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  186.123095][ T7688] JBD2: no valid journal superblock found
[  186.128887][ T7688] EXT4-fs (loop2): Could not load journal inode
[  186.168316][ T7688] loop2: detected capacity change from 0 to 512
[  186.177334][ T7688] EXT4-fs: Ignoring removed i_version option
[  186.186538][ T7688] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  186.199310][ T7688] ext4 filesystem being mounted at /232/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  186.334549][ T3606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.486657][ T7700] netlink: 'syz.3.1199': attribute type 4 has an invalid length.
[  186.662199][   T29] kauditd_printk_skb: 159 callbacks suppressed
[  186.662213][   T29] audit: type=1326 audit(2000000134.783:4998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7701 comm="syz.3.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  186.731719][ T7702] loop3: detected capacity change from 0 to 2048
[  186.766810][   T29] audit: type=1326 audit(2000000134.823:4999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7701 comm="syz.3.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  186.790407][   T29] audit: type=1326 audit(2000000134.823:5000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7701 comm="syz.3.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  186.814003][   T29] audit: type=1326 audit(2000000134.823:5001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7701 comm="syz.3.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  186.837855][   T29] audit: type=1326 audit(2000000134.823:5002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7701 comm="syz.3.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  186.861611][   T29] audit: type=1326 audit(2000000134.823:5003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7701 comm="syz.3.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  186.885095][   T29] audit: type=1326 audit(2000000134.823:5004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7701 comm="syz.3.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  186.908602][   T29] audit: type=1326 audit(2000000134.823:5005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7701 comm="syz.3.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  186.916331][ T7704] tap0: tun_chr_ioctl cmd 2147767520
[  186.932044][   T29] audit: type=1326 audit(2000000134.823:5006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7701 comm="syz.3.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  186.939022][ T7702]  loop3: p1 < > p4
[  186.960800][   T29] audit: type=1326 audit(2000000134.833:5007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7701 comm="syz.3.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  187.040460][ T7702] loop3: p4 size 8388608 extends beyond EOD, truncated
[  187.122045][ T7708] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1197'.
[  187.218121][ T7723] FAULT_INJECTION: forcing a failure.
[  187.218121][ T7723] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  187.231312][ T7723] CPU: 1 UID: 0 PID: 7723 Comm: syz.2.1206 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[  187.231347][ T7723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  187.231366][ T7723] Call Trace:
[  187.231374][ T7723]  <TASK>
[  187.231382][ T7723]  __dump_stack+0x1d/0x30
[  187.231415][ T7723]  dump_stack_lvl+0xe8/0x140
[  187.231548][ T7723]  dump_stack+0x15/0x1b
[  187.231574][ T7723]  should_fail_ex+0x265/0x280
[  187.231693][ T7723]  should_fail+0xb/0x20
[  187.231729][ T7723]  should_fail_usercopy+0x1a/0x20
[  187.231761][ T7723]  strncpy_from_user+0x25/0x230
[  187.231795][ T7723]  ? kmem_cache_alloc_noprof+0x186/0x310
[  187.231881][ T7723]  ? getname_flags+0x80/0x3b0
[  187.231913][ T7723]  getname_flags+0xae/0x3b0
[  187.231938][ T7723]  user_path_at+0x28/0x130
[  187.231967][ T7723]  __se_sys_mount+0x25b/0x2e0
[  187.232004][ T7723]  ? fput+0x8f/0xc0
[  187.232041][ T7723]  __x64_sys_mount+0x67/0x80
[  187.232067][ T7723]  x64_sys_call+0xd36/0x2fb0
[  187.232093][ T7723]  do_syscall_64+0xd2/0x200
[  187.232177][ T7723]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  187.232211][ T7723]  ? clear_bhb_loop+0x40/0x90
[  187.232265][ T7723]  ? clear_bhb_loop+0x40/0x90
[  187.232414][ T7723]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.232581][ T7723] RIP: 0033:0x7f94ff13e929
[  187.232611][ T7723] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  187.232643][ T7723] RSP: 002b:00007f94fd7a7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  187.232672][ T7723] RAX: ffffffffffffffda RBX: 00007f94ff365fa0 RCX: 00007f94ff13e929
[  187.232689][ T7723] RDX: 00002000000002c0 RSI: 0000200000000180 RDI: 0000000000000000
[  187.232705][ T7723] RBP: 00007f94fd7a7090 R08: 0000200000000100 R09: 0000000000000000
[  187.232722][ T7723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  187.232739][ T7723] R13: 0000000000000000 R14: 00007f94ff365fa0 R15: 00007ffc9bccab28
[  187.232758][ T7723]  </TASK>
[  187.438042][ T7718] loop0: detected capacity change from 0 to 512
[  187.450962][ T7718] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  187.503809][ T7718] EXT4-fs (loop0): 1 truncate cleaned up
[  187.510004][ T7718] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  187.616306][ T7731] loop3: detected capacity change from 0 to 2048
[  187.637915][ T7734] loop2: detected capacity change from 0 to 2048
[  187.702460][ T7731]  loop3: p1 < > p4
[  187.709099][ T7731] loop3: p4 size 8388608 extends beyond EOD, truncated
[  187.790987][ T7736] lo speed is unknown, defaulting to 1000
[  187.797658][ T7736] lo speed is unknown, defaulting to 1000
[  187.813596][ T7738] loop2: detected capacity change from 0 to 128
[  187.850547][ T7740] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1211'.
[  187.881498][ T7738] FAULT_INJECTION: forcing a failure.
[  187.881498][ T7738] name failslab, interval 1, probability 0, space 0, times 0
[  187.894239][ T7738] CPU: 0 UID: 0 PID: 7738 Comm: syz.2.1212 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[  187.894269][ T7738] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  187.894281][ T7738] Call Trace:
[  187.894290][ T7738]  <TASK>
[  187.894300][ T7738]  __dump_stack+0x1d/0x30
[  187.894327][ T7738]  dump_stack_lvl+0xe8/0x140
[  187.894353][ T7738]  dump_stack+0x15/0x1b
[  187.894370][ T7738]  should_fail_ex+0x265/0x280
[  187.894450][ T7738]  should_failslab+0x8c/0xb0
[  187.894478][ T7738]  __kmalloc_noprof+0xa5/0x3e0
[  187.894505][ T7738]  ? alloc_pipe_info+0x1c9/0x350
[  187.894543][ T7738]  alloc_pipe_info+0x1c9/0x350
[  187.894647][ T7738]  splice_direct_to_actor+0x592/0x680
[  187.894681][ T7738]  ? kstrtouint_from_user+0x9f/0xf0
[  187.894715][ T7738]  ? __pfx_direct_splice_actor+0x10/0x10
[  187.894762][ T7738]  ? __rcu_read_unlock+0x4f/0x70
[  187.894790][ T7738]  ? get_pid_task+0x96/0xd0
[  187.894814][ T7738]  ? avc_policy_seqno+0x15/0x30
[  187.894843][ T7738]  ? selinux_file_permission+0x1e4/0x320
[  187.894878][ T7738]  do_splice_direct+0xda/0x150
[  187.894960][ T7738]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  187.894982][ T7738]  do_sendfile+0x380/0x650
[  187.895013][ T7738]  __x64_sys_sendfile64+0x105/0x150
[  187.895126][ T7738]  x64_sys_call+0xb39/0x2fb0
[  187.895153][ T7738]  do_syscall_64+0xd2/0x200
[  187.895174][ T7738]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  187.895207][ T7738]  ? clear_bhb_loop+0x40/0x90
[  187.895230][ T7738]  ? clear_bhb_loop+0x40/0x90
[  187.895312][ T7738]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.895340][ T7738] RIP: 0033:0x7f94ff13e929
[  187.895359][ T7738] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  187.895377][ T7738] RSP: 002b:00007f94fd7a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  187.895395][ T7738] RAX: ffffffffffffffda RBX: 00007f94ff365fa0 RCX: 00007f94ff13e929
[  187.895408][ T7738] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004
[  187.895472][ T7738] RBP: 00007f94fd7a7090 R08: 0000000000000000 R09: 0000000000000000
[  187.895484][ T7738] R10: 0000000800000009 R11: 0000000000000246 R12: 0000000000000001
[  187.895496][ T7738] R13: 0000000000000000 R14: 00007f94ff365fa0 R15: 00007ffc9bccab28
[  187.895515][ T7738]  </TASK>
[  187.929698][ T7736] rdma_rxe: rxe_newlink: failed to add bond_slave_1
[  188.162597][ T7742] loop2: detected capacity change from 0 to 128
[  188.250587][ T7746] batman_adv: batadv0: Local translation table size (104) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:2a
[  188.670836][ T7749] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1216'.
[  188.680057][ T7757] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check.
[  189.088171][ T7778] loop4: detected capacity change from 0 to 512
[  189.095010][ T7778] EXT4-fs: Ignoring removed orlov option
[  189.101183][ T7778] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  189.111291][ T7778] EXT4-fs (loop4): orphan cleanup on readonly fs
[  189.118406][ T7778] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1226: bg 0: block 248: padding at end of block bitmap is not set
[  189.135907][ T7778] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.1226: Failed to acquire dquot type 1
[  189.148231][ T7778] EXT4-fs (loop4): 1 truncate cleaned up
[  189.155125][ T7778] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  189.179644][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.556824][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.659364][ T7799] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1232'.
[  189.701959][ T7794] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1231'.
[  189.757526][ T7805] hub 6-0:1.0: USB hub found
[  189.762563][ T7805] hub 6-0:1.0: 8 ports detected
[  190.083122][ T7831] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1244'.
[  190.146048][ T7832] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  190.526516][ T7847] xt_connbytes: Forcing CT accounting to be enabled
[  190.533377][ T7847] Cannot find set identified by id 0 to match
[  190.740869][ T7852] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1251'.
[  190.749876][ T7852] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1251'.
