last executing test programs:

5m37.388786109s ago: executing program 1 (id=617):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r3=>0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000900)={&(0x7f0000000380)='kmem_cache_free\x00'}, 0x18)
sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010026bd70003c0200000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
write$nci(r0, &(0x7f0000001800)=ANY=[@ANYBLOB="7240082b0102020681055a03997713fa06"], 0x16)
write$nci(r0, &(0x7f0000000380)=ANY=[@ANYBLOB="4002040102cd"], 0x7)

5m36.452902357s ago: executing program 1 (id=618):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x24, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000240), 0x48301)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, 0x0)
close_range(r1, r1, 0x0)

5m36.280845161s ago: executing program 1 (id=621):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000660000000000"], 0x0, 0x7ff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_open_dev$evdev(0x0, 0x2, 0x800)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x0, r2, 0x0, 0x4, 0x0)
r3 = syz_pidfd_open(r2, 0x0)
pidfd_send_signal(r3, 0x2, 0x0, 0x0)

5m35.901735418s ago: executing program 1 (id=624):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000059c0)='./bus\x00', 0x1400e, &(0x7f0000000100)={[{@quota}]}, 0x1, 0x441, &(0x7f00000009c0)="$eJzs28tvG8UfAPDvrp3219cvpiqPPoBAQVQ8kiYtpQcuIJA4gIQEh3IMSVqVug1qgkSrCgpC5YgqcUcckfgLOMEFASckrnBHlSrUSwsno7V3E8exncQ4ccGfj7TJzO5EM1/vjD2zEwcwtMayH0nE7oj4NSJGG9mVBcYav+7cujLz560rM0nUam/8kdTL3b51ZaYoWvzdriJTjkg/SeJgm3oXLl0+N12tzl3M8xOL59+dWLh0+Zmz56fPzJ2ZuzB18uTxY5PPnZh6ti9xZnHdPvDB/KH9r7x1/bWZU9ff/vHrpIi/JY4+Get28fFarc/VDdaepnRSHmBD2JBSY5jGSH38j0Yplm/eaLz88UAbB2yqWq1Wu6/z5as14D8siUG3ABiM4oM+W/8WxxZNPe4KN19oLICyuO/kR+NKOdK8zEjL+rafxiLi1NW/vsiO2JznEAAAK3ybzX+ebjf/S6P5udD/8z2USkTcExF7I+JEROyLiHsj6mXvj4gHNlh/6ybJ6vlPeqOnwNYpm/89n+9trZz/FbO/qJTy3J56/CPJ6bPVuaP5a3IkRrZn+ckudXz30i+fdbrWPP/Ljqz+Yi6Yt+NGeXufgm3j5kcRB8rt4k+WdgKSiNgfEQd6rOPsk18d6nRt7fi76MM+U+3LiCca9/9qtMRfSLrvT078L6pzRyeKXrHaTz9fe71T/euKP/nncXaS3f+dEVF0sdXx76kkzfu1Cxuv49pvn3Zc0/TS/2enF6e3JW+uOPf+9OLixcmIbcmr9Xyl+fxUS7mp5fJZ/EcOtx//e2P5lTgYEVknfjAiHoqIh/O2PxIRj0bE4S7x//DiY+/0Hv/myuKfbfv+t9TpWu7/cmJbtJ5pnyid+/6bFZVWNhJ/dv+P11NH8jPZ/V8rrvW0q7feDAAAAP8+aUTsjiQdX0qn6fh443/498XOtDq/sPjU6fn3Lsw2viNQiZG0eNI12vQ8dDJf1hf5sZb8sfy58eelHfX8+Mx8dXbQwcOQ29Vh/Gd+Lw26dcCm830tGF7GPwwv4x+Gl/EPw6vN+N8xiHYAW6/d5/+HA2gHsPVaxr9tPxgi1v8wvMrW+zC0fP7DUFrYEWt/SV5CYlUi0ruiGRI9JtKI6FZm0O9MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/fF3AAAA//+edt38")
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000280)={[{@delalloc}, {@data_err_abort}, {@init_itable_val={'init_itable', 0x3d, 0x3}}, {@inlinecrypt}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x58)
open(&(0x7f0000000200)='./bus\x00', 0x14507e, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000400)='./bus\x00', 0xc40, 0x0)
ioctl$BLKROSET(r1, 0x125d, &(0x7f0000000080)=0x3f)
copy_file_range(r0, 0x0, r0, &(0x7f00000004c0)=0xae8, 0x863, 0x0)

5m35.460095247s ago: executing program 1 (id=627):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r3=>0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000900)={&(0x7f0000000380)='kmem_cache_free\x00'}, 0x18)
sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010026bd70003c0200000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
write$nci(r0, &(0x7f0000001800)=ANY=[@ANYBLOB="7240082b0102020681055a03997713fa06"], 0x16)
write$nci(r0, &(0x7f0000000380)=ANY=[@ANYBLOB="4002040102cd"], 0x7)

5m33.696325881s ago: executing program 1 (id=631):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000004000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r0}, 0x18)
pipe2$9p(&(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x4800)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x105042, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000100), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}})
splice(r1, 0x0, r3, 0x0, 0x1fffffffffff, 0x0)

5m33.173803492s ago: executing program 32 (id=631):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000004000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r0}, 0x18)
pipe2$9p(&(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x4800)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x105042, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000100), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}})
splice(r1, 0x0, r3, 0x0, 0x1fffffffffff, 0x0)

4m46.047533166s ago: executing program 2 (id=868):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="380000006c0015000000d9fece23b82000000000", @ANYRES32=r1, @ANYBLOB="0000800000000000180034800500"], 0x38}, 0x1, 0x300}, 0x0)

4m45.8587028s ago: executing program 2 (id=870):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000004c0)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffd}]})
munlockall()

4m45.652395954s ago: executing program 2 (id=871):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
setsockopt$IP_VS_SO_SET_ZERO(r3, 0x0, 0x48f, &(0x7f0000000240)={0x32, @local, 0x4e21, 0x4, 'lc\x00', 0x11, 0xe, 0x8}, 0x2c)

4m44.32346844s ago: executing program 2 (id=875):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000059c0)='./bus\x00', 0x1400e, &(0x7f0000000100)={[{@quota}]}, 0x1, 0x441, &(0x7f00000009c0)="$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")
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000280)={[{@delalloc}, {@data_err_abort}, {@init_itable_val={'init_itable', 0x3d, 0x3}}, {@inlinecrypt}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x58)
open(&(0x7f0000000200)='./bus\x00', 0x14507e, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
ioctl$BLKROSET(0xffffffffffffffff, 0x125d, &(0x7f0000000080)=0x3f)
copy_file_range(r0, 0x0, r0, &(0x7f00000004c0)=0xae8, 0x863, 0x0)

4m42.910171638s ago: executing program 2 (id=878):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="380000006c0015000000d9fece23b82000000000", @ANYBLOB="000080000000000018003480050035"], 0x38}, 0x1, 0x300}, 0x0)

4m37.22844601s ago: executing program 2 (id=886):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r1, <r2=>0xffffffffffffffff}, 0x0, &(0x7f0000000280)}, 0x20)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000280)={'pim6reg1\x00', 0x2})
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
ioctl$BLKGETDISKSEQ(r2, 0x80081280, &(0x7f0000000000))
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r6}, &(0x7f0000000040), &(0x7f0000000280)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @broadcast})

4m36.586465112s ago: executing program 33 (id=886):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r1, <r2=>0xffffffffffffffff}, 0x0, &(0x7f0000000280)}, 0x20)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000280)={'pim6reg1\x00', 0x2})
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
ioctl$BLKGETDISKSEQ(r2, 0x80081280, &(0x7f0000000000))
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r6}, &(0x7f0000000040), &(0x7f0000000280)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @broadcast})

4m36.581502142s ago: executing program 0 (id=888):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2008002, &(0x7f0000000400)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1000}}, {@nodiscard}, {@quota}]}, 0x1, 0x56f, &(0x7f00000004c0)="$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")
r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x142)
fsetxattr$system_posix_acl(r0, &(0x7f0000000280)='system.posix_acl_default\x00', &(0x7f00000001c0)={{}, {0x1, 0x5}, [], {0x4, 0x3}, [{0x8, 0x2}], {0x10, 0x6}, {0x20, 0x1}}, 0x2c, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)

4m36.381393696s ago: executing program 0 (id=891):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r3)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r5, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmsg$inet(r8, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r7, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r9=>0xffffffffffffffff})
recvmsg$unix(r9, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010028bd7000070000000200000008000100", @ANYRES32=r1], 0x1c}, 0x1, 0x0, 0x0, 0x40089}, 0x8004)
r10 = socket$nl_xfrm(0x10, 0x3, 0x6)
write$nci(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="414601", @ANYRES8=r10], 0x4)

4m35.091952671s ago: executing program 0 (id=893):
r0 = openat$uhid(0xffffffffffffff9c, 0x0, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x8, 0xf9, 0x7ffc1ffb}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000b00)='kmem_cache_free\x00', r1, 0x0, 0x1034}, 0x18)
fsetxattr$trusted_overlay_nlink(r0, 0x0, 0x0, 0x0, 0x3)

4m34.64097633s ago: executing program 0 (id=895):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000400)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001b40)='sched_switch\x00'}, 0x10)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=ANY=[@ANYBLOB="5001000010001307fefffffffcdbdf25e000000100000000000000000000000020010000000000000000000000000001000000004e210002020000206c000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="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"], 0x150}, 0x1, 0x0, 0x0, 0x880}, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000800)='./file0\x00', &(0x7f0000000840), 0x6000)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file2\x00', 0x10050, &(0x7f0000000840), 0x3, 0x52c, &(0x7f0000000880)="$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")

4m33.529290362s ago: executing program 0 (id=898):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2008002, &(0x7f0000000400)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1000}}, {@nodiscard}, {@quota}]}, 0x1, 0x56f, &(0x7f00000004c0)="$eJzs3c9vHFcdAPDvjH82SesEeoAKSIBCQFHW8aaNql5aLiBUVUJUHBCH1Ngby2Q3G7LrUptIuH8DSCBxgj+BAxIHpJ44wIkjEgdAlANSgYgqRuph0MyO1669Jou93m12Px9pMj/ezHzf283Me367Oy+AiXUpIrYjYjYiXo+IhXJ7Uk7xcmfK93v44P7KzoP7K0lk2Wv/TIr0fFtxwHy5f0ScLc85HxFf/0rEt5PDcVubW7eX6/XavXJ9sd24u9ja3Lq63lheq63V7lSrN5ZuXHvh+vPVgZX1YuMX7355/ZVv/PpXn3zn99tf/H6erXNlWrccA9Yp+kw3Tm46Il45jWAjMFXOZ0ecD44njYiPRMRniut/IaaK/50AwDjLsoXIFvavAwDjLi36wJK0EhFpWjYCKp0+vKfjTFpvttpXbjU37qx2+srOx0x6a71eu3Zh7o/fLXaeSfL1pSKtSC/WqwfWr0fEhYj40dwTxXplpVlfHU2TBwAm3tn99X9EvDeXppVKX4f2+FQPAHhszI86AwDA0Kn/AWDyqP8BYPL0Uf+XH/Zvn3peAIDh6O/vf9/3A4Bxov8fACaP+h8AJsrXXn01n7Kd8vnXq29sbtxuvnF1tda6XWlsrFRWmvfuVtaazbXimT2NR52v3mzeXXouNt5cbNda7cXW5tbNRnPjTvtm8Vzvm7WZoZQKAPhfLlx8+w9JRGy/+EQxxb6xHNTVMN7SAe4FPF6mTnKwBgI81oz2BZOrryq8aCT89tTzAoxGzx/3zPdc/KCf/B9BfM8IPlQuf7z//n9jPMN4OdCz/342qowAQ3e8/v+XBp4PYPiO3f//58HmAxi+LEsOjvk/200CAMbSCb7Cl/1gUI0QYKQe9XDPgXz+DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGPmXER8J5K0UowFnub/ppVKxJMRcT5mklvr9dq1iHgqLkbEzFy+vrR78HujzTsAcFzp35Ny/K/LC8+eO5g6m/xnrphHxPd++tqP31xut+8t5dv/1d0+tzt8WHXvuBOMKwgA9O+v/exU1N/Vcr60t/3hg/sru9Mp5vGQd7/UHXx0ZefB/WLqpExHlmVZxHzRljjz7ySmy2PmI+KZiJgaQPzttyLiY73KnxR9I+fLkU/3x48y9pNDjZ9+IH5apHXm+cv30QHkBSbN2/n95+Ve118al4p57+t/vrhDnVxx/5uP2L337eyLP11GmuoRP7/mL/Ub47nffPXQxmyhk/ZWxDPTveIn3fjJEfGf7TP+nz7xqR++dERa9rOIy9E7/v5Yi+3G3cXW5tbV9cbyWm2tdqdavbF049oL15+vLhZ91Iu7PdWH/ePFK08dlbe8/GeOiN95588eKP9s99jP9Vn+n7//+rc+vbc6dzD+Fz7b+/1/uojY+/XP68TP9xl/+cwvjxy+O4+/ekT5H/X+X+kz/jt/21rtc1cAYAham1u3l+v12r0TLeR/hQ7iPIcW8iz2t/Nuc/FkQf8SxcLey5JEEsc+4UzvpLwx1tfhp/WqnvrCdLetONgzfzM/45CLkw68FMdZiPPlwsNhBR3dPQkYjr2LPiJ+N+rcAAAAAAAAAAAAAAAAvQzjN0yjLiMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADj678BAAD//2PAxWs=")
r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x142)
fsetxattr$system_posix_acl(r0, &(0x7f0000000280)='system.posix_acl_default\x00', &(0x7f00000001c0)={{}, {0x1, 0x5}, [], {0x4, 0x3}, [{0x8, 0x2}], {0x10, 0x6}, {0x20, 0x1}}, 0x2c, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)