[  190.860480][ T7855] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  190.869443][ T7855] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  190.889442][ T7858] vhci_hcd: invalid port number 15
[  190.894787][ T7858] vhci_hcd: invalid port number 15
[  190.947671][ T7864] FAULT_INJECTION: forcing a failure.
[  190.947671][ T7864] name failslab, interval 1, probability 0, space 0, times 0
[  190.960427][ T7864] CPU: 0 UID: 0 PID: 7864 Comm: syz.0.1255 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[  190.960495][ T7864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  190.960507][ T7864] Call Trace:
[  190.960512][ T7864]  <TASK>
[  190.960523][ T7864]  __dump_stack+0x1d/0x30
[  190.960549][ T7864]  dump_stack_lvl+0xe8/0x140
[  190.960574][ T7864]  dump_stack+0x15/0x1b
[  190.960594][ T7864]  should_fail_ex+0x265/0x280
[  190.960676][ T7864]  should_failslab+0x8c/0xb0
[  190.960697][ T7864]  kmem_cache_alloc_noprof+0x50/0x310
[  190.960720][ T7864]  ? alloc_empty_file+0x76/0x200
[  190.960794][ T7864]  alloc_empty_file+0x76/0x200
[  190.960818][ T7864]  alloc_file_pseudo+0xc6/0x160
[  190.960845][ T7864]  __shmem_file_setup+0x1de/0x210
[  190.960920][ T7864]  shmem_file_setup+0x3b/0x50
[  190.960946][ T7864]  __se_sys_memfd_create+0x2c3/0x590
[  190.961054][ T7864]  __x64_sys_memfd_create+0x31/0x40
[  190.961162][ T7864]  x64_sys_call+0x122f/0x2fb0
[  190.961220][ T7864]  do_syscall_64+0xd2/0x200
[  190.961239][ T7864]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  190.961262][ T7864]  ? clear_bhb_loop+0x40/0x90
[  190.961301][ T7864]  ? clear_bhb_loop+0x40/0x90
[  190.961321][ T7864]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.961339][ T7864] RIP: 0033:0x7fb4bf5ce929
[  190.961353][ T7864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  190.961369][ T7864] RSP: 002b:00007fb4bdc36e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  190.961428][ T7864] RAX: ffffffffffffffda RBX: 0000000000000448 RCX: 00007fb4bf5ce929
[  190.961439][ T7864] RDX: 00007fb4bdc36ef0 RSI: 0000000000000000 RDI: 00007fb4bf6514cc
[  190.961449][ T7864] RBP: 00002000000007c0 R08: 00007fb4bdc36bb7 R09: 00007fb4bdc36e40
[  190.961461][ T7864] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000200
[  190.961471][ T7864] R13: 00007fb4bdc36ef0 R14: 00007fb4bdc36eb0 R15: 0000200000000540
[  190.961488][ T7864]  </TASK>
[  191.208257][ T7870] batman_adv: batadv0: Interface deactivated: dummy0
[  191.215287][ T7870] batman_adv: batadv0: Removing interface: dummy0
[  191.227998][ T7870] bridge_slave_0: left allmulticast mode
[  191.233803][ T7870] bridge_slave_0: left promiscuous mode
[  191.239749][ T7870] bridge0: port 1(bridge_slave_0) entered disabled state
[  191.250954][ T7870] bridge_slave_1: left allmulticast mode
[  191.256717][ T7870] bridge_slave_1: left promiscuous mode
[  191.262486][ T7870] bridge0: port 2(bridge_slave_1) entered disabled state
[  191.322578][ T7877] netlink: 1544 bytes leftover after parsing attributes in process `syz.2.1258'.
[  191.342549][ T7870] bond0: (slave bond_slave_0): Releasing backup interface
[  191.360447][ T7870] bond0: (slave bond_slave_1): Releasing backup interface
[  191.373733][ T7870] team0: Port device team_slave_1 removed
[  191.380837][ T7870] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  191.388381][ T7870] batman_adv: batadv0: Removing interface: batadv_slave_0
[  191.403481][ T7870] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  191.411090][ T7870] batman_adv: batadv0: Removing interface: batadv_slave_1
[  191.444694][ T7876] team0: Mode changed to "loadbalance"
[  191.657382][ T7886] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[  191.693227][   T29] kauditd_printk_skb: 389 callbacks suppressed
[  191.693246][   T29] audit: type=1400 audit(2000000139.803:5395): avc:  denied  { remove_name } for  pid=3313 comm="syz-executor" name="binderfs" dev="tmpfs" ino=1358 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[  191.726747][   T29] audit: type=1400 audit(2000000139.813:5396): avc:  denied  { rmdir } for  pid=3313 comm="syz-executor" name="247" dev="tmpfs" ino=1354 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[  191.785523][ T7892] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=7892 comm=syz.3.1264
[  191.798160][ T7892] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=7892 comm=syz.3.1264
[  191.851580][ T7885] lo speed is unknown, defaulting to 1000
[  191.859267][ T7885] lo speed is unknown, defaulting to 1000
[  191.923765][ T7894] loop3: detected capacity change from 0 to 512
[  191.986716][ T7894] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  191.999816][ T7894] ext4 filesystem being mounted at /249/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  192.118777][   T29] audit: type=1326 audit(2000000140.183:5397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7893 comm="syz.3.1265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  192.142477][   T29] audit: type=1326 audit(2000000140.183:5398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7893 comm="syz.3.1265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  192.165881][   T29] audit: type=1326 audit(2000000140.183:5399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7893 comm="syz.3.1265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  192.189415][   T29] audit: type=1326 audit(2000000140.183:5400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7893 comm="syz.3.1265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  192.241685][ T7902] loop4: detected capacity change from 0 to 164
[  192.272233][ T7902] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  192.351050][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.469088][   T29] audit: type=1326 audit(2000000140.573:5401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7906 comm="syz.4.1270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc399f5e929 code=0x7ffc0000
[  192.492757][   T29] audit: type=1326 audit(2000000140.573:5402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7908 comm="syz.3.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  192.516257][   T29] audit: type=1326 audit(2000000140.573:5403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7908 comm="syz.3.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  192.518080][ T7907] loop4: detected capacity change from 0 to 2048
[  192.539781][   T29] audit: type=1326 audit(2000000140.573:5404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7908 comm="syz.3.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  192.594533][ T7907]  loop4: p1 < > p4
[  192.601658][ T7907] loop4: p4 size 8388608 extends beyond EOD, truncated
[  192.652594][ T7911] Cannot find add_set index 3 as target
[  192.678148][ T7917] netlink: 'syz.4.1272': attribute type 4 has an invalid length.
[  192.714239][ T7911] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  192.740398][ T7920] netlink: 'syz.1.1273': attribute type 4 has an invalid length.
[  192.752193][ T7922] loop4: detected capacity change from 0 to 2048
[  192.759010][ T7922] EXT4-fs: Ignoring removed bh option
[  192.767369][ T7920] netlink: 'syz.1.1273': attribute type 3 has an invalid length.
[  192.775305][ T7920] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1273'.
[  192.787436][ T7920] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1273'.
[  192.797418][ T7920] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  192.804913][ T7920] batman_adv: batadv0: Removing interface: batadv_slave_0
[  192.813705][ T7920] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  192.821268][ T7920] batman_adv: batadv0: Removing interface: batadv_slave_1
[  192.834288][ T7922] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  192.862994][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.876797][ T7927] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1275'.
[  192.898612][ T7931] loop4: detected capacity change from 0 to 2048
[  192.946388][ T7931]  loop4: p1 < > p4
[  192.982053][ T7931] loop4: p4 size 8388608 extends beyond EOD, truncated
[  194.781288][ T7972] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1292'.
[  194.919754][ T7979] lo speed is unknown, defaulting to 1000
[  194.926064][ T7979] lo speed is unknown, defaulting to 1000
[  195.009393][ T7988] loop4: detected capacity change from 0 to 512
[  195.017464][ T7988] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  195.034984][ T7988] EXT4-fs (loop4): 1 truncate cleaned up
[  195.061875][ T7988] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.738630][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.064595][ T8018] FAULT_INJECTION: forcing a failure.
[  196.064595][ T8018] name failslab, interval 1, probability 0, space 0, times 0
[  196.077347][ T8018] CPU: 1 UID: 0 PID: 8018 Comm: syz.2.1305 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[  196.077388][ T8018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  196.077459][ T8018] Call Trace:
[  196.077467][ T8018]  <TASK>
[  196.077476][ T8018]  __dump_stack+0x1d/0x30
[  196.077560][ T8018]  dump_stack_lvl+0xe8/0x140
[  196.077587][ T8018]  dump_stack+0x15/0x1b
[  196.077609][ T8018]  should_fail_ex+0x265/0x280
[  196.077678][ T8018]  should_failslab+0x8c/0xb0
[  196.077707][ T8018]  kmem_cache_alloc_noprof+0x50/0x310
[  196.077744][ T8018]  ? skb_clone+0x151/0x1f0
[  196.077773][ T8018]  skb_clone+0x151/0x1f0
[  196.077797][ T8018]  __netlink_deliver_tap+0x2c9/0x500
[  196.077888][ T8018]  netlink_sendskb+0x126/0x150
[  196.078006][ T8018]  netlink_unicast+0x28a/0x670
[  196.078054][ T8018]  netlink_ack+0x4c8/0x500
[  196.078086][ T8018]  netlink_rcv_skb+0x192/0x220
[  196.078113][ T8018]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  196.078218][ T8018]  rtnetlink_rcv+0x1c/0x30
[  196.078251][ T8018]  netlink_unicast+0x5a1/0x670
[  196.078293][ T8018]  netlink_sendmsg+0x58b/0x6b0
[  196.078322][ T8018]  ? __pfx_netlink_sendmsg+0x10/0x10
[  196.078364][ T8018]  __sock_sendmsg+0x142/0x180
[  196.078403][ T8018]  ____sys_sendmsg+0x31e/0x4e0
[  196.078437][ T8018]  ___sys_sendmsg+0x17b/0x1d0
[  196.078483][ T8018]  __x64_sys_sendmsg+0xd4/0x160
[  196.078525][ T8018]  x64_sys_call+0x2999/0x2fb0
[  196.078631][ T8018]  do_syscall_64+0xd2/0x200
[  196.078665][ T8018]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  196.078719][ T8018]  ? clear_bhb_loop+0x40/0x90
[  196.078830][ T8018]  ? clear_bhb_loop+0x40/0x90
[  196.078861][ T8018]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.078934][ T8018] RIP: 0033:0x7f94ff13e929
[  196.078955][ T8018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.078980][ T8018] RSP: 002b:00007f94fd7a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  196.078998][ T8018] RAX: ffffffffffffffda RBX: 00007f94ff365fa0 RCX: 00007f94ff13e929
[  196.079011][ T8018] RDX: 0000000020044050 RSI: 00002000000000c0 RDI: 0000000000000003
[  196.079023][ T8018] RBP: 00007f94fd7a7090 R08: 0000000000000000 R09: 0000000000000000
[  196.079034][ T8018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  196.079114][ T8018] R13: 0000000000000000 R14: 00007f94ff365fa0 R15: 00007ffc9bccab28
[  196.079148][ T8018]  </TASK>
[  196.635826][ T8020] loop2: detected capacity change from 0 to 256
[  196.717325][   T29] kauditd_printk_skb: 282 callbacks suppressed
[  196.717342][   T29] audit: type=1326 audit(2000000144.753:5687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8019 comm="syz.2.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94ff13e929 code=0x7ffc0000
[  196.747130][   T29] audit: type=1326 audit(2000000144.753:5688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8019 comm="syz.2.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94ff13e929 code=0x7ffc0000
[  196.770709][   T29] audit: type=1326 audit(2000000144.753:5689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8019 comm="syz.2.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f94ff13e929 code=0x7ffc0000
[  196.794392][   T29] audit: type=1326 audit(2000000144.753:5690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8019 comm="syz.2.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94ff13e929 code=0x7ffc0000
[  196.817869][   T29] audit: type=1326 audit(2000000144.753:5691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8019 comm="syz.2.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94ff13e929 code=0x7ffc0000
[  196.841519][   T29] audit: type=1326 audit(2000000144.753:5692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8019 comm="syz.2.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94ff13e929 code=0x7ffc0000
[  196.848794][ T8026] loop3: detected capacity change from 0 to 164
[  196.865167][   T29] audit: type=1326 audit(2000000144.753:5693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8019 comm="syz.2.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94ff13e929 code=0x7ffc0000
[  196.876819][ T8028] hub 6-0:1.0: USB hub found
[  196.895106][   T29] audit: type=1326 audit(2000000144.753:5694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8019 comm="syz.2.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94ff13e929 code=0x7ffc0000
[  196.923806][   T29] audit: type=1326 audit(2000000144.753:5695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8019 comm="syz.2.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f94ff13e929 code=0x7ffc0000
[  196.927191][ T8026] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  196.947336][   T29] audit: type=1326 audit(2000000144.753:5696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8019 comm="syz.2.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94ff13e929 code=0x7ffc0000
[  196.983681][ T8028] hub 6-0:1.0: 8 ports detected
[  197.120200][ T8034] loop4: detected capacity change from 0 to 512
[  197.127005][ T8034] EXT4-fs: Ignoring removed nobh option
[  197.222820][ T8034] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.285713][ T8040] loop2: detected capacity change from 0 to 512
[  197.339736][ T8040] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  197.453462][ T8040] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.495758][ T8040] ext4 filesystem being mounted at /261/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  197.573635][ T8040] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1313'.
[  197.613951][ T8049] netlink: 'syz.3.1316': attribute type 39 has an invalid length.
[  198.456746][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.550909][ T8060] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1317'.
[  198.586700][ T3606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.755125][ T8069] loop2: detected capacity change from 0 to 2048
[  198.893578][ T8069]  loop2: p1 < > p4
[  198.898448][ T8069] loop2: p4 size 8388608 extends beyond EOD, truncated
[  199.346553][ T8095] hub 6-0:1.0: USB hub found
[  199.353349][ T8095] hub 6-0:1.0: 8 ports detected
[  199.382721][ T8097] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1333'.
[  199.664669][ T8105] hub 6-0:1.0: USB hub found
[  199.675500][ T8105] hub 6-0:1.0: 8 ports detected
[  199.980794][ T8110] lo speed is unknown, defaulting to 1000
[  199.987659][ T8110] lo speed is unknown, defaulting to 1000
[  200.542106][ T8119] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  200.560979][ T8119] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  200.971338][ T8136] loop4: detected capacity change from 0 to 512
[  200.978317][ T8136] EXT4-fs: Ignoring removed nobh option
[  200.990235][ T8136] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  201.005681][ T8136] EXT4-fs error (device loop4): ext4_lookup:1787: inode #15: comm syz.4.1343: iget: bad i_size value: 15393162788874
[  201.113653][ T8139] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1342'.
[  202.876588][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.064752][   T29] kauditd_printk_skb: 158 callbacks suppressed
[  203.064771][   T29] audit: type=1326 audit(2000000151.183:5855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8153 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  203.176141][ T8155] lo speed is unknown, defaulting to 1000
[  203.182851][ T8155] lo speed is unknown, defaulting to 1000
[  203.538421][   T29] audit: type=1326 audit(2000000151.213:5856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8153 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  203.714084][   T29] audit: type=1326 audit(2000000151.213:5857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8153 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  203.737659][   T29] audit: type=1326 audit(2000000151.703:5858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8153 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  203.761079][   T29] audit: type=1326 audit(2000000151.703:5859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8153 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  203.784592][   T29] audit: type=1326 audit(2000000151.703:5860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8153 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=149 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  203.843439][ T8161] loop2: detected capacity change from 0 to 512
[  203.862861][ T8161] EXT4-fs: Ignoring removed orlov option
[  203.960043][ T8161] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  204.335220][   T29] audit: type=1326 audit(2000000152.453:5861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8153 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  204.473374][   T29] audit: type=1326 audit(2000000152.583:5862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8153 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  204.497412][   T29] audit: type=1326 audit(2000000152.583:5863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8153 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  204.520931][   T29] audit: type=1326 audit(2000000152.583:5864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8153 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4bf5ce929 code=0x7ffc0000
[  204.682085][ T8161] EXT4-fs (loop2): orphan cleanup on readonly fs
[  204.762662][ T8161] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1349: bg 0: block 248: padding at end of block bitmap is not set
[  204.805927][ T8161] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1349: Failed to acquire dquot type 1
[  204.872687][ T8169] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  204.881222][ T8169] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  204.913676][ T8177] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  204.924982][ T8169] IPVS: stopping master sync thread 8177 ...
[  204.961901][ T8161] EXT4-fs (loop2): 1 truncate cleaned up
[  204.991888][ T8161] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  205.010305][ T8175] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1358'.
[  205.167900][ T3606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.222305][    C0] vcan0: j1939_tp_rxtimer: 0xffff888119fe5200: rx timeout, send abort
[  205.251165][ T8192] loop3: detected capacity change from 0 to 2048
[  205.263046][ T8196] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1362'.
[  205.362235][ T8192]  loop3: p1 < > p4
[  205.366855][ T8192] loop3: p4 size 8388608 extends beyond EOD, truncated
[  205.511912][ T8210] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1371'.
[  205.593188][ T8195] loop2: detected capacity change from 0 to 512
[  205.599896][ T8195] EXT4-fs: Ignoring removed orlov option
[  205.641914][ T8195] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  205.696334][ T8195] EXT4-fs (loop2): orphan cleanup on readonly fs
[  205.712784][ T8195] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1363: bg 0: block 248: padding at end of block bitmap is not set
[  205.716298][ T8218] hub 6-0:1.0: USB hub found
[  205.727142][    C0] vcan0: j1939_tp_rxtimer: 0xffff888119fe5800: rx timeout, send abort
[  205.740287][    C0] vcan0: j1939_tp_rxtimer: 0xffff888119fe5200: abort rx timeout. Force session deactivation
[  205.740617][ T8218] hub 6-0:1.0: 8 ports detected
[  205.751692][ T8195] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1363: Failed to acquire dquot type 1
[  205.788083][ T8195] EXT4-fs (loop2): 1 truncate cleaned up
[  205.797084][ T8195] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  205.817772][ T8221] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1375'.
[  205.946228][ T3606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.062580][ T8239] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1382'.
[  206.115013][ T8242] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1379'.
[  206.141575][ T8244] netlink: 88 bytes leftover after parsing attributes in process `syz.0.1381'.
[  206.240227][    C0] vcan0: j1939_tp_rxtimer: 0xffff888119fe5800: abort rx timeout. Force session deactivation
[  206.277479][ T8248] syzkaller1: entered promiscuous mode
[  206.283085][ T8248] syzkaller1: entered allmulticast mode
[  206.294429][ T8250] loop4: detected capacity change from 0 to 256
[  206.320368][ T8250] vfat: Bad value for 'fmask'
[  206.418678][ T8254] vlan2: entered allmulticast mode
[  206.423953][ T8254] bridge_slave_0: entered allmulticast mode
[  206.466518][ T8257] loop2: detected capacity change from 0 to 128
[  206.493171][ T8257] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  206.505736][ T8257] ext4 filesystem being mounted at /272/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  206.521467][ T8257] EXT4-fs error (device loop2): ext4_check_dx_root:2203: inode #2: comm syz.2.1387: Corrupt dir, invalid name for '.', running e2fsck is recommended
[  206.663528][ T8274] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1394'.