4m31.064598701s ago: executing program 0 (id=900):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0x0, 0x0, 0x0, 0x72, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000040)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='rss_stat\x00', r1}, 0x10)
syz_clone(0x42000000, 0x0, 0x0, 0x0, 0x0, 0x0)

4m15.210967412s ago: executing program 34 (id=900):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0x0, 0x0, 0x0, 0x72, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000040)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='rss_stat\x00', r1}, 0x10)
syz_clone(0x42000000, 0x0, 0x0, 0x0, 0x0, 0x0)

2m15.095287043s ago: executing program 5 (id=1430):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x149a82, 0x0)
write$cgroup_int(r2, &(0x7f0000000000)=0xfe8e, 0x12)

2m14.72841658s ago: executing program 5 (id=1435):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18000, &(0x7f0000000240)=ANY=[@ANYRES32=0x0, @ANYRESOCT, @ANYRES16=0x0, @ANYRES32, @ANYBLOB="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", @ANYRESOCT], 0x8, 0x2f6, &(0x7f0000000880)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
munlock(&(0x7f00006d2000/0x4000)=nil, 0x4000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
fdatasync(r0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

2m13.604576842s ago: executing program 5 (id=1438):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000040), 0x10)
sendmsg$netlink(r0, 0x0, 0x4001)

2m13.401378987s ago: executing program 5 (id=1439):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)

2m13.163643921s ago: executing program 5 (id=1441):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x3, &(0x7f0000000000)=0x1, 0x4)
bind$inet6(r0, &(0x7f0000000280)={0xa, 0x4e22, 0xd, @loopback, 0x6}, 0x1c)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0x23, @loopback, 0x23}, 0x1c)
r1 = dup(r0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000400), r1)

2m12.71075116s ago: executing program 5 (id=1446):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
bind$packet(r0, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x14)
socket$packet(0x11, 0xa, 0x300)
syz_emit_ethernet(0x83, &(0x7f0000000240)=ANY=[], 0x0)

2m12.358323637s ago: executing program 35 (id=1446):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
bind$packet(r0, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x14)
socket$packet(0x11, 0xa, 0x300)
syz_emit_ethernet(0x83, &(0x7f0000000240)=ANY=[], 0x0)

23.319420593s ago: executing program 6 (id=2021):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x20080e, &(0x7f0000000540)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@journal_dev={'journal_dev', 0x3d, 0x3}}, {@block_validity}, {@lazytime}, {@nombcache}, {@usrjquota}]}, 0x3, 0x446, &(0x7f0000000ec0)="$eJzs28tvG8UfAPDv2kn66+uXUJVHH0CgIMoradJSeuACAokDSEhwKMeQuFWp26AmSLSqICBUjqgSJy6IIxJ/ASe4IOCExBXuqFKFcmnhZLT2bmI7thunTlzqz0dae2Z3nJmvd8ee2YkDGFjj6UMSsSsifo+I0Vq2scB47enm8uXZv5cvzyZRqbz5V1Itd2P58mxeNH/dzjwzFFH4NIkDLepduHgpLVG6kOUnF8+9N7lw8dKzZ87NnC6dLp2fPnHi2NGp549PP9eTONO4buz/cP7gvlffvvr67Mmr7/z8bZLH3xRHj4x3Ovh4pdLj6vqjkD3vrtuXDPWpMXStWOumMVzt/6NRjNWTNxqvfNLXxgGbqlKpVO5rf3ipAtzFkuh3C4D+yL/o0/lvvm3R0OOOcP3F2gQojftmttWODK3MbYeb5re9NB4RJ5f++SrdYnPuQwAANPg+Hf8802r8V4j6+0L/z9ZQxiLinojYExHHI2JvRNwbUS17f0Q80GX9zYska8c/hWsbCmyd0vHfC9naVuP4Lx/9xVgxy+2uxj+cnDpTLh3J3pPDMbwtzU91qOOHl3/7vN2x+vFfuqX152PBrB3XhrY1vmZuZnHmdmKud/3jiP1DreJPVlYCkojYFxH7N1jHmae+Odju2K3j76AH60yVryOeqJ3/pWiKP5d0Xp+c/F+US0cm86tirV9+vfJGu/pvK/4eSM//jpbX/0r8Y0ltvfbsTLlcurDQzV//8sn08cofn7Wd02z0+h9J3mrY98HM4uKFqYiR5LVao+v3TzeVm14tn8Z/+FDr/r8nVt+JAxGRXsQPRsRDEfFw1vZHIuLRiDjU4V346aXH3t14/JsrjX+uq/O/mhiJ5j2tE8WzP37XUOlYN/Gn5/9YNXU427Oez7/1tKvbqxkAAAD+qwoRsSuSwsRKulCYmKj9D//e2FEozy8sPn1q/v3zc7XfCIzFcCG/0zVadz90KpvW5/nppvzR7L7xF8Xt1fzE7Hx5rt/Bw4Db2ab/p/4s9rt1wKbzey0YXPo/DC79HwaX/g+Dq0X/396PdgBbr9X3/0d9aAew9Zr6v2U/GCDm/zC4NtL/fWbA3aFjXx7ZunYAW2phe9z6R/ISEmsSUbgjmiGxSYl+fzIBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD0xr8BAAD//4kK5gE=")
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r1, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc1}})
lsetxattr$system_posix_acl(&(0x7f0000000280)='./file0\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f00000007c0)=ANY=[@ANYBLOB], 0x24, 0x0)

23.052580178s ago: executing program 7 (id=2023):
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000006c0)='ns/uts\x00')
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r0, 0x8004b706, 0x0)

22.961721109s ago: executing program 7 (id=2024):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r3)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r5, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmsg$inet(r8, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x128}, 0x0)
recvmsg$unix(r7, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmsg$inet(r10, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r9, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010028bd7000070000000200000008000100", @ANYRES32=r1], 0x1c}, 0x1, 0x0, 0x0, 0x40089}, 0x8004)
r11 = socket$nl_xfrm(0x10, 0x3, 0x6)
write$nci(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="414601", @ANYRES8=r11], 0x4)

22.784323763s ago: executing program 6 (id=2027):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r0, &(0x7f00000001c0), 0x10)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r2=>0x0})
connect$can_bcm(r1, &(0x7f00000000c0)={0x1d, r2}, 0x10)
sendmsg$can_bcm(r1, 0x0, 0x20000000)
recvmmsg(r0, &(0x7f0000003d40)=[{{0x0, 0x0, &(0x7f0000000d00)=[{&(0x7f0000000180)=""/12, 0xc}, {&(0x7f0000000200)=""/5, 0x5}], 0x2}, 0x5}], 0x1, 0x600100a2, 0x0)

21.45385853s ago: executing program 6 (id=2033):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000440)={0x900, 0x0, &(0x7f0000000400)={&(0x7f0000000240)={0x2, 0xa, 0xfc, 0x0, 0x2, 0x0, 0x70bd2b, 0x25dfdbff}, 0x10}}, 0x40408c0)

21.44760851s ago: executing program 7 (id=2034):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='kfree\x00', r0}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r2=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x1, 0xb, 0x100005, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', r2, 0xffffffffffffffff, 0x0, 0x2}, 0x50)

21.200392645s ago: executing program 6 (id=2037):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="05000000050000000200000004"], 0x48)
close(r0)
bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@base={0x9, 0x6, 0x8000, 0x4}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000000)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b703000000000000850000007000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000300)='tlb_flush\x00', r1}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x1, &(0x7f0000000000)=[{0x6}]}, 0x10)
sendmmsg$inet(r2, &(0x7f0000002c40)=[{{0x0, 0x0, &(0x7f0000000e80)=[{&(0x7f0000000a80)="2a73ed35", 0x732a}], 0x1}}], 0x400000000000292, 0x0)

21.115829817s ago: executing program 7 (id=2038):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000100)=0xff)
ioctl$TCSETSW2(r0, 0x402c542c, &(0x7f0000000040)={0xfffffff8, 0x401, 0xfffffffd, 0xc4cf, 0x7, "0441920887e87fcb367800000800080100", 0x4, 0x1ff})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000008000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/kernel/warn_count', 0x80100, 0x20)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6tnl0\x00', 0x210})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="580000000008010200000000000000000200ffff0600024022eb000005000300ffff00000900010073797a3000000000260004"], 0x58}, 0x1, 0x0, 0x0, 0x20000015}, 0x20008000)

20.844064642s ago: executing program 7 (id=2039):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000a00)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000780)='GPL\x00', 0x9, 0x0, 0x0, 0x41100, 0x2e, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r1, 0x0, 0xf9}, 0x18)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='./file0/file0\x00', 0x89901)
umount2(&(0x7f0000000280)='./file0/../file0\x00', 0xa)

20.548702698s ago: executing program 6 (id=2040):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x545, &(0x7f0000001300)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x8042, 0x0)
quotactl_fd$Q_SETINFO(r0, 0xffffffff80000601, 0x0, 0x0)

20.361792782s ago: executing program 7 (id=2042):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r3)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r5, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmsg$inet(r8, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x128}, 0x0)
recvmsg$unix(r7, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmsg$inet(r10, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r9, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010028bd7000070000000200000008000100", @ANYRES32=r1], 0x1c}, 0x1, 0x0, 0x0, 0x40089}, 0x8004)
r11 = socket$nl_xfrm(0x10, 0x3, 0x6)
write$nci(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="414601", @ANYRES8=r11], 0x4)

20.041350268s ago: executing program 6 (id=2044):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0xffffffffffffffff}, 0x18)
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x2642, 0x0)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000040)="93d90400000300", 0x7}, {&(0x7f0000000380)="17f03a5900039e", 0x7}], 0x2)

17.364580601s ago: executing program 3 (id=2050):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000a00)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000780)='GPL\x00', 0x9, 0x0, 0x0, 0x41100, 0x2e, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r1, 0x0, 0xf9}, 0x18)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='./file0/file0\x00', 0x89901)
umount2(&(0x7f0000000280)='./file0/../file0\x00', 0xa)

17.301978633s ago: executing program 3 (id=2051):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x1c, 0x2, 0x3, 0x3, 0x0, 0x0, {0x0, 0x0, 0x10}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1}}]}, 0x1c}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth0_vlan\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0x3, 0x6}, {0x0, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x48080}, 0x0)
write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000080)={0x39, 0x75, 0x2, {0x2e, "ef971e88208aa31c6286afa88c58debb997034c7e2baccc21799bd1e0486f8770ed2b93b8d2a2db9405970ea8489"}}, 0x39)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b00000005000000010001000900000001"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
socket$packet(0x11, 0x2, 0x300)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r3, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)

16.592626477s ago: executing program 3 (id=2053):
r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0xa82, 0x0)
write$cgroup_int(r0, &(0x7f0000000040)=0x900, 0x12)

16.305117623s ago: executing program 3 (id=2054):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000580)=ANY=[], 0x0, 0x1, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x4000000)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3014850, &(0x7f0000000140)={[{@acl}, {@barrier_val={'barrier', 0x3d, 0x1003}}, {@errors_remount}, {@noauto_da_alloc}, {@dioread_lock}]}, 0x1, 0x4e4, &(0x7f0000002d40)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440), &(0x7f0000000540)=ANY=[], 0x9a, 0x0)

16.090584048s ago: executing program 3 (id=2055):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r0 = mq_open(&(0x7f000084dff0)='\xa1sxt\x1a\x00\x00\x00\x00\x00\x00\x00\x01\x88\xbdd', 0x6e93ebbbcc0884f2, 0x100, &(0x7f0000000300)={0x0, 0x1, 0x3})
writev(0xffffffffffffffff, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0x200000000}, 0x18)
socket$nl_netfilter(0x10, 0x3, 0xc)
mq_timedsend(r0, 0x0, 0x0, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00'}, 0x90)
socket$netlink(0x10, 0x3, 0x0)
mq_timedsend(r0, 0x0, 0x0, 0x0, 0x0)
mq_timedreceive(r0, &(0x7f0000000180)=""/204, 0xcc, 0x0, 0x0)