[  206.861859][ T8279] loop3: detected capacity change from 0 to 512
[  206.894579][ T8279] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  206.921313][ T8268] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1391'.
[  207.100610][ T8279] EXT4-fs (loop3): 1 truncate cleaned up
[  207.109607][ T8279] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  207.272471][ T3606] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  207.388969][ T8295] hub 6-0:1.0: USB hub found
[  207.416015][ T8295] hub 6-0:1.0: 8 ports detected
[  207.582534][ T8311] FAULT_INJECTION: forcing a failure.
[  207.582534][ T8311] name failslab, interval 1, probability 0, space 0, times 0
[  207.595468][ T8311] CPU: 1 UID: 0 PID: 8311 Comm: syz.2.1407 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[  207.595507][ T8311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  207.595524][ T8311] Call Trace:
[  207.595532][ T8311]  <TASK>
[  207.595592][ T8311]  __dump_stack+0x1d/0x30
[  207.595627][ T8311]  dump_stack_lvl+0xe8/0x140
[  207.595648][ T8311]  dump_stack+0x15/0x1b
[  207.595665][ T8311]  should_fail_ex+0x265/0x280
[  207.595747][ T8311]  should_failslab+0x8c/0xb0
[  207.595774][ T8311]  kmem_cache_alloc_noprof+0x50/0x310
[  207.595808][ T8311]  ? getname_flags+0x80/0x3b0
[  207.595841][ T8311]  getname_flags+0x80/0x3b0
[  207.595914][ T8311]  __x64_sys_renameat2+0x6c/0x90
[  207.595939][ T8311]  x64_sys_call+0x2bf6/0x2fb0
[  207.595966][ T8311]  do_syscall_64+0xd2/0x200
[  207.595992][ T8311]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  207.596075][ T8311]  ? clear_bhb_loop+0x40/0x90
[  207.596097][ T8311]  ? clear_bhb_loop+0x40/0x90
[  207.596119][ T8311]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.596140][ T8311] RIP: 0033:0x7f94ff13e929
[  207.596159][ T8311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.596227][ T8311] RSP: 002b:00007f94fd7a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[  207.596332][ T8311] RAX: ffffffffffffffda RBX: 00007f94ff365fa0 RCX: 00007f94ff13e929
[  207.596350][ T8311] RDX: ffffffffffffff9c RSI: 0000200000000480 RDI: ffffffffffffff9c
[  207.596366][ T8311] RBP: 00007f94fd7a7090 R08: 0000000000000002 R09: 0000000000000000
[  207.596380][ T8311] R10: 00002000000004c0 R11: 0000000000000246 R12: 0000000000000001
[  207.596396][ T8311] R13: 0000000000000000 R14: 00007f94ff365fa0 R15: 00007ffc9bccab28
[  207.596442][ T8311]  </TASK>
[  207.809315][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.824130][ T8319] loop2: detected capacity change from 0 to 128
[  207.832591][ T8316] loop4: detected capacity change from 0 to 128
[  207.893932][ T8328] loop3: detected capacity change from 0 to 164
[  207.902484][ T8328] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  207.945219][ T8309] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1408'.
[  208.097666][ T8349] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  208.106319][ T8349] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  208.157327][ T8351] loop4: detected capacity change from 0 to 512
[  208.164428][ T8351] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  208.176221][ T8351] EXT4-fs (loop4): 1 truncate cleaned up
[  208.182727][ T8351] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  208.660867][ T8358] FAULT_INJECTION: forcing a failure.
[  208.660867][ T8358] name failslab, interval 1, probability 0, space 0, times 0
[  208.673924][ T8358] CPU: 0 UID: 0 PID: 8358 Comm: syz.1.1425 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[  208.673962][ T8358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  208.673978][ T8358] Call Trace:
[  208.673985][ T8358]  <TASK>
[  208.673993][ T8358]  __dump_stack+0x1d/0x30
[  208.674015][ T8358]  dump_stack_lvl+0xe8/0x140
[  208.674051][ T8358]  dump_stack+0x15/0x1b
[  208.674067][ T8358]  should_fail_ex+0x265/0x280
[  208.674112][ T8358]  should_failslab+0x8c/0xb0
[  208.674134][ T8358]  kmem_cache_alloc_noprof+0x50/0x310
[  208.674212][ T8358]  ? skb_clone+0x151/0x1f0
[  208.674237][ T8358]  skb_clone+0x151/0x1f0
[  208.674335][ T8358]  __netlink_deliver_tap+0x2c9/0x500
[  208.674369][ T8358]  netlink_unicast+0x64c/0x670
[  208.674407][ T8358]  netlink_sendmsg+0x58b/0x6b0
[  208.674439][ T8358]  ? __pfx_netlink_sendmsg+0x10/0x10
[  208.674527][ T8358]  __sock_sendmsg+0x142/0x180
[  208.674573][ T8358]  ____sys_sendmsg+0x31e/0x4e0
[  208.674606][ T8358]  ___sys_sendmsg+0x17b/0x1d0
[  208.674646][ T8358]  __x64_sys_sendmsg+0xd4/0x160
[  208.674736][ T8358]  x64_sys_call+0x2999/0x2fb0
[  208.674765][ T8358]  do_syscall_64+0xd2/0x200
[  208.674793][ T8358]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  208.674876][ T8358]  ? clear_bhb_loop+0x40/0x90
[  208.674940][ T8358]  ? clear_bhb_loop+0x40/0x90
[  208.674970][ T8358]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.675074][ T8358] RIP: 0033:0x7f683dc3e929
[  208.675095][ T8358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.675119][ T8358] RSP: 002b:00007f683c2a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  208.675143][ T8358] RAX: ffffffffffffffda RBX: 00007f683de65fa0 RCX: 00007f683dc3e929
[  208.675208][ T8358] RDX: 0000000000008840 RSI: 0000200000000740 RDI: 0000000000000003
[  208.675221][ T8358] RBP: 00007f683c2a7090 R08: 0000000000000000 R09: 0000000000000000
[  208.675236][ T8358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  208.675253][ T8358] R13: 0000000000000000 R14: 00007f683de65fa0 R15: 00007fff781ad7d8
[  208.675305][ T8358]  </TASK>
[  208.935330][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.083899][   T29] kauditd_printk_skb: 190 callbacks suppressed
[  209.083920][   T29] audit: type=1326 audit(2000000157.203:6051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8380 comm="syz.2.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94ff13e929 code=0x7ffc0000
[  209.113696][   T29] audit: type=1326 audit(2000000157.203:6052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8380 comm="syz.2.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94ff13e929 code=0x7ffc0000
[  209.195625][   T29] audit: type=1326 audit(2000000157.203:6053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8380 comm="syz.2.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94ff13e929 code=0x7ffc0000
[  209.219136][   T29] audit: type=1326 audit(2000000157.203:6054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8380 comm="syz.2.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94ff13e929 code=0x7ffc0000
[  209.242666][   T29] audit: type=1326 audit(2000000157.203:6055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8380 comm="syz.2.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94ff13e929 code=0x7ffc0000
[  209.266307][   T29] audit: type=1326 audit(2000000157.203:6056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8380 comm="syz.2.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94ff13e929 code=0x7ffc0000
[  209.289766][   T29] audit: type=1326 audit(2000000157.203:6057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8380 comm="syz.2.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94ff13e929 code=0x7ffc0000
[  209.313269][   T29] audit: type=1326 audit(2000000157.203:6058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8380 comm="syz.2.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f94ff13e929 code=0x7ffc0000
[  209.336852][   T29] audit: type=1326 audit(2000000157.253:6059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8380 comm="syz.2.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94ff13e929 code=0x7ffc0000
[  209.360383][   T29] audit: type=1326 audit(2000000157.283:6060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8380 comm="syz.2.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94ff13e929 code=0x7ffc0000
[  210.484137][ T8419] __nla_validate_parse: 4 callbacks suppressed
[  210.484199][ T8419] netlink: 88 bytes leftover after parsing attributes in process `syz.3.1447'.
[  210.772846][ T8423] syzkaller1: entered promiscuous mode
[  210.778415][ T8423] syzkaller1: entered allmulticast mode
[  210.863282][ T8433] netlink: 'syz.3.1452': attribute type 3 has an invalid length.
[  210.871347][ T8423] loop2: detected capacity change from 0 to 764
[  210.899126][ T8423] Symlink component flag not implemented
[  210.913170][ T8423] Symlink component flag not implemented (7)
[  210.964186][ T8446] loop3: detected capacity change from 0 to 512
[  210.971243][ T8446] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  210.986879][ T8446] EXT4-fs (loop3): 1 truncate cleaned up
[  210.995927][ T8446] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  211.010653][ T8426] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1448'.
[  211.288143][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  212.089387][ T8484] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1472'.
[  212.159984][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x4
[  212.168799][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.176330][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.183874][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.191399][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.193856][ T8507] netlink: 'syz.2.1478': attribute type 4 has an invalid length.
[  212.198873][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.208325][ T8508] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1477'.
[  212.213999][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.214030][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.237890][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.245342][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.252866][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.260329][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.267873][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.275321][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.282852][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.290306][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.297998][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.305431][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.313090][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.319188][ T8512] loop2: detected capacity change from 0 to 1024
[  212.320529][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.320554][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.328515][ T8512] EXT4-fs: inline encryption not supported
[  212.334341][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.334368][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.344863][ T8512] EXT4-fs: Ignoring removed orlov option
[  212.347593][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.355048][ T8512] ext4: Unknown parameter 'appraise'
[  212.362415][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.386219][ T8512] loop2: detected capacity change from 0 to 1024
[  212.388199][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.395203][ T8512] EXT4-fs: Ignoring removed orlov option
[  212.401950][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.411820][ T8512] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  212.415180][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.435174][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.442713][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.450213][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x4
[  212.457656][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.465090][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.472576][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.480012][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.487564][ T3402] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  212.502636][ T3402] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  212.515596][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.523092][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.531001][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.538567][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.546052][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.553587][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.561010][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.568471][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.575967][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.583385][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.590809][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.598354][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.605897][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.613352][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.620836][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.628465][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.635927][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.643458][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.650897][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.658377][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.665849][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.673386][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.681304][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.688897][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.696416][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.703945][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.711360][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.718824][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.726336][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.733803][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.741235][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.748668][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.756155][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.763604][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.771209][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.778800][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.786257][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.793730][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.801264][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.808792][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.816263][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.824090][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.831587][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.839146][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.846631][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.854177][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.861614][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.869214][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.876756][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.884212][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.891934][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.899380][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.906844][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.914323][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.921812][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.929312][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.936761][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x6
[  212.944336][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x7
[  212.951823][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.959258][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.966861][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.974399][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.981894][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.989418][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  212.997052][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.004567][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.012046][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.019505][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.026951][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.034411][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.041918][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.049439][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.056883][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.064342][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.071973][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.079948][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.087407][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.094963][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.102520][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.110011][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.117447][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.124977][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.132461][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.139901][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.147349][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.154779][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.162284][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.169750][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.177226][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.184675][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.192133][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.199516][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.206917][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.214326][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.221713][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.229218][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.236619][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.244026][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.251415][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.258819][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.266263][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.273727][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.281128][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.288616][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.296036][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.303489][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.310946][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.318513][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.325923][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.333362][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.340892][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.348336][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.355751][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.363210][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.370625][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.378099][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.385515][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.392948][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.400370][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.407792][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.415220][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.422641][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.430111][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.437677][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.445113][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.452565][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.460012][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.467462][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.474962][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.482383][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.489856][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.497357][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.504914][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.512316][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.519703][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.527137][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.534570][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.542070][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.549540][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.556985][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.564483][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.571906][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.579294][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.586720][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.594237][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.601623][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.609032][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.616436][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.623843][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.631260][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.638681][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.646170][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.653578][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.660961][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.668364][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.675762][ T3402] hid-generic 0002:0200:0100.0002: unknown main item tag 0x0
[  213.685115][ T3402] hid-generic 0002:0200:0100.0002: hidraw0: <UNKNOWN> HID vfffff0.87 Device [syz1] on syz1
[  213.711018][ T3606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.756401][ T8532] netlink: 88 bytes leftover after parsing attributes in process `syz.2.1484'.
[  213.834809][ T8545] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  213.856440][ T8545] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  213.943079][ T8548] netlink: 'syz.4.1491': attribute type 4 has an invalid length.
[  213.981870][ T8540] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1488'.
[  214.166149][ T8555] netlink: 'syz.0.1494': attribute type 4 has an invalid length.
[  214.763510][ T8563] syzkaller1: entered promiscuous mode
[  214.769094][ T8563] syzkaller1: entered allmulticast mode
[  214.972823][   T29] kauditd_printk_skb: 287 callbacks suppressed
[  214.972849][   T29] audit: type=1326 audit(2000000163.093:6348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8574 comm="syz.4.1501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc399f5e929 code=0x7ffc0000
[  215.030306][   T29] audit: type=1326 audit(2000000163.123:6349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8574 comm="syz.4.1501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc399f5e929 code=0x7ffc0000
[  215.053838][   T29] audit: type=1326 audit(2000000163.123:6350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8574 comm="syz.4.1501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc399f5e929 code=0x7ffc0000
[  215.077514][   T29] audit: type=1326 audit(2000000163.123:6351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8574 comm="syz.4.1501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc399f5e929 code=0x7ffc0000
[  215.101056][   T29] audit: type=1326 audit(2000000163.123:6352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8574 comm="syz.4.1501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc399f5e929 code=0x7ffc0000
[  215.125053][   T29] audit: type=1326 audit(2000000163.123:6353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8574 comm="syz.4.1501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=149 compat=0 ip=0x7fc399f5e929 code=0x7ffc0000
[  215.424114][   T29] audit: type=1326 audit(2000000163.273:6354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8574 comm="syz.4.1501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc399f5e929 code=0x7ffc0000
[  215.447704][   T29] audit: type=1326 audit(2000000163.273:6355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8574 comm="syz.4.1501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc399f5e929 code=0x7ffc0000
[  215.471181][   T29] audit: type=1326 audit(2000000163.293:6356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8574 comm="syz.4.1501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc399f5e929 code=0x7ffc0000
[  215.494692][   T29] audit: type=1326 audit(2000000163.293:6357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8574 comm="syz.4.1501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc399f5e929 code=0x7ffc0000
[  215.592270][ T8587] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1505'.
[  217.277049][ T8608] loop4: detected capacity change from 0 to 164
[  217.298186][ T8608] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  217.387114][ T8621] loop4: detected capacity change from 0 to 128
[  217.593149][ T8644] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1522'.
[  217.895980][ T8660] loop3: detected capacity change from 0 to 512
[  217.904416][ T8660] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  217.943695][ T8660] EXT4-fs (loop3): 1 truncate cleaned up
[  217.949928][ T8660] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  218.161730][ T8662] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1525'.
[  218.644956][ T8684] loop2: detected capacity change from 0 to 128
[  218.859213][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.784536][ T8694] loop2: detected capacity change from 0 to 512
[  219.791135][ T8694] EXT4-fs: Ignoring removed nobh option
[  219.904991][ T8694] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  220.019491][ T8699] loop3: detected capacity change from 0 to 164
[  220.103692][ T8699] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  220.617881][ T8713] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  220.660677][ T8713] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  220.714214][ T8715] lo speed is unknown, defaulting to 1000
[  220.750288][ T8716] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1540'.
[  220.750918][ T8715] lo speed is unknown, defaulting to 1000
[  220.825937][ T8716] rdma_rxe: rxe_newlink: failed to add bond_slave_1
[  221.207013][ T3606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.260306][ T8728] loop3: detected capacity change from 0 to 512
[  221.275760][ T8728] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  221.351864][ T8728] EXT4-fs (loop3): 1 truncate cleaned up
[  221.360130][ T8728] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.182766][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.209136][   T29] kauditd_printk_skb: 53 callbacks suppressed
[  222.209155][   T29] audit: type=1326 audit(2000000170.323:6411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8743 comm="syz.2.1548" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f94ff13e929 code=0x0
[  222.266691][ T8748] loop2: detected capacity change from 0 to 1024
[  222.292172][ T8748] EXT4-fs: inline encryption not supported
[  222.298159][ T8748] EXT4-fs: Ignoring removed orlov option
[  222.303883][ T8748] ext4: Unknown parameter 'appraise'
[  222.317516][ T8739] loop4: detected capacity change from 0 to 512
[  222.321068][ T8750] netlink: 'syz.0.1551': attribute type 4 has an invalid length.
[  222.324465][ T8739] EXT4-fs: Ignoring removed orlov option
[  222.358718][ T8739] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  222.374001][ T8748] loop2: detected capacity change from 0 to 1024
[  222.380749][ T8748] EXT4-fs: Ignoring removed orlov option
[  222.388528][ T8739] EXT4-fs (loop4): orphan cleanup on readonly fs
[  222.398661][ T8748] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.402549][ T8739] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1546: bg 0: block 248: padding at end of block bitmap is not set
[  222.427676][ T8754] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  222.453039][ T8754] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  222.471556][ T8739] Quota error (device loop4): write_blk: dquota write failed
[  222.479140][ T8739] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  222.489118][ T8739] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.1546: Failed to acquire dquot type 1
[  222.501542][ T8739] EXT4-fs (loop4): 1 truncate cleaned up
[  222.508259][ T8739] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  222.521101][ T8747] loop3: detected capacity change from 0 to 512
[  222.530472][ T8747] EXT4-fs: Ignoring removed orlov option
[  222.536780][ T8747] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  222.555685][ T8747] EXT4-fs (loop3): orphan cleanup on readonly fs
[  222.576961][ T8747] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1549: bg 0: block 248: padding at end of block bitmap is not set
[  222.609524][   T29] audit: type=1326 audit(2000000170.723:6412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8762 comm="syz.1.1554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  222.612451][ T8747] Quota error (device loop3): write_blk: dquota write failed
[  222.640718][ T8747] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  222.650852][ T8747] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.1549: Failed to acquire dquot type 1
[  222.666245][ T8747] EXT4-fs (loop3): 1 truncate cleaned up
[  222.670006][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.672116][   T29] audit: type=1326 audit(2000000170.783:6413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8762 comm="syz.1.1554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  222.704505][   T29] audit: type=1326 audit(2000000170.783:6414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8762 comm="syz.1.1554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  222.728020][   T29] audit: type=1326 audit(2000000170.783:6415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8762 comm="syz.1.1554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  222.751582][   T29] audit: type=1326 audit(2000000170.783:6416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8762 comm="syz.1.1554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  222.777140][ T8747] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  223.018082][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.066804][ T3606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.082266][ T8773] loop3: detected capacity change from 0 to 1024
[  223.089472][ T8773] EXT4-fs: Ignoring removed orlov option
[  223.120206][ T8774] loop4: detected capacity change from 0 to 512
[  223.127259][ T8774] EXT4-fs: Ignoring removed nobh option
[  223.225245][ T8771] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  223.239952][ T8771] netlink: 'syz.0.1557': attribute type 13 has an invalid length.
[  223.259429][ T8771] gretap0: refused to change device tx_queue_len
[  223.265950][ T8771] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  223.281980][ T1035] lo speed is unknown, defaulting to 1000
[  223.287801][ T1035] syz0: Port: 1 Link DOWN
[  223.715926][ T8785] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1563'.
[  224.021513][ T8774] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  224.046934][ T8773] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  224.426539][ T8801] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  224.477969][ T8801] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  224.568421][ T8805] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1565'.
[  224.577483][ T8805] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1565'.
[  224.586516][ T8805] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1565'.