15.822522293s ago: executing program 3 (id=2057):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r2)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x1c, r3, 0x1, 0x123, 0x234, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r1}]}, 0x1c}}, 0x0)

15.580633317s ago: executing program 4 (id=2059):
r0 = getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{}, 0x0, 0x0}, 0x20)
socket$nl_audit(0x10, 0x3, 0x9)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002000000da16c16ad803f1f805000600200000000a00060000000000ff0000009061ca2b00001fffff0001000003f1dc7f7c6e7c0200010000000000004000020000000005000500000000000a"], 0x80}}, 0x0)

15.327481722s ago: executing program 4 (id=2060):
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1b, 0x3, &(0x7f0000000580)=@framed={{0x18, 0x5}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000100)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
mount$cgroup(0x0, &(0x7f0000000000)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000040), 0x1000000, &(0x7f0000000080)={[{@clone_children}, {@subsystem='blkio'}, {@noprefix}, {@noprefix}, {}, {@name={'name', 0x3d, '@)\\*[,+{%\xa9(%$'}}, {@name={'name', 0x3d, ':{*'}}, {@subsystem='io'}], [{@seclabel}]})

15.263511763s ago: executing program 4 (id=2061):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000a40)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@norecovery}, {@resuid}, {@quota}]}, 0x8, 0x445, &(0x7f0000001dc0)="$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")
open_tree(0xffffffffffffff9c, &(0x7f0000000e00)='./file0\x00', 0x9001)
clock_gettime(0xa, 0x0)

15.112609207s ago: executing program 4 (id=2062):
r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0xa82, 0x0)
write$cgroup_int(r0, &(0x7f0000000040)=0x900, 0x12)

15.078352838s ago: executing program 4 (id=2063):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=@newsa={0x154, 0x10, 0x1, 0x0, 0x0, {{@in6=@private1, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, {@in=@broadcast, 0x0, 0x32}, @in6=@private1, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {}, {}, 0x0, 0x0, 0x2, 0x3, 0x0, 0xcd}, [@algo_crypt={0x48, 0x2, {{'cbc(aes)\x00'}}}, @replay_esn_val={0x1c}]}, 0x154}}, 0x0)

15.026779378s ago: executing program 4 (id=2064):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r1 = socket(0x10, 0x803, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000340), 0x302, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=@newtfilter={0x104, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {0xe, 0x7}, {}, {0x7}}, [@filter_kind_options=@f_u32={{0x8}, {0xd8, 0x2, [@TCA_U32_SEL={0x94, 0x5, {0x7, 0xef, 0x8, 0x8, 0x5, 0x809, 0x7, 0x0, [{0x1000, 0x4, 0x401, 0x6}, {0x8, 0x7, 0x1008, 0x5}, {0xfffffff9, 0x243, 0x7ffd, 0x6}, {0x7fde, 0x40, 0x51, 0x3ff}, {0x5, 0xb, 0x100008, 0x42}, {0x6, 0x4, 0x12c5, 0x8}, {0x317, 0x0, 0x0, 0x8001}, {0x2, 0x1800004, 0xa525}]}}, @TCA_U32_POLICE={0x40, 0x6, [@TCA_POLICE_TBF={0x3c, 0x1, {0x28bf, 0x20000001, 0xebb, 0x1, 0x2, {0x3, 0x2, 0x3, 0x2, 0x6}, {0xf3, 0x1, 0xfffb, 0x6f4, 0x6, 0x6}, 0x6, 0x0, 0xfafd}}]}]}}]}, 0x104}, 0x1, 0x0, 0x0, 0x80}, 0xc040)
close_range(r0, 0xffffffffffffffff, 0x400000000000000)

4.496360929s ago: executing program 36 (id=2044):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0xffffffffffffffff}, 0x18)
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x2642, 0x0)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000040)="93d90400000300", 0x7}, {&(0x7f0000000380)="17f03a5900039e", 0x7}], 0x2)

4.439465861s ago: executing program 37 (id=2042):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r3)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r5, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmsg$inet(r8, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x128}, 0x0)
recvmsg$unix(r7, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmsg$inet(r10, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r9, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010028bd7000070000000200000008000100", @ANYRES32=r1], 0x1c}, 0x1, 0x0, 0x0, 0x40089}, 0x8004)
r11 = socket$nl_xfrm(0x10, 0x3, 0x6)
write$nci(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="414601", @ANYRES8=r11], 0x4)

500.20906ms ago: executing program 38 (id=2057):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r2)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x1c, r3, 0x1, 0x123, 0x234, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r1}]}, 0x1c}}, 0x0)

0s ago: executing program 39 (id=2064):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r1 = socket(0x10, 0x803, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000340), 0x302, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=@newtfilter={0x104, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {0xe, 0x7}, {}, {0x7}}, [@filter_kind_options=@f_u32={{0x8}, {0xd8, 0x2, [@TCA_U32_SEL={0x94, 0x5, {0x7, 0xef, 0x8, 0x8, 0x5, 0x809, 0x7, 0x0, [{0x1000, 0x4, 0x401, 0x6}, {0x8, 0x7, 0x1008, 0x5}, {0xfffffff9, 0x243, 0x7ffd, 0x6}, {0x7fde, 0x40, 0x51, 0x3ff}, {0x5, 0xb, 0x100008, 0x42}, {0x6, 0x4, 0x12c5, 0x8}, {0x317, 0x0, 0x0, 0x8001}, {0x2, 0x1800004, 0xa525}]}}, @TCA_U32_POLICE={0x40, 0x6, [@TCA_POLICE_TBF={0x3c, 0x1, {0x28bf, 0x20000001, 0xebb, 0x1, 0x2, {0x3, 0x2, 0x3, 0x2, 0x6}, {0xf3, 0x1, 0xfffb, 0x6f4, 0x6, 0x6}, 0x6, 0x0, 0xfafd}}]}]}}]}, 0x104}, 0x1, 0x0, 0x0, 0x80}, 0xc040)
close_range(r0, 0xffffffffffffffff, 0x400000000000000)

kernel console output (not intermixed with test programs):