[  224.622752][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.713824][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.815515][ T8810] loop2: detected capacity change from 0 to 512
[  224.822347][ T8810] EXT4-fs: Ignoring removed orlov option
[  224.828562][ T8810] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  224.839573][ T8810] EXT4-fs (loop2): orphan cleanup on readonly fs
[  224.847109][ T8810] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1569: bg 0: block 248: padding at end of block bitmap is not set
[  224.861670][ T8810] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1569: Failed to acquire dquot type 1
[  224.873468][ T8810] EXT4-fs (loop2): 1 truncate cleaned up
[  224.879935][ T8810] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  224.935338][ T3606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.255443][ T8827] loop2: detected capacity change from 0 to 128
[  225.720811][ T8847] loop3: detected capacity change from 0 to 512
[  225.727919][ T8847] EXT4-fs: Ignoring removed nobh option
[  225.824933][ T8847] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  226.628423][ T8859] netlink: 'syz.4.1586': attribute type 4 has an invalid length.
[  226.751207][ T8866] loop4: detected capacity change from 0 to 1024
[  226.772143][ T8866] EXT4-fs: inline encryption not supported
[  226.785568][ T8866] EXT4-fs: Ignoring removed orlov option
[  226.791314][ T8866] ext4: Unknown parameter 'appraise'
[  226.836219][ T8866] loop4: detected capacity change from 0 to 1024
[  226.850300][ T8866] EXT4-fs: Ignoring removed orlov option
[  226.878816][ T8866] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  227.293438][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.797929][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.530540][ T8906] loop2: detected capacity change from 0 to 512
[  228.537607][ T8906] EXT4-fs: Ignoring removed nobh option
[  229.468823][ T8906] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  229.485197][ T8906] EXT4-fs error (device loop2): ext4_lookup:1787: inode #15: comm syz.2.1598: iget: bad i_size value: 15393162788874
[  230.472305][ T3606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.528881][ T8926] loop2: detected capacity change from 0 to 128
[  233.844278][ T8935] binfmt_misc: register: failed to install interpreter file ./file1
[  234.032077][ T8948] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  234.058414][ T8948] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  235.511885][   T29] kauditd_printk_skb: 92 callbacks suppressed
[  235.511906][   T29] audit: type=1326 audit(2000000183.593:6507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8961 comm="syz.3.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  235.541567][   T29] audit: type=1326 audit(2000000183.593:6508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8961 comm="syz.3.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  235.565066][   T29] audit: type=1326 audit(2000000183.593:6509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8961 comm="syz.3.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  235.588508][   T29] audit: type=1326 audit(2000000183.593:6510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8961 comm="syz.3.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  235.612029][   T29] audit: type=1326 audit(2000000183.593:6511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8961 comm="syz.3.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  235.635505][   T29] audit: type=1326 audit(2000000183.593:6512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8961 comm="syz.3.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=149 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  236.179226][   T29] audit: type=1326 audit(2000000184.253:6513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8961 comm="syz.3.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  236.202760][   T29] audit: type=1326 audit(2000000184.253:6514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8961 comm="syz.3.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  236.226247][   T29] audit: type=1326 audit(2000000184.283:6515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8961 comm="syz.3.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  236.249864][   T29] audit: type=1326 audit(2000000184.283:6516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8961 comm="syz.3.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f030a08e929 code=0x7ffc0000
[  237.404652][ T8966] loop4: detected capacity change from 0 to 512
[  237.411308][ T8966] EXT4-fs: Ignoring removed nobh option
[  238.251574][ T8966] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  238.272747][ T8966] EXT4-fs error (device loop4): ext4_lookup:1787: inode #15: comm syz.4.1616: iget: bad i_size value: 15393162788874
[  238.630959][ T8970] loop3: detected capacity change from 0 to 512
[  238.670818][ T8970] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  238.813133][ T8970] EXT4-fs (loop3): 1 truncate cleaned up
[  238.819350][ T8970] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  239.102404][ T8992] loop2: detected capacity change from 0 to 512
[  239.129337][ T8992] EXT4-fs: Ignoring removed orlov option
[  239.161605][ T8992] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  239.218596][ T8992] EXT4-fs (loop2): orphan cleanup on readonly fs
[  239.235822][ T8992] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1619: bg 0: block 248: padding at end of block bitmap is not set
[  239.271143][ T8992] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1619: Failed to acquire dquot type 1
[  239.271443][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.301873][ T8992] EXT4-fs (loop2): 1 truncate cleaned up
[  239.311523][ T8992] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  239.312064][ T9001] FAULT_INJECTION: forcing a failure.
[  239.312064][ T9001] name failslab, interval 1, probability 0, space 0, times 0
[  239.336756][ T9001] CPU: 0 UID: 0 PID: 9001 Comm: syz.4.1622 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[  239.336789][ T9001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  239.336804][ T9001] Call Trace:
[  239.336811][ T9001]  <TASK>
[  239.336883][ T9001]  __dump_stack+0x1d/0x30
[  239.336907][ T9001]  dump_stack_lvl+0xe8/0x140
[  239.336928][ T9001]  dump_stack+0x15/0x1b
[  239.336946][ T9001]  should_fail_ex+0x265/0x280
[  239.337045][ T9001]  should_failslab+0x8c/0xb0
[  239.337101][ T9001]  kmem_cache_alloc_noprof+0x50/0x310
[  239.337193][ T9001]  ? alloc_empty_file+0x76/0x200
[  239.337230][ T9001]  alloc_empty_file+0x76/0x200
[  239.337265][ T9001]  alloc_file_pseudo+0xc6/0x160
[  239.337374][ T9001]  sock_alloc_file+0x9c/0x1e0
[  239.337410][ T9001]  do_accept+0x1e4/0x3a0
[  239.337458][ T9001]  __sys_accept4+0xbf/0x140
[  239.337552][ T9001]  __x64_sys_accept+0x42/0x50
[  239.337723][ T9001]  x64_sys_call+0x2f50/0x2fb0
[  239.337841][ T9001]  do_syscall_64+0xd2/0x200
[  239.337867][ T9001]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  239.337901][ T9001]  ? clear_bhb_loop+0x40/0x90
[  239.337928][ T9001]  ? clear_bhb_loop+0x40/0x90
[  239.337956][ T9001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.338114][ T9001] RIP: 0033:0x7fc399f5e929
[  239.338133][ T9001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  239.338157][ T9001] RSP: 002b:00007fc3985c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002b
[  239.338181][ T9001] RAX: ffffffffffffffda RBX: 00007fc39a185fa0 RCX: 00007fc399f5e929
[  239.338196][ T9001] RDX: 0000200000001340 RSI: 00002000000012c0 RDI: 0000000000000004
[  239.338211][ T9001] RBP: 00007fc3985c7090 R08: 0000000000000000 R09: 0000000000000000
[  239.338226][ T9001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  239.338241][ T9001] R13: 0000000000000000 R14: 00007fc39a185fa0 R15: 00007fffc1c068f8
[  239.338335][ T9001]  </TASK>
[  239.574437][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.609369][ T9006] loop3: detected capacity change from 0 to 164
[  239.621720][ T9007] loop4: detected capacity change from 0 to 1024
[  239.634778][ T9007] EXT4-fs: inline encryption not supported
[  239.644939][ T3606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.650391][ T9007] EXT4-fs: Ignoring removed orlov option
[  239.659644][ T9007] ext4: Unknown parameter 'appraise'
[  239.665252][ T9006] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  239.755684][ T9007] loop4: detected capacity change from 0 to 1024
[  239.763782][ T9007] EXT4-fs: Ignoring removed orlov option
[  239.802267][ T9007] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  239.907033][ T9019] loop2: detected capacity change from 0 to 512
[  239.914077][ T9019] EXT4-fs: Ignoring removed nobh option
[  239.926319][ T9017] hub 6-0:1.0: USB hub found
[  239.934483][ T9017] hub 6-0:1.0: 8 ports detected
[  240.806749][ T9019] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  240.822228][ T9019] EXT4-fs error (device loop2): ext4_lookup:1787: inode #15: comm syz.2.1625: iget: bad i_size value: 15393162788874
[  240.860780][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.487429][ T9040] loop3: detected capacity change from 0 to 512
[  241.494149][ T9040] EXT4-fs: Ignoring removed nobh option
[  241.507292][ T3606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.523792][ T9040] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  241.596384][ T9043] vlan2: entered allmulticast mode
[  241.909300][ T9048] loop4: detected capacity change from 0 to 512
[  241.922459][ T9048] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  241.935810][ T9052] loop2: detected capacity change from 0 to 164
[  241.946748][ T9048] EXT4-fs (loop4): 1 truncate cleaned up
[  241.956467][ T9048] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  242.065373][ T9052] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  242.278364][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  242.847818][   T29] kauditd_printk_skb: 60 callbacks suppressed
[  242.847895][   T29] audit: type=1326 audit(2000000190.963:6575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9063 comm="syz.4.1639" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc399f5e929 code=0x0
[  242.890467][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  242.952862][ T9067] loop4: detected capacity change from 0 to 1024
[  242.963368][ T9067] EXT4-fs: inline encryption not supported
[  242.982885][ T9067] EXT4-fs: Ignoring removed orlov option
[  242.988661][ T9067] ext4: Unknown parameter 'appraise'
[  243.030142][ T9067] loop4: detected capacity change from 0 to 1024
[  243.036983][ T9067] EXT4-fs: Ignoring removed orlov option
[  243.067194][ T9067] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  243.213224][   T29] audit: type=1326 audit(2000000191.333:6576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9077 comm="syz.1.1646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  243.236823][   T29] audit: type=1326 audit(2000000191.333:6577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9077 comm="syz.1.1646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  243.273832][   T29] audit: type=1326 audit(2000000191.373:6578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9077 comm="syz.1.1646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  243.297417][   T29] audit: type=1326 audit(2000000191.383:6579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9077 comm="syz.1.1646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  243.320902][   T29] audit: type=1326 audit(2000000191.383:6580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9077 comm="syz.1.1646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  243.344407][   T29] audit: type=1326 audit(2000000191.383:6581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9077 comm="syz.1.1646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  243.368637][   T29] audit: type=1326 audit(2000000191.383:6582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9077 comm="syz.1.1646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  243.392156][   T29] audit: type=1326 audit(2000000191.383:6583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9077 comm="syz.1.1646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  243.392338][ T9082] loop2: detected capacity change from 0 to 512
[  243.415748][   T29] audit: type=1326 audit(2000000191.383:6584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9077 comm="syz.1.1646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  243.422437][ T9082] EXT4-fs: Ignoring removed nobh option
[  243.473704][ T9082] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  243.557082][ T9089] loop3: detected capacity change from 0 to 512
[  243.566432][ T9089] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  243.589294][ T9089] EXT4-fs (loop3): 1 truncate cleaned up
[  243.596576][ T9089] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  243.700049][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  243.775414][ T9101] vlan2: entered allmulticast mode
[  243.786070][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  243.916161][ T9104] loop4: detected capacity change from 0 to 512
[  243.944336][ T9104] EXT4-fs: Ignoring removed orlov option
[  243.969689][ T9104] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  244.008989][ T9104] EXT4-fs (loop4): orphan cleanup on readonly fs
[  244.018805][ T3606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.055898][ T9104] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1652: bg 0: block 248: padding at end of block bitmap is not set
[  244.092224][ T9104] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.1652: Failed to acquire dquot type 1
[  244.125094][ T9104] EXT4-fs (loop4): 1 truncate cleaned up
[  244.143316][ T9122] loop2: detected capacity change from 0 to 164
[  244.162355][ T9104] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  244.191974][ T9122] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  244.266125][ T9118] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1659'.
[  244.328207][ T9127] netlink: 'syz.3.1662': attribute type 4 has an invalid length.
[  244.399429][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.432539][ T9135] loop3: detected capacity change from 0 to 1024
[  244.446105][ T9137] loop4: detected capacity change from 0 to 512
[  244.454001][ T9135] EXT4-fs: inline encryption not supported
[  244.460740][ T9137] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  244.471112][ T9135] EXT4-fs: Ignoring removed orlov option
[  244.476894][ T9135] ext4: Unknown parameter 'appraise'
[  244.487598][ T9137] EXT4-fs (loop4): 1 truncate cleaned up
[  244.493960][ T9137] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  244.517585][ T9135] loop3: detected capacity change from 0 to 1024
[  244.524403][ T9135] EXT4-fs: Ignoring removed orlov option
[  244.534820][ T9135] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  244.773110][ T9147] vlan2: entered allmulticast mode
[  244.806175][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.988362][ T9161] syzkaller1: entered promiscuous mode
[  244.994044][ T9161] syzkaller1: entered allmulticast mode
[  245.221030][ T9164] vlan2: entered allmulticast mode
[  245.272180][ T9167] loop2: detected capacity change from 0 to 128
[  245.288188][ T9166] syzkaller1: entered promiscuous mode
[  245.294441][ T9166] syzkaller1: entered allmulticast mode
[  245.311509][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  245.775301][ T9172] netlink: 'syz.4.1676': attribute type 4 has an invalid length.
[  245.985303][ T9167] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  246.012550][ T9167] ext4 filesystem being mounted at /321/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  246.036034][ T9167] EXT4-fs error (device loop2): ext4_check_dx_root:2203: inode #2: comm syz.2.1672: Corrupt dir, invalid name for '.', running e2fsck is recommended
[  246.194420][ T9192] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1679'.
[  246.370259][ T3606] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  246.831617][ T9245] netlink: 'syz.3.1688': attribute type 4 has an invalid length.
[  247.079211][ T9261] vlan2: entered allmulticast mode
[  247.084571][ T9261] bridge_slave_0: entered allmulticast mode
[  247.128819][ T9262] loop3: detected capacity change from 0 to 128
[  247.148813][ T9262] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  247.162109][ T9262] ext4 filesystem being mounted at /355/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  247.179259][ T9261] EXT4-fs error (device loop3): ext4_check_dx_root:2203: inode #2: comm syz.3.1693: Corrupt dir, invalid name for '.', running e2fsck is recommended
[  247.208881][ T3313] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  247.438524][ T9282] loop3: detected capacity change from 0 to 512
[  247.445506][ T9282] EXT4-fs: Ignoring removed nobh option
[  247.727855][ T9290] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  247.816475][ T9290] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  247.968078][ T9300] netlink: 'syz.4.1701': attribute type 4 has an invalid length.
[  248.995483][ T9282] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  249.210044][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.234763][   T29] kauditd_printk_skb: 13 callbacks suppressed
[  249.234779][   T29] audit: type=1326 audit(2000000197.353:6596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9314 comm="syz.2.1707" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f94ff13e929 code=0x0
[  249.297102][ T9325] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1709'.
[  249.303212][   T29] audit: type=1326 audit(2000000197.383:6597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9316 comm="syz.1.1706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  249.330204][   T29] audit: type=1326 audit(2000000197.383:6598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9316 comm="syz.1.1706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  249.354018][   T29] audit: type=1326 audit(2000000197.383:6599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9316 comm="syz.1.1706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  249.377608][   T29] audit: type=1326 audit(2000000197.383:6600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9316 comm="syz.1.1706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  249.378751][ T9323] loop2: detected capacity change from 0 to 1024
[  249.401367][   T29] audit: type=1326 audit(2000000197.383:6601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9316 comm="syz.1.1706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  249.428265][ T9323] EXT4-fs: inline encryption not supported
[  249.431642][   T29] audit: type=1326 audit(2000000197.383:6602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9316 comm="syz.1.1706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  249.444682][ T9323] EXT4-fs: Ignoring removed orlov option
[  249.460820][   T29] audit: type=1326 audit(2000000197.393:6603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9316 comm="syz.1.1706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  249.460862][   T29] audit: type=1326 audit(2000000197.393:6604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9316 comm="syz.1.1706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  249.466553][ T9323] ext4: Unknown parameter 'appraise'
[  249.489923][   T29] audit: type=1326 audit(2000000197.393:6605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9316 comm="syz.1.1706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  249.560319][ T9332] syzkaller1: entered promiscuous mode
[  249.566033][ T9332] syzkaller1: entered allmulticast mode
[  249.571910][ T9323] loop2: detected capacity change from 0 to 1024
[  249.578807][ T9323] EXT4-fs: Ignoring removed orlov option
[  249.588820][ T9323] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  249.627281][ T9341] loop3: detected capacity change from 0 to 164
[  249.634538][ T9341] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  249.696318][ T9348] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  249.747828][ T9348] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  249.793542][ T9353] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1715'.
[  250.098077][ T3606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  251.102651][ T9374] syzkaller1: entered promiscuous mode
[  251.108198][ T9374] syzkaller1: entered allmulticast mode
[  251.143445][ T9374] loop3: detected capacity change from 0 to 764
[  251.151715][ T9374] Symlink component flag not implemented
[  251.158073][ T9374] Symlink component flag not implemented (7)
[  251.168624][ T9359] loop2: detected capacity change from 0 to 512
[  251.177015][ T9361] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1719'.
[  251.191189][ T9359] EXT4-fs: Ignoring removed orlov option
[  251.198392][ T9359] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  251.208431][ T9359] EXT4-fs (loop2): orphan cleanup on readonly fs
[  251.236398][ T9381] loop4: detected capacity change from 0 to 164
[  251.256771][ T9359] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1717: bg 0: block 248: padding at end of block bitmap is not set
[  251.282272][ T9381] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  251.283025][ T9359] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1717: Failed to acquire dquot type 1
[  251.354413][ T9359] EXT4-fs (loop2): 1 truncate cleaned up
[  251.390524][ T9392] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1728'.
[  251.429822][ T9359] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  251.524278][ T3606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  251.558139][ T9397] netlink: 'syz.2.1731': attribute type 4 has an invalid length.
[  251.592840][ T9398] loop3: detected capacity change from 0 to 512
[  251.669935][ T9398] EXT4-fs: Ignoring removed orlov option
[  251.909623][ T9398] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  252.116525][ T9398] EXT4-fs (loop3): orphan cleanup on readonly fs
[  252.259763][ T9398] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1727: bg 0: block 248: padding at end of block bitmap is not set
[  252.341670][ T9398] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.1727: Failed to acquire dquot type 1
[  252.468366][ T9398] EXT4-fs (loop3): 1 truncate cleaned up
[  252.493198][ T9398] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  252.536030][ T9413] vlan2: entered allmulticast mode
[  252.579188][ T9415] syzkaller1: entered promiscuous mode
[  252.584779][ T9415] syzkaller1: entered allmulticast mode
[  252.586508][ T9418] loop4: detected capacity change from 0 to 128
[  252.602110][ T9418] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  252.627217][ T9418] ext4 filesystem being mounted at /364/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  252.704872][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.723627][ T3306] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  252.790127][ T9431] netlink: 'syz.3.1742': attribute type 4 has an invalid length.
[  252.978496][ T9419] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1739'.
[  253.061156][ T9447] loop3: detected capacity change from 0 to 512
[  253.068454][ T9447] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  253.090202][ T9447] EXT4-fs (loop3): 1 truncate cleaned up
[  253.105382][ T9447] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  253.973149][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  253.989818][ T9466] vlan2: entered allmulticast mode
[  254.097391][ T9479] syzkaller1: entered promiscuous mode
[  254.102980][ T9479] syzkaller1: entered allmulticast mode
[  254.243511][   T29] kauditd_printk_skb: 136 callbacks suppressed
[  254.243528][   T29] audit: type=1326 audit(2000000202.363:6738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9496 comm="syz.4.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=149 compat=0 ip=0x7fc399f5e929 code=0x7ffc0000
[  254.301047][   T29] audit: type=1326 audit(2000000202.413:6739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9496 comm="syz.4.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc399f5e929 code=0x7ffc0000
[  254.331967][   T29] audit: type=1326 audit(2000000202.443:6740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9496 comm="syz.4.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc399f5e929 code=0x7ffc0000
[  254.392910][ T9484] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1759'.