ngth.
[  439.191962][T10989] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  439.199658][T10979] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4031: comm syz.6.1479: Allocating blocks 385-513 which overlap fs metadata
[  439.201530][T10989] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  439.223842][T10989] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  439.232567][T10989] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  439.257999][T10989] netdevsim netdevsim4 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  439.267244][T10989] netdevsim netdevsim4 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  439.276235][T10989] netdevsim netdevsim4 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  439.285294][T10989] netdevsim netdevsim4 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  439.495695][T10978] EXT4-fs (loop6): pa ffff888078ab02b8: logic 16, phys. 129, len 24
[  439.504130][T10978] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 8
[  440.217454][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  440.224198][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  440.773436][ T5800] Bluetooth: hci1: command tx timeout
[  440.833115][ T9084] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  441.693638][T10897] 8021q: adding VLAN 0 to HW filter on device bond0
[  442.345439][T10897] 8021q: adding VLAN 0 to HW filter on device team0
[  442.357826][T10995] loop6: detected capacity change from 0 to 512
[  442.464574][   T42] bridge0: port 1(bridge_slave_0) entered blocking state
[  442.471733][   T42] bridge0: port 1(bridge_slave_0) entered forwarding state
[  442.507269][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  442.514495][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  442.564919][T10995] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  442.657828][T10995] ext4 filesystem being mounted at /137/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  442.800587][ T9084] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  442.986242][T10897] 8021q: adding VLAN 0 to HW filter on device batadv0
[  443.052301][T11018] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1488'.
[  443.089346][T11018] loop6: detected capacity change from 0 to 1024
[  443.101688][T11018] EXT4-fs: Ignoring removed bh option
[  443.127764][T11018] EXT4-fs: inline encryption not supported
[  443.148148][T11018] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  443.171255][T11018] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #3: block 2: comm syz.6.1488: lblock 2 mapped to illegal pblock 2 (length 1)
[  443.190086][T11018] Quota error (device loop6): qtree_write_dquot: dquota write failed
[  443.198879][T11018] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #3: block 48: comm syz.6.1488: lblock 0 mapped to illegal pblock 48 (length 1)
[  443.213942][T11018] Quota error (device loop6): v2_write_file_info: Can't write info structure
[  443.222901][T11018] EXT4-fs error (device loop6): ext4_acquire_dquot:6940: comm syz.6.1488: Failed to acquire dquot type 0
[  443.240711][T11018] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  443.251630][T11018] EXT4-fs error (device loop6): ext4_evict_inode:252: inode #11: comm syz.6.1488: mark_inode_dirty error
[  443.279176][T11018] EXT4-fs warning (device loop6): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  443.289611][T11018] EXT4-fs (loop6): 1 orphan inode deleted
[  443.300796][T11018] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  443.313676][   T42] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:2: lblock 1 mapped to illegal pblock 1 (length 1)
[  443.331342][   T42] Quota error (device loop6): remove_tree: Can't read quota data block 1
[  443.346757][   T42] EXT4-fs error (device loop6): ext4_release_dquot:6976: comm kworker/u4:2: Failed to release dquot type 0
[  443.354552][T10897] veth0_vlan: entered promiscuous mode
[  443.361647][T11018] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.378271][T10897] veth1_vlan: entered promiscuous mode
[  443.391969][T11018] EXT4-fs error (device loop6): __ext4_get_inode_loc:4483: comm syz.6.1488: Invalid inode table block 1 in block_group 0
[  443.427551][T10897] veth0_macvtap: entered promiscuous mode
[  443.433639][T11018] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  443.447510][T11018] EXT4-fs error (device loop6): ext4_quota_off:7224: inode #3: comm syz.6.1488: mark_inode_dirty error
[  443.471166][T10897] veth1_macvtap: entered promiscuous mode
[  443.502875][T10897] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  443.550601][T10897] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  443.583331][T10897] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  443.613405][T10897] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  443.646925][T10897] batman_adv: batadv0: Interface activated: batadv_slave_0
[  443.672164][   T28] audit: type=1326 audit(1757031569.425:1264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11027 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a71d8ebe9 code=0x7ffc0000
[  443.732807][   T28] audit: type=1326 audit(1757031569.455:1265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11027 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a71d8ebe9 code=0x7ffc0000
[  443.744977][T10897] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  443.785769][   T28] audit: type=1326 audit(1757031569.475:1266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11027 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a71d8ebe9 code=0x7ffc0000
[  443.811759][T10897] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  443.838074][T10897] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  443.841179][   T28] audit: type=1326 audit(1757031569.475:1267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11027 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a71d8ebe9 code=0x7ffc0000
[  443.884081][T10897] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  443.885379][   T28] audit: type=1326 audit(1757031569.475:1268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11027 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a71d8ebe9 code=0x7ffc0000
[  444.035336][   T28] audit: type=1326 audit(1757031569.475:1269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11027 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a71d8ebe9 code=0x7ffc0000
[  444.201212][   T28] audit: type=1326 audit(1757031569.475:1270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11027 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a71d8ebe9 code=0x7ffc0000
[  444.392439][   T28] audit: type=1326 audit(1757031569.475:1271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11027 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a71d8ebe9 code=0x7ffc0000
[  444.536875][   T28] audit: type=1326 audit(1757031569.475:1272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11027 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a71d8ebe9 code=0x7ffc0000
[  444.606447][   T28] audit: type=1326 audit(1757031569.475:1273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11027 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a71d8ebe9 code=0x7ffc0000
[  446.845768][T10897] batman_adv: batadv0: Interface activated: batadv_slave_1
[  446.896007][T10897] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  446.954583][T10897] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  446.963408][T10897] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  446.972290][T10897] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  447.205380][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  447.213218][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  447.303193][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  447.320460][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  447.329666][T11052] loop3: detected capacity change from 0 to 1024
[  447.377790][T11052] EXT4-fs: Ignoring removed bh option
[  447.395328][T11056] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1499'.
[  447.432114][T11052] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  447.517515][T11060] loop6: detected capacity change from 0 to 1024
[  447.524846][T11060] EXT4-fs: Ignoring removed bh option
[  447.545802][T11060] EXT4-fs: inline encryption not supported
[  447.570034][T11060] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  447.593747][T11060] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #3: block 2: comm syz.6.1499: lblock 2 mapped to illegal pblock 2 (length 1)
[  447.620875][T11060] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #3: block 48: comm syz.6.1499: lblock 0 mapped to illegal pblock 48 (length 1)
[  447.660881][T11060] EXT4-fs error (device loop6): ext4_acquire_dquot:6940: comm syz.6.1499: Failed to acquire dquot type 0
[  447.678030][T11060] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  447.689138][T11060] EXT4-fs error (device loop6): ext4_evict_inode:252: inode #11: comm syz.6.1499: mark_inode_dirty error
[  447.702877][T11060] EXT4-fs warning (device loop6): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  447.711880][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  447.722410][T11060] EXT4-fs (loop6): 1 orphan inode deleted
[  447.729670][T11060] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  447.754372][  T993] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:5: lblock 1 mapped to illegal pblock 1 (length 1)
[  447.773387][  T993] EXT4-fs error (device loop6): ext4_release_dquot:6976: comm kworker/u4:5: Failed to release dquot type 0
[  447.796288][T11060] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  447.859618][T11060] EXT4-fs error (device loop6): __ext4_get_inode_loc:4483: comm syz.6.1499: Invalid inode table block 1 in block_group 0
[  447.964408][T11060] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  447.978234][T11060] EXT4-fs error (device loop6): ext4_quota_off:7224: inode #3: comm syz.6.1499: mark_inode_dirty error
[  448.274717][T11073] netlink: 34 bytes leftover after parsing attributes in process `syz.3.1504'.
[  448.286738][T11078] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1505'.
[  448.615931][T11090] tipc: Started in network mode
[  448.637731][T11090] tipc: Node identity fffffffa, cluster identity 4711
[  448.656586][T11090] tipc: Node number set to 4294967290
[  448.890980][T11098] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1514'.
[  448.975057][T11098] loop3: detected capacity change from 0 to 1024
[  449.007803][T11098] EXT4-fs: Ignoring removed bh option
[  449.048650][T11098] EXT4-fs: inline encryption not supported
[  449.062663][T11098] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  449.087030][T11101] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1515'.
[  449.097554][T11098] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 2: comm syz.3.1514: lblock 2 mapped to illegal pblock 2 (length 1)
[  449.116891][T11098] __quota_error: 14 callbacks suppressed
[  449.116905][T11098] Quota error (device loop3): qtree_write_dquot: dquota write failed
[  449.152718][T11098] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 48: comm syz.3.1514: lblock 0 mapped to illegal pblock 48 (length 1)
[  449.246954][T11098] Quota error (device loop3): v2_write_file_info: Can't write info structure
[  449.264039][T11098] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.1514: Failed to acquire dquot type 0
[  449.282187][T11098] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  449.299532][T11098] EXT4-fs error (device loop3): ext4_evict_inode:252: inode #11: comm syz.3.1514: mark_inode_dirty error
[  449.351667][T11098] EXT4-fs warning (device loop3): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  449.374600][T11098] EXT4-fs (loop3): 1 orphan inode deleted
[  449.388354][T11098] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  449.406243][   T59] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:4: lblock 1 mapped to illegal pblock 1 (length 1)
[  449.440026][   T59] Quota error (device loop3): remove_tree: Can't read quota data block 1
[  449.460206][   T59] EXT4-fs error (device loop3): ext4_release_dquot:6976: comm kworker/u4:4: Failed to release dquot type 0
[  449.502114][T11098] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  449.524592][T11112] syz.7.1518 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  449.532597][T11098] EXT4-fs error (device loop3): __ext4_get_inode_loc:4483: comm syz.3.1514: Invalid inode table block 1 in block_group 0
[  449.566905][T11098] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  449.602084][T11098] EXT4-fs error (device loop3): ext4_quota_off:7224: inode #3: comm syz.3.1514: mark_inode_dirty error
[  450.294312][T11126] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1524'.
[  450.562641][T11132] loop3: detected capacity change from 0 to 256
[  450.635980][ T7065] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  450.686780][T11134] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1528'.
[  450.811831][T11134] loop7: detected capacity change from 0 to 1024
[  450.851247][T11134] EXT4-fs: Ignoring removed bh option
[  450.885487][T11134] EXT4-fs: inline encryption not supported
[  450.936843][T11134] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  450.982735][T11134] EXT4-fs error (device loop7): ext4_map_blocks:608: inode #3: block 2: comm syz.7.1528: lblock 2 mapped to illegal pblock 2 (length 1)
[  451.023034][T11134] Quota error (device loop7): qtree_write_dquot: dquota write failed
[  451.031706][T11134] EXT4-fs error (device loop7): ext4_map_blocks:608: inode #3: block 48: comm syz.7.1528: lblock 0 mapped to illegal pblock 48 (length 1)
[  451.049151][T11134] Quota error (device loop7): v2_write_file_info: Can't write info structure
[  451.058641][T11134] EXT4-fs error (device loop7): ext4_acquire_dquot:6940: comm syz.7.1528: Failed to acquire dquot type 0
[  451.072927][T11134] EXT4-fs error (device loop7) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  451.097678][T11134] EXT4-fs error (device loop7): ext4_evict_inode:252: inode #11: comm syz.7.1528: mark_inode_dirty error
[  451.148841][T11134] EXT4-fs warning (device loop7): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  451.203705][T11134] EXT4-fs (loop7): 1 orphan inode deleted
[  451.210771][T11134] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  451.269686][   T42] EXT4-fs error (device loop7): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:2: lblock 1 mapped to illegal pblock 1 (length 1)
[  451.295610][   T42] Quota error (device loop7): remove_tree: Can't read quota data block 1
[  451.328777][   T42] EXT4-fs error (device loop7): ext4_release_dquot:6976: comm kworker/u4:2: Failed to release dquot type 0
[  451.362288][T11134] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  451.380886][T11134] EXT4-fs error (device loop7): __ext4_get_inode_loc:4483: comm syz.7.1528: Invalid inode table block 1 in block_group 0
[  451.397821][T11134] EXT4-fs error (device loop7) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  451.416303][T11134] EXT4-fs error (device loop7): ext4_quota_off:7224: inode #3: comm syz.7.1528: mark_inode_dirty error
[  452.936053][T11177] netlink: 24 bytes leftover after parsing attributes in process `syz.7.1548'.
[  453.032042][T11180] loop6: detected capacity change from 0 to 1024
[  453.041664][T11181] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1547'.
[  453.065675][T11180] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  453.109287][T11180] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  453.152019][T11180] EXT4-fs (loop6): orphan cleanup on readonly fs
[  453.186271][T11181] loop4: detected capacity change from 0 to 1024
[  453.187408][   T28] audit: type=1326 audit(1757031578.945:1285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11188 comm="syz.3.1552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a71d8ebe9 code=0x7ffc0000
[  453.221598][   T28] audit: type=1326 audit(1757031578.975:1286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11188 comm="syz.3.1552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a71d8ebe9 code=0x7ffc0000
[  453.244502][   T28] audit: type=1326 audit(1757031578.975:1287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11188 comm="syz.3.1552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a71d8ebe9 code=0x7ffc0000
[  453.247108][T11180] Quota error (device loop6): v2_read_file_info: Can't read info structure
[  453.270952][T11181] EXT4-fs: Ignoring removed bh option
[  453.290841][T11181] EXT4-fs: inline encryption not supported
[  453.297113][T11185] loop7: detected capacity change from 0 to 164
[  453.304090][T11180] EXT4-fs warning (device loop6): ext4_enable_quotas:7175: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix.
[  453.319877][T11180] EXT4-fs (loop6): Cannot turn on quotas: error -5
[  453.327859][T11181] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  453.371513][T11180] EXT4-fs (loop6): 1 truncate cleaned up
[  453.379284][T11180] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  453.411531][T11181] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 2: comm syz.4.1547: lblock 2 mapped to illegal pblock 2 (length 1)
[  453.434524][T11185] ISOFS: unable to read i-node block
[  453.439897][T11185] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  453.465811][ T9084] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  453.489171][T11181] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 48: comm syz.4.1547: lblock 0 mapped to illegal pblock 48 (length 1)
[  453.504544][T11181] EXT4-fs error (device loop4): ext4_acquire_dquot:6940: comm syz.4.1547: Failed to acquire dquot type 0
[  453.530912][T11181] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  453.571179][T11181] EXT4-fs error (device loop4): ext4_evict_inode:252: inode #11: comm syz.4.1547: mark_inode_dirty error
[  453.614670][T11181] EXT4-fs warning (device loop4): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  453.642228][T11181] EXT4-fs (loop4): 1 orphan inode deleted
[  453.654806][   T11] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:0: lblock 1 mapped to illegal pblock 1 (length 1)
[  453.684752][T11181] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  453.703953][   T11] EXT4-fs error (device loop4): ext4_release_dquot:6976: comm kworker/u4:0: Failed to release dquot type 0
[  453.730409][T11181] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  453.752270][T11181] EXT4-fs error (device loop4): __ext4_get_inode_loc:4483: comm syz.4.1547: Invalid inode table block 1 in block_group 0
[  453.794935][T11181] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  453.827497][T11181] EXT4-fs error (device loop4): ext4_quota_off:7224: inode #3: comm syz.4.1547: mark_inode_dirty error
[  455.449384][T11223] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1565'.
[  455.505921][T11223] loop3: detected capacity change from 0 to 1024
[  455.528028][T11223] EXT4-fs: Ignoring removed bh option
[  455.544543][T11223] EXT4-fs: inline encryption not supported
[  455.558290][T11223] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  455.625419][T11223] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 2: comm syz.3.1565: lblock 2 mapped to illegal pblock 2 (length 1)
[  455.631119][T11230] loop4: detected capacity change from 0 to 512
[  455.647163][T11230] EXT4-fs: Ignoring removed orlov option
[  455.664831][T11223] __quota_error: 24 callbacks suppressed
[  455.664852][T11223] Quota error (device loop3): qtree_write_dquot: dquota write failed
[  455.684683][T11223] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 48: comm syz.3.1565: lblock 0 mapped to illegal pblock 48 (length 1)
[  455.766686][T11230] ext4: Unknown parameter 'fsname'
[  455.778553][T11223] Quota error (device loop3): v2_write_file_info: Can't write info structure
[  455.868634][T11223] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.1565: Failed to acquire dquot type 0
[  456.143451][T11223] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  456.377821][T11223] EXT4-fs error (device loop3): ext4_evict_inode:252: inode #11: comm syz.3.1565: mark_inode_dirty error
[  456.460711][T11223] EXT4-fs warning (device loop3): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  456.472571][T11223] EXT4-fs (loop3): 1 orphan inode deleted
[  456.480265][T11223] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  456.493228][  T993] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:5: lblock 1 mapped to illegal pblock 1 (length 1)
[  456.604830][  T993] Quota error (device loop3): remove_tree: Can't read quota data block 1
[  456.627247][  T993] EXT4-fs error (device loop3): ext4_release_dquot:6976: comm kworker/u4:5: Failed to release dquot type 0
[  456.684810][T11223] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  456.717598][T11223] EXT4-fs error (device loop3): __ext4_get_inode_loc:4483: comm syz.3.1565: Invalid inode table block 1 in block_group 0
[  456.746901][T11223] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  456.780748][T11223] EXT4-fs error (device loop3): ext4_quota_off:7224: inode #3: comm syz.3.1565: mark_inode_dirty error
[  457.629297][T11251] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.910725][T11254] netlink: 'syz.7.1578': attribute type 10 has an invalid length.
[  457.991809][T11254] netlink: 40 bytes leftover after parsing attributes in process `syz.7.1578'.
[  458.009632][T11254] batman_adv: batadv0: Adding interface: virt_wifi0
[  458.019596][T11254] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  458.053561][T11254] batman_adv: batadv0: Interface activated: virt_wifi0
[  458.070896][T11258] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1579'.
[  458.099004][T11258] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  458.117263][T11258] batman_adv: batadv0: Removing interface: batadv_slave_0
[  458.140652][T11258] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  458.189230][T11258] batman_adv: batadv0: Removing interface: batadv_slave_1
[  458.376158][T11251] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.518165][T11251] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.565466][T11268] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1580'.
[  458.600368][T11268] loop4: detected capacity change from 0 to 512
[  458.660356][T11251] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.935565][T11268] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  458.992582][T11268] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  459.029111][T11280] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1587'.
[  459.063975][T11268] System zones: 0-1, 15-15, 18-18, 34-34
[  459.070069][T11268] EXT4-fs (loop4): orphan cleanup on readonly fs
[  459.109006][T11280] loop6: detected capacity change from 0 to 1024
[  459.123481][T11283] netlink: 'syz.3.1586': attribute type 10 has an invalid length.
[  459.131368][T11283] macvlan1: entered allmulticast mode
[  459.133022][T11268] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=0
[  459.144355][T11280] EXT4-fs: Ignoring removed bh option
[  459.152088][T11280] EXT4-fs: inline encryption not supported
[  459.158222][T11283] veth1_vlan: entered allmulticast mode
[  459.175282][T11283] team0: Device macvlan1 is up. Set it down before adding it as a team port
[  459.186793][T11280] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  459.198725][T11268] EXT4-fs warning (device loop4): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  459.227845][T11280] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #3: block 2: comm syz.6.1587: lblock 2 mapped to illegal pblock 2 (length 1)
[  459.230377][T11268] EXT4-fs (loop4): Cannot turn on quotas: error -22
[  459.270408][T11268] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.1580: bg 0: block 40: padding at end of block bitmap is not set
[  459.332215][T11280] Quota error (device loop6): qtree_write_dquot: dquota write failed
[  459.395714][T11268] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  459.422181][T11280] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #3: block 48: comm syz.6.1587: lblock 0 mapped to illegal pblock 48 (length 1)
[  459.675944][T11268] EXT4-fs (loop4): 1 truncate cleaned up
[  459.693810][T11280] Quota error (device loop6): v2_write_file_info: Can't write info structure
[  459.843121][T11280] EXT4-fs error (device loop6): ext4_acquire_dquot:6940: comm syz.6.1587: Failed to acquire dquot type 0
[  460.032522][T11280] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  460.046378][T11280] EXT4-fs error (device loop6): ext4_evict_inode:252: inode #11: comm syz.6.1587: mark_inode_dirty error
[  460.059899][T11268] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  460.095653][T11280] EXT4-fs warning (device loop6): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  460.113385][T11280] EXT4-fs (loop6): 1 orphan inode deleted
[  460.120663][T11280] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  460.173742][   T59] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:4: lblock 1 mapped to illegal pblock 1 (length 1)
[  460.218469][   T59] Quota error (device loop6): remove_tree: Can't read quota data block 1
[  460.236595][   T59] EXT4-fs error (device loop6): ext4_release_dquot:6976: comm kworker/u4:4: Failed to release dquot type 0
[  460.278384][T11280] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  460.325343][T11280] EXT4-fs error (device loop6): __ext4_get_inode_loc:4483: comm syz.6.1587: Invalid inode table block 1 in block_group 0
[  460.353009][T11280] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  460.373935][T11280] EXT4-fs error (device loop6): ext4_quota_off:7224: inode #3: comm syz.6.1587: mark_inode_dirty error
[  461.014868][T11302] random: crng reseeded on system resumption
[  461.691905][T11305] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1595'.
[  462.190066][ T7905] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  462.247460][T11311] loop7: detected capacity change from 0 to 1024
[  462.260452][T11311] EXT4-fs: Ignoring removed nobh option
[  462.266693][T11311] EXT4-fs: inline encryption not supported
[  462.327947][T11311] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  462.444305][T11311] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  463.454771][T10897] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  463.620240][T11329] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1603'.
[  463.628453][T11330] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1605'.
[  463.723526][T11329] loop4: detected capacity change from 0 to 1024
[  463.730838][T11329] EXT4-fs: Ignoring removed bh option
[  463.743069][T11334] netlink: 'syz.3.1604': attribute type 39 has an invalid length.
[  463.753685][T11329] EXT4-fs: inline encryption not supported
[  463.779714][T11329] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  463.829594][T11329] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 2: comm syz.4.1603: lblock 2 mapped to illegal pblock 2 (length 1)
[  463.859366][T11329] Quota error (device loop4): qtree_write_dquot: dquota write failed
[  463.868580][T11329] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 48: comm syz.4.1603: lblock 0 mapped to illegal pblock 48 (length 1)
[  463.895493][T11329] Quota error (device loop4): v2_write_file_info: Can't write info structure
[  463.923856][T11329] EXT4-fs error (device loop4): ext4_acquire_dquot:6940: comm syz.4.1603: Failed to acquire dquot type 0
[  464.070753][T11329] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  464.177553][T11329] EXT4-fs error (device loop4): ext4_evict_inode:252: inode #11: comm syz.4.1603: mark_inode_dirty error
[  464.317083][T11329] EXT4-fs warning (device loop4): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  464.345826][T11343] random: crng reseeded on system resumption
[  464.427166][T11329] EXT4-fs (loop4): 1 orphan inode deleted
[  464.505734][T11329] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  464.553529][   T59] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:4: lblock 1 mapped to illegal pblock 1 (length 1)
[  465.068272][   T59] Quota error (device loop4): remove_tree: Can't read quota data block 1
[  465.110502][   T59] EXT4-fs error (device loop4): ext4_release_dquot:6976: comm kworker/u4:4: Failed to release dquot type 0
[  465.447904][T11345] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1608'.
[  465.488676][T11329] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  465.499034][T11329] EXT4-fs error (device loop4): __ext4_get_inode_loc:4483: comm syz.4.1603: Invalid inode table block 1 in block_group 0
[  465.515453][T11329] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  465.545335][T11329] EXT4-fs error (device loop4): ext4_quota_off:7224: inode #3: comm syz.4.1603: mark_inode_dirty error
[  466.767062][T11356] loop7: detected capacity change from 0 to 1024
[  466.784739][T11356] EXT4-fs: Ignoring removed nobh option
[  466.803666][T11356] EXT4-fs: inline encryption not supported
[  466.820394][T11356] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  466.848598][T11360] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1614'.
[  466.903491][T11356] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  467.359466][T11376] random: crng reseeded on system resumption
[  467.787238][T11379] netlink: 'syz.3.1619': attribute type 4 has an invalid length.
[  467.862390][T11379] netlink: 'syz.3.1619': attribute type 4 has an invalid length.
[  468.308036][ T5879] lo speed is unknown, defaulting to 1000
[  468.349636][T10897] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  468.452661][T11384] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1621'.
[  468.600185][T11387] loop4: detected capacity change from 0 to 1024
[  468.640987][T11387] EXT4-fs: Ignoring removed bh option
[  468.669006][T11387] EXT4-fs: inline encryption not supported
[  468.677167][T11387] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  469.127308][T11387] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 2: comm syz.4.1621: lblock 2 mapped to illegal pblock 2 (length 1)
[  469.440171][T11387] Quota error (device loop4): qtree_write_dquot: dquota write failed
[  469.524831][T11387] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 48: comm syz.4.1621: lblock 0 mapped to illegal pblock 48 (length 1)
[  469.543046][T11387] Quota error (device loop4): v2_write_file_info: Can't write info structure
[  469.552107][T11387] EXT4-fs error (device loop4): ext4_acquire_dquot:6940: comm syz.4.1621: Failed to acquire dquot type 0
[  469.589519][T11387] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  469.606753][T11387] EXT4-fs error (device loop4): ext4_evict_inode:252: inode #11: comm syz.4.1621: mark_inode_dirty error
[  469.618555][T11387] EXT4-fs warning (device loop4): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  469.698507][T11387] EXT4-fs (loop4): 1 orphan inode deleted
[  469.731723][  T993] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:5: lblock 1 mapped to illegal pblock 1 (length 1)
[  469.734933][T11387] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  469.774506][T11398] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1625'.
[  469.788217][  T993] Quota error (device loop4): remove_tree: Can't read quota data block 1
[  469.833204][  T993] EXT4-fs error (device loop4): ext4_release_dquot:6976: comm kworker/u4:5: Failed to release dquot type 0
[  469.885109][T11384] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  469.896100][T11402] siw: device registration error -23
[  469.926655][T11387] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  469.942101][T11404] random: crng reseeded on system resumption
[  469.965640][T11387] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 48: comm syz.4.1621: lblock 0 mapped to illegal pblock 48 (length 1)
[  470.005651][T11387] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=-117
[  470.023819][T11387] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  470.190328][ T7905] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  470.691244][T11420] loop4: detected capacity change from 0 to 512
[  470.907474][T11420] EXT4-fs (loop4): couldn't mount as ext2 due to feature incompatibilities
[  471.563306][   T28] audit: type=1326 audit(1757031597.305:1309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11425 comm="syz.6.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbab3b8ebe9 code=0x7ffc0000
[  471.631975][   T28] audit: type=1326 audit(1757031597.305:1310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11425 comm="syz.6.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fbab3b8ebe9 code=0x7ffc0000
[  471.670378][T11428] loop7: detected capacity change from 0 to 1024
[  471.690797][   T28] audit: type=1326 audit(1757031597.305:1311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11425 comm="syz.6.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbab3b8ebe9 code=0x7ffc0000
[  471.702287][T11428] EXT4-fs: Ignoring removed nobh option
[  471.750692][T11432] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1639'.
[  471.764062][   T28] audit: type=1326 audit(1757031597.315:1312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11425 comm="syz.6.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7fbab3b8ebe9 code=0x7ffc0000
[  471.791214][T11428] EXT4-fs: inline encryption not supported
[  471.830041][T11428] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  471.869029][   T28] audit: type=1326 audit(1757031597.315:1313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11425 comm="syz.6.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbab3b8ebe9 code=0x7ffc0000
[  471.896481][   T28] audit: type=1326 audit(1757031597.315:1314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11425 comm="syz.6.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbab3b8ebe9 code=0x7ffc0000
[  471.904576][T11435] loop3: detected capacity change from 0 to 1024
[  471.938444][T11428] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  471.976120][T11435] EXT4-fs: Ignoring removed bh option
[  471.984115][T11435] EXT4-fs: inline encryption not supported
[  472.022897][T11435] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  472.079663][T11435] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 2: comm syz.3.1639: lblock 2 mapped to illegal pblock 2 (length 1)
[  472.160235][T11446] loop4: detected capacity change from 0 to 512
[  472.168390][T11446] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  472.191783][T11435] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 48: comm syz.3.1639: lblock 0 mapped to illegal pblock 48 (length 1)
[  472.246373][T11435] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.1639: Failed to acquire dquot type 0
[  472.279846][T10897] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  472.289616][T11435] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  472.320421][T11435] EXT4-fs error (device loop3): ext4_evict_inode:252: inode #11: comm syz.3.1639: mark_inode_dirty error