[  254.423224][   T29] audit: type=1326 audit(2000000202.453:6741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9496 comm="syz.4.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc399f5e929 code=0x7ffc0000
[  254.446962][   T29] audit: type=1326 audit(2000000202.453:6742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9496 comm="syz.4.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc399f5e929 code=0x7ffc0000
[  254.471846][   T29] audit: type=1326 audit(2000000202.453:6743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9496 comm="syz.4.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc399f5e929 code=0x7ffc0000
[  254.495375][   T29] audit: type=1326 audit(2000000202.453:6744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9496 comm="syz.4.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc399f5e929 code=0x7ffc0000
[  254.519003][   T29] audit: type=1326 audit(2000000202.453:6745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9496 comm="syz.4.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc399f5e929 code=0x7ffc0000
[  254.542527][   T29] audit: type=1326 audit(2000000202.453:6746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9496 comm="syz.4.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc399f5e929 code=0x7ffc0000
[  254.566036][   T29] audit: type=1326 audit(2000000202.453:6747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9496 comm="syz.4.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc399f5e929 code=0x7ffc0000
[  254.893998][ T9524] loop3: detected capacity change from 0 to 512
[  254.902085][ T9524] EXT4-fs: Ignoring removed nobh option
[  254.928003][ T9524] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  254.964339][ T9530] vlan2: entered allmulticast mode
[  255.010145][ T9533] loop2: detected capacity change from 0 to 128
[  255.030458][ T9533] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  255.063110][ T9533] ext4 filesystem being mounted at /339/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  255.090079][ T3606] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  255.290700][ T9545] loop4: detected capacity change from 0 to 2048
[  255.366998][ T9546] loop2: detected capacity change from 0 to 512
[  255.373884][ T9546] EXT4-fs: Ignoring removed nobh option
[  255.665830][ T9546] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  255.694825][ T9545]  loop4: p1 < > p4
[  255.763061][ T9545] loop4: p4 size 8388608 extends beyond EOD, truncated
[  255.803844][ T9549] hub 6-0:1.0: USB hub found
[  255.857643][ T9549] hub 6-0:1.0: 8 ports detected
[  256.251722][ T9552] netlink: 'syz.4.1780': attribute type 4 has an invalid length.
[  256.886775][ T3606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.226604][ T9600] hub 6-0:1.0: USB hub found
[  257.235250][ T9602] loop4: detected capacity change from 0 to 512
[  257.241871][ T9600] hub 6-0:1.0: 8 ports detected
[  257.247323][ T9602] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  257.277532][ T9602] EXT4-fs (loop4): 1 truncate cleaned up
[  257.283800][ T9602] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  257.329997][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.750909][ T9625] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1802'.
[  257.874592][ T9640] hub 6-0:1.0: USB hub found
[  257.880565][ T9640] hub 6-0:1.0: 8 ports detected
[  258.176476][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.277372][ T9682] loop3: detected capacity change from 0 to 1024
[  258.304094][ T9684] vlan2: entered allmulticast mode
[  258.313168][ T9682] EXT4-fs: inline encryption not supported
[  258.319284][ T9682] EXT4-fs: Ignoring removed orlov option
[  258.325067][ T9682] ext4: Unknown parameter 'appraise'
[  258.347492][ T9682] loop3: detected capacity change from 0 to 1024
[  258.354997][ T9682] EXT4-fs: Ignoring removed orlov option
[  258.362481][ T9679] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1815'.
[  258.379023][ T9682] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  258.438273][ T9694] hub 6-0:1.0: USB hub found
[  258.444815][ T9694] hub 6-0:1.0: 8 ports detected
[  258.487707][ T9705] loop4: detected capacity change from 0 to 164
[  258.496129][ T9705] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  258.572351][ T9710] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1823'.
[  259.064102][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  259.265884][ T9748] netlink: 'syz.2.1833': attribute type 4 has an invalid length.
[  259.334296][ T9751] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1832'.
[  259.824589][ T9769] hub 6-0:1.0: USB hub found
[  259.829424][ T9769] hub 6-0:1.0: 8 ports detected
[  259.893692][   T29] kauditd_printk_skb: 133 callbacks suppressed
[  259.893707][   T29] audit: type=1326 audit(2000000208.013:6881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9772 comm="syz.4.1841" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc399f5e929 code=0x0
[  259.948962][ T9776] loop4: detected capacity change from 0 to 1024
[  260.018152][ T9776] EXT4-fs: inline encryption not supported
[  260.037906][ T9776] EXT4-fs: Ignoring removed orlov option
[  260.043665][ T9776] ext4: Unknown parameter 'appraise'
[  260.060301][ T9776] loop4: detected capacity change from 0 to 1024
[  260.083399][ T9776] EXT4-fs: Ignoring removed orlov option
[  260.095185][ T9776] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  260.126639][ T9781] loop3: detected capacity change from 0 to 512
[  260.133393][ T9781] EXT4-fs: Ignoring removed nobh option
[  260.147875][ T9781] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  260.163690][   T29] audit: type=1326 audit(2000000208.283:6882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9784 comm="syz.1.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  260.166804][ T9781] EXT4-fs error (device loop3): ext4_lookup:1787: inode #15: comm syz.3.1844: iget: bad i_size value: 15393162788874
[  260.223647][   T29] audit: type=1326 audit(2000000208.283:6883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9784 comm="syz.1.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  260.247249][   T29] audit: type=1326 audit(2000000208.283:6884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9784 comm="syz.1.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  260.270759][   T29] audit: type=1326 audit(2000000208.283:6885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9784 comm="syz.1.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  260.294264][   T29] audit: type=1326 audit(2000000208.283:6886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9784 comm="syz.1.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  260.317850][   T29] audit: type=1326 audit(2000000208.283:6887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9784 comm="syz.1.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=149 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  260.376102][ T9790] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1846'.
[  260.412098][   T29] audit: type=1326 audit(2000000208.523:6888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9784 comm="syz.1.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  260.435711][   T29] audit: type=1326 audit(2000000208.523:6889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9784 comm="syz.1.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  260.511983][   T29] audit: type=1326 audit(2000000208.533:6890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9784 comm="syz.1.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f683dc3e929 code=0x7ffc0000
[  260.647525][ T9788] ==================================================================
[  260.655770][ T9788] BUG: KCSAN: data-race in generic_buffers_fsync_noflush / writeback_single_inode
[  260.665015][ T9788] 
[  260.667352][ T9788] write to 0xffff88812a4ba8b8 of 4 bytes by task 9786 on cpu 1:
[  260.675040][ T9788]  writeback_single_inode+0x14a/0x3e0
[  260.680440][ T9788]  sync_inode_metadata+0x5b/0x90
[  260.685402][ T9788]  generic_buffers_fsync_noflush+0xd9/0x120
[  260.691340][ T9788]  ext4_sync_file+0x1ab/0x690
[  260.696044][ T9788]  vfs_fsync_range+0x10d/0x130
[  260.700826][ T9788]  ext4_buffered_write_iter+0x34f/0x3c0
[  260.706395][ T9788]  ext4_file_write_iter+0x383/0xf00
[  260.711617][ T9788]  iter_file_splice_write+0x5f2/0x970
[  260.717020][ T9788]  direct_splice_actor+0x156/0x2a0
[  260.722159][ T9788]  splice_direct_to_actor+0x312/0x680
[  260.727564][ T9788]  do_splice_direct+0xda/0x150
[  260.732367][ T9788]  do_sendfile+0x380/0x650
[  260.736890][ T9788]  __x64_sys_sendfile64+0x105/0x150
[  260.742196][ T9788]  x64_sys_call+0xb39/0x2fb0
[  260.746808][ T9788]  do_syscall_64+0xd2/0x200
[  260.751341][ T9788]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.757262][ T9788] 
[  260.759618][ T9788] read to 0xffff88812a4ba8b8 of 4 bytes by task 9788 on cpu 0:
[  260.767176][ T9788]  generic_buffers_fsync_noflush+0x80/0x120
[  260.773101][ T9788]  ext4_sync_file+0x1ab/0x690
[  260.777802][ T9788]  vfs_fsync_range+0x10d/0x130
[  260.782580][ T9788]  ext4_buffered_write_iter+0x34f/0x3c0
[  260.788167][ T9788]  ext4_file_write_iter+0x383/0xf00
[  260.793388][ T9788]  iter_file_splice_write+0x5f2/0x970
[  260.798789][ T9788]  direct_splice_actor+0x156/0x2a0
[  260.803946][ T9788]  splice_direct_to_actor+0x312/0x680
[  260.809383][ T9788]  do_splice_direct+0xda/0x150
[  260.814175][ T9788]  do_sendfile+0x380/0x650
[  260.818611][ T9788]  __x64_sys_sendfile64+0x105/0x150
[  260.823844][ T9788]  x64_sys_call+0xb39/0x2fb0
[  260.828452][ T9788]  do_syscall_64+0xd2/0x200
[  260.832972][ T9788]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.838886][ T9788] 
[  260.841220][ T9788] value changed: 0x00000020 -> 0x00000002
[  260.846950][ T9788] 
[  260.849279][ T9788] Reported by Kernel Concurrency Sanitizer on:
[  260.855448][ T9788] CPU: 0 UID: 0 PID: 9788 Comm: syz.4.1841 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[  260.867878][ T9788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  260.877948][ T9788] ==================================================================
[  261.056619][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  261.543084][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.