[  472.431395][T11435] EXT4-fs warning (device loop3): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  472.600087][T11435] EXT4-fs (loop3): 1 orphan inode deleted
[  472.851461][T11435] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  473.164034][   T11] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:0: lblock 1 mapped to illegal pblock 1 (length 1)
[  473.214405][   T11] EXT4-fs error (device loop3): ext4_release_dquot:6976: comm kworker/u4:0: Failed to release dquot type 0
[  473.258771][T11432] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  473.326816][T11432] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  473.365987][T11432] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 48: comm syz.3.1639: lblock 0 mapped to illegal pblock 48 (length 1)
[  473.410392][T11432] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  473.533017][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  473.613228][T11459] tipc: Cannot configure node identity twice
[  474.169466][T11485] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1661'.
[  474.202065][T11485] loop7: detected capacity change from 0 to 1024
[  474.218975][T11485] EXT4-fs: Ignoring removed bh option
[  474.239033][T11485] EXT4-fs: inline encryption not supported
[  474.275272][T11485] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  474.324780][T11485] EXT4-fs error (device loop7): ext4_map_blocks:608: inode #3: block 2: comm syz.7.1661: lblock 2 mapped to illegal pblock 2 (length 1)
[  474.340223][T11485] EXT4-fs error (device loop7): ext4_map_blocks:608: inode #3: block 48: comm syz.7.1661: lblock 0 mapped to illegal pblock 48 (length 1)
[  474.361165][T11485] EXT4-fs error (device loop7): ext4_acquire_dquot:6940: comm syz.7.1661: Failed to acquire dquot type 0
[  474.375041][T11485] EXT4-fs error (device loop7) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  474.394735][T11485] EXT4-fs error (device loop7): ext4_evict_inode:252: inode #11: comm syz.7.1661: mark_inode_dirty error
[  474.411877][T11485] EXT4-fs warning (device loop7): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  474.422754][T11485] EXT4-fs (loop7): 1 orphan inode deleted
[  474.431069][T11485] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  474.445893][   T28] kauditd_printk_skb: 42 callbacks suppressed
[  474.445908][   T28] audit: type=1326 audit(1757031600.205:1351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11490 comm="syz.4.1662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  474.459717][ T1075] EXT4-fs error (device loop7): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:6: lblock 1 mapped to illegal pblock 1 (length 1)
[  474.494467][   T28] audit: type=1326 audit(1757031600.205:1352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11490 comm="syz.4.1662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  474.518999][   T28] audit: type=1326 audit(1757031600.255:1353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11490 comm="syz.4.1662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  474.542488][ T1075] Quota error (device loop7): remove_tree: Can't read quota data block 1
[  474.551472][ T1075] EXT4-fs error (device loop7): ext4_release_dquot:6976: comm kworker/u4:6: Failed to release dquot type 0
[  474.574373][T11492] program syz.4.1662 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  474.584096][   T28] audit: type=1326 audit(1757031600.255:1354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11490 comm="syz.4.1662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  474.608577][T11485] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  474.618631][   T28] audit: type=1326 audit(1757031600.255:1355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11490 comm="syz.4.1662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  474.641752][T11494] EXT4-fs (loop7): warning: mounting fs with errors, running e2fsck is recommended
[  474.655956][T11494] EXT4-fs error (device loop7): ext4_map_blocks:608: inode #3: block 48: comm syz.7.1661: lblock 0 mapped to illegal pblock 48 (length 1)
[  474.688448][T11494] Quota error (device loop7): v2_read_header: Failed header read: expected=8 got=-117
[  474.709281][   T28] audit: type=1326 audit(1757031600.255:1356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11490 comm="syz.4.1662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  474.732901][T11494] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  474.745174][   T28] audit: type=1326 audit(1757031600.325:1357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11490 comm="syz.4.1662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  474.833759][   T28] audit: type=1326 audit(1757031600.325:1358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11490 comm="syz.4.1662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  474.858889][T10897] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  475.186662][T11510] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1669'.
[  475.224008][T11507] Falling back ldisc for ttyS3.
[  475.352680][T11510] lo speed is unknown, defaulting to 1000
[  475.407625][T11514] loop7: detected capacity change from 0 to 512
[  475.417423][T11514] EXT4-fs: Ignoring removed nobh option
[  475.470045][T11514] EXT4-fs error (device loop7): ext4_do_update_inode:5230: inode #3: comm syz.7.1671: corrupted inode contents
[  475.515148][T11514] EXT4-fs error (device loop7): ext4_dirty_inode:6106: inode #3: comm syz.7.1671: mark_inode_dirty error
[  475.529596][T11514] EXT4-fs error (device loop7): ext4_do_update_inode:5230: inode #3: comm syz.7.1671: corrupted inode contents
[  475.593377][T11514] EXT4-fs error (device loop7): __ext4_ext_dirty:202: inode #3: comm syz.7.1671: mark_inode_dirty error
[  475.617792][T11514] EXT4-fs error (device loop7): ext4_acquire_dquot:6940: comm syz.7.1671: Failed to acquire dquot type 0
[  475.655246][T11514] EXT4-fs error (device loop7): ext4_do_update_inode:5230: inode #16: comm syz.7.1671: corrupted inode contents
[  475.713321][T11514] EXT4-fs error (device loop7): ext4_dirty_inode:6106: inode #16: comm syz.7.1671: mark_inode_dirty error
[  475.773322][T11514] EXT4-fs error (device loop7): ext4_do_update_inode:5230: inode #16: comm syz.7.1671: corrupted inode contents
[  475.808821][T11525] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1674'.
[  475.837458][T11514] EXT4-fs error (device loop7): __ext4_ext_dirty:202: inode #16: comm syz.7.1671: mark_inode_dirty error
[  475.893402][T11514] EXT4-fs error (device loop7): ext4_do_update_inode:5230: inode #16: comm syz.7.1671: corrupted inode contents
[  475.921398][T11527] loop4: detected capacity change from 0 to 512
[  475.945296][T11525] loop6: detected capacity change from 0 to 1024
[  475.961460][T11525] EXT4-fs: Ignoring removed bh option
[  475.966851][T11527] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2244: inode #15: comm syz.4.1675: corrupted in-inode xattr: invalid ea_ino
[  475.969029][T11514] EXT4-fs error (device loop7) in ext4_orphan_del:305: Corrupt filesystem
[  476.011975][T11514] EXT4-fs error (device loop7): ext4_do_update_inode:5230: inode #16: comm syz.7.1671: corrupted inode contents
[  476.015652][T11525] EXT4-fs: inline encryption not supported
[  476.037890][T11527] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.1675: couldn't read orphan inode 15 (err -117)
[  476.051440][T11514] EXT4-fs error (device loop7): ext4_truncate:4288: inode #16: comm syz.7.1671: mark_inode_dirty error
[  476.074667][T11514] EXT4-fs error (device loop7) in ext4_process_orphan:347: Corrupt filesystem
[  476.108514][T11525] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  476.142404][T11527] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  476.148147][T11514] EXT4-fs (loop7): 1 truncate cleaned up
[  476.176741][T11525] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #3: block 2: comm syz.6.1674: lblock 2 mapped to illegal pblock 2 (length 1)
[  476.190135][T11514] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  476.206297][T11514] ext4 filesystem being mounted at /48/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  476.278925][T11525] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #3: block 48: comm syz.6.1674: lblock 0 mapped to illegal pblock 48 (length 1)
[  476.312076][ T7905] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  476.338424][T11525] EXT4-fs error (device loop6): ext4_acquire_dquot:6940: comm syz.6.1674: Failed to acquire dquot type 0
[  476.397522][T11525] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  476.433462][T11525] EXT4-fs error (device loop6): ext4_evict_inode:252: inode #11: comm syz.6.1674: mark_inode_dirty error
[  476.486020][T11525] EXT4-fs warning (device loop6): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  476.514918][T11525] EXT4-fs (loop6): 1 orphan inode deleted
[  476.524898][T11525] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  476.540975][  T993] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:5: lblock 1 mapped to illegal pblock 1 (length 1)
[  476.575968][  T993] EXT4-fs error (device loop6): ext4_release_dquot:6976: comm kworker/u4:5: Failed to release dquot type 0
[  476.606230][T10897] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  476.618740][T11525] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  476.639843][T11525] EXT4-fs error (device loop6): __ext4_get_inode_loc:4483: comm syz.6.1674: Invalid inode table block 1 in block_group 0
[  476.669621][T11525] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  476.689643][T11539] netlink: 'syz.3.1681': attribute type 10 has an invalid length.
[  476.733553][T11525] EXT4-fs error (device loop6): ext4_quota_off:7224: inode #3: comm syz.6.1674: mark_inode_dirty error
[  477.050843][T11548] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1684'.
[  477.077523][T11548] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1684'.
[  477.405614][T11556] loop4: detected capacity change from 0 to 512
[  477.421548][T11556] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  477.488950][T11556] EXT4-fs (loop4): 1 truncate cleaned up
[  477.525336][T11556] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  477.753767][T11564] netlink: 'syz.6.1690': attribute type 21 has an invalid length.
[  477.761860][T11564] netlink: 132 bytes leftover after parsing attributes in process `syz.6.1690'.
[  477.771036][T11564] netlink: 'syz.6.1690': attribute type 1 has an invalid length.
[  478.465315][T11573] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1693'.
[  478.599499][ T7905] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  478.617337][T11574] loop3: detected capacity change from 0 to 1024
[  478.628642][T11574] EXT4-fs: Ignoring removed bh option
[  478.634205][T11574] EXT4-fs: inline encryption not supported
[  478.653906][T11574] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  478.754541][T11574] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 2: comm syz.3.1693: lblock 2 mapped to illegal pblock 2 (length 1)
[  478.791395][T11574] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 48: comm syz.3.1693: lblock 0 mapped to illegal pblock 48 (length 1)
[  478.809170][T11574] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.1693: Failed to acquire dquot type 0
[  478.822304][T11574] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  478.889090][T11574] EXT4-fs error (device loop3): ext4_evict_inode:252: inode #11: comm syz.3.1693: mark_inode_dirty error
[  478.934037][T11574] EXT4-fs warning (device loop3): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  478.953978][T11574] EXT4-fs (loop3): 1 orphan inode deleted
[  478.965107][T11574] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  478.992237][   T11] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:0: lblock 1 mapped to illegal pblock 1 (length 1)
[  479.027394][   T11] EXT4-fs error (device loop3): ext4_release_dquot:6976: comm kworker/u4:0: Failed to release dquot type 0
[  479.068772][T11574] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  479.096577][T11574] EXT4-fs error (device loop3): __ext4_get_inode_loc:4483: comm syz.3.1693: Invalid inode table block 1 in block_group 0
[  479.142420][T11574] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  479.172569][T11574] EXT4-fs error (device loop3): ext4_quota_off:7224: inode #3: comm syz.3.1693: mark_inode_dirty error
[  479.436424][T11592] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1699'.
[  479.454317][T11592] loop6: detected capacity change from 0 to 512
[  479.478477][T11592] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  479.486871][T11592] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  479.495214][T11592] System zones: 0-1, 15-15, 18-18, 34-34
[  479.501297][T11592] EXT4-fs (loop6): orphan cleanup on readonly fs
[  479.507850][T11592] __quota_error: 36 callbacks suppressed
[  479.507866][T11592] Quota error (device loop6): v2_read_header: Failed header read: expected=8 got=0
[  479.523006][T11592] EXT4-fs warning (device loop6): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  479.538030][T11592] EXT4-fs (loop6): Cannot turn on quotas: error -22
[  479.553677][T11592] EXT4-fs error (device loop6): ext4_validate_block_bitmap:439: comm syz.6.1699: bg 0: block 40: padding at end of block bitmap is not set
[  479.569022][T11592] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  479.578425][T11592] EXT4-fs (loop6): 1 truncate cleaned up
[  479.585538][T11592] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  479.736504][ T9084] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  480.106793][   T28] audit: type=1326 audit(1757031605.865:1387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11607 comm="syz.4.1705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  480.151208][   T28] audit: type=1326 audit(1757031605.895:1388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11607 comm="syz.4.1705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=117 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  480.207729][   T28] audit: type=1326 audit(1757031605.895:1389): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=unconfined pid=11607 comm="syz.4.1705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  480.235766][   T28] audit: type=1326 audit(1757031605.905:1390): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=unconfined pid=11607 comm="syz.4.1705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  480.371021][T11614] netlink: 34 bytes leftover after parsing attributes in process `syz.4.1706'.
[  480.414621][T11617] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1708'.
[  480.440084][T11617] loop6: detected capacity change from 0 to 1024
[  480.447609][T11617] EXT4-fs: Ignoring removed bh option
[  480.459144][T11617] EXT4-fs: inline encryption not supported
[  480.473569][T11617] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  480.491398][T11617] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #3: block 2: comm syz.6.1708: lblock 2 mapped to illegal pblock 2 (length 1)
[  480.528547][T11617] Quota error (device loop6): qtree_write_dquot: dquota write failed
[  480.556332][T11617] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #3: block 48: comm syz.6.1708: lblock 0 mapped to illegal pblock 48 (length 1)
[  480.607583][T11617] Quota error (device loop6): v2_write_file_info: Can't write info structure
[  480.633979][T11617] EXT4-fs error (device loop6): ext4_acquire_dquot:6940: comm syz.6.1708: Failed to acquire dquot type 0
[  480.665413][T11617] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  480.714114][T11622] tipc: Cannot configure node identity twice
[  480.801132][T11617] EXT4-fs error (device loop6): ext4_evict_inode:252: inode #11: comm syz.6.1708: mark_inode_dirty error
[  480.843519][T11617] EXT4-fs warning (device loop6): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  480.864322][T11617] EXT4-fs (loop6): 1 orphan inode deleted
[  480.871438][T11617] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  480.906445][   T59] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:4: lblock 1 mapped to illegal pblock 1 (length 1)
[  480.949584][   T59] Quota error (device loop6): remove_tree: Can't read quota data block 1
[  480.966304][T11626] loop7: detected capacity change from 0 to 512
[  480.982420][   T59] EXT4-fs error (device loop6): ext4_release_dquot:6976: comm kworker/u4:4: Failed to release dquot type 0
[  481.013566][T11626] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  481.028948][T11617] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  481.048611][T11617] EXT4-fs error (device loop6): __ext4_get_inode_loc:4483: comm syz.6.1708: Invalid inode table block 1 in block_group 0
[  481.095098][T11617] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  481.109276][T11617] EXT4-fs error (device loop6): ext4_quota_off:7224: inode #3: comm syz.6.1708: mark_inode_dirty error
[  481.132265][T11626] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  481.142184][T11626] System zones: 0-2, 18-18, 34-34
[  481.151719][T11626] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  481.165145][T11626] ext4 filesystem being mounted at /56/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  481.286909][T10897] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  481.297657][T11628] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1712'.
[  481.316849][T11628] loop3: detected capacity change from 0 to 512
[  481.355858][T11628] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  481.364006][T11628] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  481.372121][T11628] System zones: 0-1, 15-15, 18-18, 34-34
[  481.378257][T11628] EXT4-fs (loop3): orphan cleanup on readonly fs
[  481.384860][T11628] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=0
[  481.394540][T11628] EXT4-fs warning (device loop3): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  481.409177][T11628] EXT4-fs (loop3): Cannot turn on quotas: error -22
[  481.419071][T11628] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.1712: bg 0: block 40: padding at end of block bitmap is not set
[  481.434239][T11628] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  481.445984][T11628] EXT4-fs (loop3): 1 truncate cleaned up
[  481.452969][T11628] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  481.601958][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  481.684791][T11638] loop4: detected capacity change from 0 to 512
[  481.739352][T11638] EXT4-fs error (device loop4): ext4_orphan_get:1399: inode #15: comm syz.4.1714: casefold flag without casefold feature
[  481.758987][T11638] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.1714: couldn't read orphan inode 15 (err -117)
[  481.776047][T11638] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  481.914454][T11643] netlink: 34 bytes leftover after parsing attributes in process `syz.6.1717'.
[  482.342279][ T7905] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  482.482374][T11663] tipc: Cannot configure node identity twice
[  482.533807][   T54] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  482.650980][T11665] loop4: detected capacity change from 0 to 1024
[  482.660627][T11665] EXT4-fs: Ignoring removed bh option
[  482.693876][   T54] usb 7-1: device descriptor read/64, error -71
[  482.697894][T11665] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  482.821692][ T7905] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  482.918345][T11672] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1725'.
[  482.957709][T11672] loop4: detected capacity change from 0 to 1024
[  482.973955][T11672] EXT4-fs: Ignoring removed bh option
[  482.979548][   T54] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  482.987853][T11672] EXT4-fs: inline encryption not supported
[  483.019705][T11672] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  483.065235][T11672] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 2: comm syz.4.1725: lblock 2 mapped to illegal pblock 2 (length 1)
[  483.104971][T11672] Quota error (device loop4): qtree_write_dquot: dquota write failed
[  483.114420][T11672] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 48: comm syz.4.1725: lblock 0 mapped to illegal pblock 48 (length 1)
[  483.153455][   T54] usb 7-1: device descriptor read/64, error -71
[  483.155862][T11672] EXT4-fs error (device loop4): ext4_acquire_dquot:6940: comm syz.4.1725: Failed to acquire dquot type 0
[  483.179775][T11672] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  483.192661][T11672] EXT4-fs error (device loop4): ext4_evict_inode:252: inode #11: comm syz.4.1725: mark_inode_dirty error
[  483.235609][T11672] EXT4-fs warning (device loop4): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  483.265425][T11672] EXT4-fs (loop4): 1 orphan inode deleted
[  483.283615][   T54] usb usb7-port1: attempt power cycle
[  483.284943][T11672] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  483.301983][T11043] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:12: lblock 1 mapped to illegal pblock 1 (length 1)
[  483.355506][T11043] EXT4-fs error (device loop4): ext4_release_dquot:6976: comm kworker/u4:12: Failed to release dquot type 0
[  483.413819][T11672] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  483.439693][T11680] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  483.474411][T11680] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 48: comm syz.4.1725: lblock 0 mapped to illegal pblock 48 (length 1)
[  483.519003][T11680] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  483.541646][T11682] netlink: 34 bytes leftover after parsing attributes in process `syz.7.1729'.
[  483.641621][ T7905] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  483.694739][   T54] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  483.725349][   T54] usb 7-1: device descriptor read/8, error -71
[  483.819439][T11692] loop4: detected capacity change from 0 to 512
[  483.832413][T11692] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  484.008420][T11692] EXT4-fs (loop4): 1 truncate cleaned up
[  484.034883][T11692] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  484.047754][   T54] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  484.105978][   T54] usb 7-1: device descriptor read/8, error -71
[  484.228577][ T7905] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  484.263646][   T54] usb usb7-port1: unable to enumerate USB device
[  484.334144][T11703] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1736'.
[  484.344811][T11703] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1736'.
[  484.354942][T11703] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1736'.
[  484.612244][T11711] loop4: detected capacity change from 0 to 512
[  484.621687][T11711] EXT4-fs: Ignoring removed mblk_io_submit option
[  484.632570][T11711] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  484.652840][T11711] EXT4-fs (loop4): 1 truncate cleaned up
[  484.660498][T11711] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  484.711502][ T7905] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  484.899485][T11717] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1741'.
[  484.954890][T11717] loop4: detected capacity change from 0 to 1024
[  484.969767][T11717] EXT4-fs: Ignoring removed bh option
[  484.985552][T11717] EXT4-fs: inline encryption not supported
[  484.993905][T11717] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  485.004491][T11721] loop3: detected capacity change from 0 to 512
[  485.034293][T11721] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  485.071389][T11717] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 2: comm syz.4.1741: lblock 2 mapped to illegal pblock 2 (length 1)
[  485.090236][T11721] EXT4-fs (loop3): 1 truncate cleaned up
[  485.092780][T11717] __quota_error: 3 callbacks suppressed
[  485.092796][T11717] Quota error (device loop4): qtree_write_dquot: dquota write failed
[  485.109989][T11717] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 48: comm syz.4.1741: lblock 0 mapped to illegal pblock 48 (length 1)
[  485.113090][T11721] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  485.153440][T11717] Quota error (device loop4): v2_write_file_info: Can't write info structure
[  485.162286][T11717] EXT4-fs error (device loop4): ext4_acquire_dquot:6940: comm syz.4.1741: Failed to acquire dquot type 0
[  485.193369][T11717] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  485.207011][T11717] EXT4-fs error (device loop4): ext4_evict_inode:252: inode #11: comm syz.4.1741: mark_inode_dirty error
[  485.223326][T11717] EXT4-fs warning (device loop4): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  485.233714][T11717] EXT4-fs (loop4): 1 orphan inode deleted
[  485.240837][T11717] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  485.254081][   T42] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:2: lblock 1 mapped to illegal pblock 1 (length 1)
[  485.300145][   T42] Quota error (device loop4): remove_tree: Can't read quota data block 1
[  485.330466][   T42] EXT4-fs error (device loop4): ext4_release_dquot:6976: comm kworker/u4:2: Failed to release dquot type 0
[  485.446570][T11717] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  485.503099][T11726] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  485.550893][T11726] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 48: comm syz.4.1741: lblock 0 mapped to illegal pblock 48 (length 1)
[  485.713377][T11728] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1745'.
[  485.936526][T11728] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1745'.
[  485.956351][T11726] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=-117
[  486.003351][T11728] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1745'.
[  486.012880][T11726] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  486.145077][T11731] loop7: detected capacity change from 0 to 2048
[  486.209888][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  486.231393][ T7905] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  486.280396][T11731]  loop7: p2 p3 p7
[  486.376196][T11734] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1747'.
[  492.439564][T11763] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1755'.
[  492.450742][T11763] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1755'.
[  492.462920][T11763] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1755'.
[  492.902489][T11770] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1757'.
[  493.197013][T11771] random: crng reseeded on system resumption
[  493.407991][T11773] loop4: detected capacity change from 0 to 1024
[  493.422240][T11773] EXT4-fs: Ignoring removed bh option
[  493.449377][T11773] EXT4-fs: inline encryption not supported
[  493.841409][T11773] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  493.916848][T11773] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 2: comm syz.4.1757: lblock 2 mapped to illegal pblock 2 (length 1)
[  494.047973][T11781] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1759'.
[  496.229721][T11773] Quota error (device loop4): qtree_write_dquot: dquota write failed
[  496.252310][T11773] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 48: comm syz.4.1757: lblock 0 mapped to illegal pblock 48 (length 1)
[  496.278368][T11773] Quota error (device loop4): v2_write_file_info: Can't write info structure
[  496.315929][T11773] EXT4-fs error (device loop4): ext4_acquire_dquot:6940: comm syz.4.1757: Failed to acquire dquot type 0
[  496.344361][T11773] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  496.358861][T11773] EXT4-fs error (device loop4): ext4_evict_inode:252: inode #11: comm syz.4.1757: mark_inode_dirty error
[  496.393635][T11773] EXT4-fs warning (device loop4): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  496.405077][T11783] loop7: detected capacity change from 0 to 8192
[  496.414513][T11773] EXT4-fs (loop4): 1 orphan inode deleted
[  496.421642][T11773] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  496.453598][T11043] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:12: lblock 1 mapped to illegal pblock 1 (length 1)
[  496.482388][T11043] Quota error (device loop4): remove_tree: Can't read quota data block 1
[  496.522932][T11043] EXT4-fs error (device loop4): ext4_release_dquot:6976: comm kworker/u4:12: Failed to release dquot type 0
[  496.572982][ T7905] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  496.591875][ T7905] EXT4-fs error (device loop4): __ext4_get_inode_loc:4483: comm syz-executor: Invalid inode table block 1 in block_group 0
[  496.613336][ T7905] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  496.631479][ T7905] EXT4-fs error (device loop4): ext4_quota_off:7224: inode #3: comm syz-executor: mark_inode_dirty error
[  498.391215][T11791] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1762'.
[  500.651418][T11801] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1766'.
[  500.662788][T11801] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1766'.
[  500.674033][T11799] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1765'.
[  500.688927][T11799] loop4: detected capacity change from 0 to 512
[  500.699837][T11801] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1766'.
[  500.731472][T11799] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  500.739545][T11799] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  500.747842][T11799] System zones: 0-1, 15-15, 18-18, 34-34
[  500.754015][T11799] EXT4-fs (loop4): orphan cleanup on readonly fs
[  500.760487][T11799] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=0
[  500.770094][T11799] EXT4-fs warning (device loop4): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  500.784796][T11799] EXT4-fs (loop4): Cannot turn on quotas: error -22
[  500.804961][T11799] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.1765: bg 0: block 40: padding at end of block bitmap is not set
[  500.823805][T11799] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  500.833067][T11799] EXT4-fs (loop4): 1 truncate cleaned up
[  500.840279][T11799] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  501.394449][ T7905] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  501.644403][T11822] loop4: detected capacity change from 0 to 8192
[  501.671742][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  501.681832][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  503.827619][T11832] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1777'.
[  504.011237][T11832] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1777'.
[  504.859722][   T28] audit: type=1326 audit(1757031630.585:1391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11834 comm="syz.4.1778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  504.939082][   T28] audit: type=1326 audit(1757031630.585:1392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11834 comm="syz.4.1778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  505.006439][T11837] loop4: detected capacity change from 0 to 128
[  505.033742][   T28] audit: type=1326 audit(1757031630.585:1393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11834 comm="syz.4.1778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  505.071585][   T28] audit: type=1326 audit(1757031630.585:1394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11834 comm="syz.4.1778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  505.110237][T11837] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  505.148325][   T28] audit: type=1326 audit(1757031630.585:1395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11834 comm="syz.4.1778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2ecff8d550 code=0x7ffc0000
[  505.163398][T11837] FAT-fs (loop4): Filesystem has been set read-only
[  505.181346][   T28] audit: type=1326 audit(1757031630.585:1396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11834 comm="syz.4.1778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2ecff8d550 code=0x7ffc0000
[  505.203769][T11837] syz.4.1779: attempt to access beyond end of device
[  505.203769][T11837] loop4: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  505.210892][   T28] audit: type=1326 audit(1757031630.585:1397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11834 comm="syz.4.1778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  505.249729][T11837] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  505.267685][T11837] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  505.326137][T11837] syz.4.1779: attempt to access beyond end of device
[  505.326137][T11837] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[  505.373347][   T28] audit: type=1326 audit(1757031630.585:1398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11834 comm="syz.4.1778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  505.422528][T11837] syz.4.1779: attempt to access beyond end of device
[  505.422528][T11837] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[  505.461387][   T28] audit: type=1800 audit(1757031630.865:1399): pid=11837 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1779" name="file2" dev="loop4" ino=1048639 res=0 errno=0
[  505.483551][T11837] syz.4.1779: attempt to access beyond end of device
[  505.483551][T11837] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[  505.514686][T11837] syz.4.1779: attempt to access beyond end of device
[  505.514686][T11837] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[  505.528336][T11837] syz.4.1779: attempt to access beyond end of device
[  505.528336][T11837] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[  505.542935][T11837] syz.4.1779: attempt to access beyond end of device
[  505.542935][T11837] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[  505.557894][T11847] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1782'.
[  505.575334][T11847] loop3: detected capacity change from 0 to 512
[  505.586027][T11837] syz.4.1779: attempt to access beyond end of device
[  505.586027][T11837] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[  505.604781][T11837] syz.4.1779: attempt to access beyond end of device
[  505.604781][T11837] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[  505.619268][T11847] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  505.627360][T11847] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  505.627514][T11837] syz.4.1779: attempt to access beyond end of device
[  505.627514][T11837] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[  505.635543][T11847] System zones: 0-1, 15-15, 18-18, 34-34
[  505.635977][T11847] EXT4-fs (loop3): orphan cleanup on readonly fs
[  505.661461][T11847] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=0
[  505.671079][T11847] EXT4-fs warning (device loop3): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  505.685721][T11847] EXT4-fs (loop3): Cannot turn on quotas: error -22
[  505.703430][T11847] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.1782: bg 0: block 40: padding at end of block bitmap is not set
[  505.717995][T11847] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  505.728354][T11847] EXT4-fs (loop3): 1 truncate cleaned up
[  505.730577][T11849] loop7: detected capacity change from 0 to 1024
[  505.735679][T11847] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  505.765552][T11846] pim6reg1: entered promiscuous mode
[  505.771038][T11846] pim6reg1: entered allmulticast mode
[  505.800246][T11849] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  505.917755][T11849] netlink: 'syz.7.1784': attribute type 3 has an invalid length.
[  506.148699][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  506.420590][T11862] loop4: detected capacity change from 0 to 8192
[  506.958248][T11868] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1788'.
[  506.984700][T11868] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1788'.
[  507.003634][T11868] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1788'.
[  507.081720][T10897] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  507.346041][T11873] netlink: 28 bytes leftover after parsing attributes in process `syz.7.1789'.
[  507.387429][T11876] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0
[  507.604468][T11883] loop7: detected capacity change from 0 to 1024
[  507.686738][T11883] EXT4-fs (loop7): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  507.749131][T11883] ext4 filesystem being mounted at /81/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  507.825936][T11883] EXT4-fs error (device loop7): ext4_map_blocks:718: inode #15: block 2: comm syz.7.1793: lblock 2 mapped to illegal pblock 2 (length 4)
[  507.832796][T11892] loop3: detected capacity change from 0 to 1024
[  507.857973][T11892] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  507.900457][T11892] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  507.946086][    T8] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  508.002686][T11892] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.1797: bg 0: block 494: padding at end of block bitmap is not set
[  508.032095][T11892] EXT4-fs (loop3): Remounting filesystem read-only
[  508.040912][T11892] EXT4-fs (loop3): error restoring inline_data for inode -- potential data loss! (inode 15, error -5)
[  508.091588][T10897] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  508.161086][    T8] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  508.183356][    T8] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  508.208905][    T8] usb 7-1: Product: syz
[  508.220177][    T8] usb 7-1: Manufacturer: syz
[  508.232120][    T8] usb 7-1: SerialNumber: syz
[  508.279254][    T8] usb 7-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  508.369241][ T5779] usb 7-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  508.667319][    T8] usb 7-1: USB disconnect, device number 10
[  508.743624][T11906] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1799'.
[  508.778076][T11906] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1799'.
[  508.799688][T11906] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1799'.
[  508.811967][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  509.426082][ T5779] ath9k_htc 7-1:1.0: ath9k_htc: Target is unresponsive
[  509.442202][ T5779] ath9k_htc: Failed to initialize the device
[  509.468356][    T8] usb 7-1: ath9k_htc: USB layer deinitialized
[  509.877684][T11927] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1809'.
[  509.916134][T11927] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1809'.
[  509.959687][T11927] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1809'.
[  510.487452][T11937] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1810'.
[  510.505257][T11937] loop7: detected capacity change from 0 to 512
[  510.842812][T11937] EXT4-fs (loop7): revision level too high, forcing read-only mode
[  510.853000][T11937] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  510.861303][T11937] System zones: 0-1, 15-15, 18-18, 34-34
[  510.867401][T11937] EXT4-fs (loop7): orphan cleanup on readonly fs
[  510.873946][T11937] __quota_error: 1 callbacks suppressed
[  510.873962][T11937] Quota error (device loop7): v2_read_header: Failed header read: expected=8 got=0
[  510.889037][T11937] EXT4-fs warning (device loop7): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  510.903711][T11937] EXT4-fs (loop7): Cannot turn on quotas: error -22
[  510.924031][T11937] EXT4-fs error (device loop7): ext4_validate_block_bitmap:439: comm syz.7.1810: bg 0: block 40: padding at end of block bitmap is not set
[  510.958810][T11937] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  510.968565][T11937] EXT4-fs (loop7): 1 truncate cleaned up
[  510.975762][T11937] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  511.291057][T10897] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  511.359980][T11945] loop3: detected capacity change from 0 to 1024
[  511.384716][T11945] EXT4-fs: Ignoring removed nobh option
[  511.390346][T11945] EXT4-fs: inline encryption not supported
[  511.442378][T11945] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  511.539216][T11949] loop7: detected capacity change from 0 to 1024
[  511.547501][T11949] EXT4-fs: Ignoring removed bh option
[  511.591902][T11945] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  511.606165][T11949] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  511.696015][T11945] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4031: comm syz.3.1814: Allocating blocks 385-513 which overlap fs metadata
[  511.758127][T11962] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1819'.
[  511.770386][T11962] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1819'.
[  511.773161][T10897] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  511.779789][T11962] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1819'.
[  511.829402][T11944] EXT4-fs (loop3): pa ffff88805b837cb0: logic 16, phys. 129, len 24
[  511.837629][T11944] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 8
[  512.218366][T11969] netlink: 'syz.6.1822': attribute type 39 has an invalid length.
[  512.280089][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  513.250643][T11988] loop7: detected capacity change from 0 to 1024
[  513.272734][T11988] EXT4-fs: Ignoring removed bh option
[  513.358984][T11988] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  513.433499][T11992] loop3: detected capacity change from 0 to 1024
[  513.539740][T11998] loop4: detected capacity change from 0 to 1024
[  513.547668][T11998] EXT4-fs: Ignoring removed nobh option
[  513.548009][T11992] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  513.553344][T11998] EXT4-fs: inline encryption not supported
[  513.590682][T11998] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  513.604720][T11992] ext4 filesystem being mounted at /468/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  513.670901][T11998] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  513.732971][T10897] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  513.748612][T11998] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4031: comm syz.4.1831: Allocating blocks 385-513 which overlap fs metadata
[  513.835234][T11996] EXT4-fs (loop4): pa ffff88805b837ae0: logic 16, phys. 129, len 24
[  513.843420][T11996] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 8
[  514.606841][T12010] lo speed is unknown, defaulting to 1000
[  515.100058][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  515.124557][ T7905] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  515.461480][T12019] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1837'.
[  515.957402][T12031] loop3: detected capacity change from 0 to 1024
[  516.033679][T12031] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  516.052218][T12033] loop6: detected capacity change from 0 to 1024
[  516.080484][T12033] EXT4-fs: Ignoring removed nobh option
[  516.087771][T12031] ext4 filesystem being mounted at /470/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  516.121796][T12031] EXT4-fs error (device loop3): ext4_map_blocks:718: inode #15: block 2: comm syz.3.1842: lblock 2 mapped to illegal pblock 2 (length 4)
[  516.130329][T12033] EXT4-fs: inline encryption not supported
[  516.198030][T12033] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  516.302316][T12033] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  516.347834][T12041] netlink: 14 bytes leftover after parsing attributes in process `syz.7.1844'.
[  516.377548][T12043] loop4: detected capacity change from 0 to 1024
[  516.387939][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  516.407520][T12033] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4031: comm syz.6.1843: Allocating blocks 385-513 which overlap fs metadata
[  516.414993][T12043] EXT4-fs: Ignoring removed nomblk_io_submit option
[  516.460008][T12043] EXT4-fs: Ignoring removed bh option
[  516.480873][T12032] EXT4-fs (loop6): pa ffff88805b82f828: logic 16, phys. 129, len 24
[  516.489115][T12032] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 8
[  516.519160][T12043] EXT4-fs (loop4): VFS: Can't find ext4 filesystem
[  516.527353][T12044] loop7: detected capacity change from 0 to 2048
[  516.578431][T12047] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1846'.
[  516.617737][T12044] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  516.677462][ T9084] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  516.830878][T10897] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  517.051100][T12063] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1851'.
[  517.337601][T12069] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1856'.
[  517.628648][T12079] loop3: detected capacity change from 0 to 1024
[  517.645352][T12079] EXT4-fs: Ignoring removed bh option
[  517.684133][T12079] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  517.955603][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  517.973946][T12088] loop4: detected capacity change from 0 to 2048
[  518.041936][T12088] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  518.074190][T12088] ext4 filesystem being mounted at /297/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  518.176733][T12088] tipc: New replicast peer: 255.255.255.255
[  518.184506][T12088] tipc: Enabled bearer <udp:syz2>, priority 10
[  518.269102][ T7905] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  518.275732][T12100] syz.7.1868[12100] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  518.279502][T12100] syz.7.1868[12100] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  518.580526][T12111] tipc: Started in network mode
[  518.613626][T12111] tipc: Node identity fffffffa, cluster identity 4711
[  518.631846][T12111] tipc: Node number set to 4294967290
[  518.948694][T12122] loop6: detected capacity change from 0 to 1024
[  518.974737][T12122] EXT4-fs: Ignoring removed bh option
[  519.015489][T12122] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  519.027949][T12128] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1876'.
[  519.178433][ T9084] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  519.195128][T12132] loop3: detected capacity change from 0 to 1024
[  519.274661][T12132] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  519.305910][ T5779] tipc: Node number set to 615541481
[  519.410626][T12132] ext4 filesystem being mounted at /478/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  519.540700][T12144] random: crng reseeded on system resumption
[  519.875917][T12132] EXT4-fs error (device loop3): ext4_map_blocks:718: inode #15: block 2: comm syz.3.1878: lblock 2 mapped to illegal pblock 2 (length 4)
[  520.693048][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  521.009883][T12160] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  521.042117][T12160] syzkaller0: entered promiscuous mode
[  521.050362][T12160] syzkaller0: entered allmulticast mode
[  521.070275][T12162] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1888'.
[  521.113201][T12160] tipc: Resetting bearer <eth:syzkaller0>
[  521.136216][T12164] loop6: detected capacity change from 0 to 1024
[  521.149556][T12164] EXT4-fs: Ignoring removed bh option
[  521.155727][T12159] tipc: Resetting bearer <eth:syzkaller0>
[  521.208254][T12159] tipc: Disabling bearer <eth:syzkaller0>
[  521.218959][T12164] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  521.358635][ T9084] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  521.371148][T12173] loop7: detected capacity change from 0 to 1024
[  521.425138][T12173] EXT4-fs (loop7): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  521.443124][T12173] ext4 filesystem being mounted at /104/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  521.513501][T12173] EXT4-fs error (device loop7): ext4_map_blocks:718: inode #15: block 2: comm syz.7.1892: lblock 2 mapped to illegal pblock 2 (length 4)
[  521.577284][T12173] EXT4-fs error (device loop7): ext4_map_blocks:718: inode #15: block 3: comm syz.7.1892: lblock 3 mapped to illegal pblock 3 (length 3)
[  521.597232][T12173] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  521.610026][T12173] EXT4-fs (loop7): This should not happen!! Data will be lost
[  521.610026][T12173] 
[  521.644767][T12180] EXT4-fs error (device loop7): ext4_map_blocks:608: inode #15: block 3: comm syz.7.1892: lblock 3 mapped to illegal pblock 3 (length 3)
[  521.839842][   T48] EXT4-fs error (device loop7): ext4_map_blocks:718: inode #15: block 8: comm kworker/u4:3: lblock 8 mapped to illegal pblock 8 (length 8)
[  521.871864][   T48] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  521.903417][   T48] EXT4-fs (loop7): This should not happen!! Data will be lost
[  521.903417][   T48] 
[  521.928414][T10897] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  522.030634][T12189] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1899'.
[  522.204693][T12194] loop4: detected capacity change from 0 to 1024
[  522.218526][T12194] EXT4-fs: Ignoring removed bh option
[  522.245769][T12194] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  522.365887][T12201] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1903'.
[  522.411662][ T7905] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  522.818882][T12211] loop6: detected capacity change from 0 to 1024
[  522.908339][T12211] EXT4-fs (loop6): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  522.923662][T12211] ext4 filesystem being mounted at /245/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  523.072915][T12211] EXT4-fs error (device loop6): ext4_map_blocks:718: inode #15: block 3: comm syz.6.1906: lblock 3 mapped to illegal pblock 3 (length 3)
[  523.113833][T12211] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  523.144241][T12211] EXT4-fs (loop6): This should not happen!! Data will be lost
[  523.144241][T12211] 
[  523.164008][T12221] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #15: block 3: comm syz.6.1906: lblock 3 mapped to illegal pblock 3 (length 3)
[  523.278659][ T1075] EXT4-fs error (device loop6): ext4_map_blocks:718: inode #15: block 8: comm kworker/u4:6: lblock 8 mapped to illegal pblock 8 (length 8)
[  523.308044][T12223] loop4: detected capacity change from 0 to 128
[  523.324073][ T1075] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  523.357267][T12223] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  523.374534][ T1075] EXT4-fs (loop6): This should not happen!! Data will be lost
[  523.374534][ T1075] 
[  523.393653][T12223] ext4 filesystem being mounted at /310/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  523.399649][ T9084] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  523.445363][T12225] netlink: 24 bytes leftover after parsing attributes in process `syz.7.1910'.
[  523.647252][ T7905] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  523.715351][T12228] loop3: detected capacity change from 0 to 1024
[  523.755306][T12228] EXT4-fs: Ignoring removed bh option
[  523.828134][T12228] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  523.948463][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  524.257865][T12249] loop7: detected capacity change from 0 to 1024
[  524.261473][T12250] loop4: detected capacity change from 0 to 764
[  524.341447][T12249] EXT4-fs (loop7): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  524.387284][T12255] rock: directory entry would overflow storage
[  524.405169][T12249] ext4 filesystem being mounted at /110/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  524.423930][T12255] rock: sig=0x4f50, size=4, remaining=3
[  524.434692][T12255] iso9660: Corrupted directory entry in block 6 of inode 1792
[  524.477068][T12249] EXT4-fs error (device loop7): ext4_map_blocks:718: inode #15: block 3: comm syz.7.1919: lblock 3 mapped to illegal pblock 3 (length 3)
[  524.491913][T12249] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  524.507674][T12249] EXT4-fs (loop7): This should not happen!! Data will be lost
[  524.507674][T12249] 
[  524.522545][T12249] EXT4-fs error (device loop7): ext4_map_blocks:608: inode #15: block 3: comm syz.7.1919: lblock 3 mapped to illegal pblock 3 (length 3)
[  524.606969][ T1119] EXT4-fs error (device loop7): ext4_map_blocks:718: inode #15: block 8: comm kworker/u4:9: lblock 8 mapped to illegal pblock 8 (length 8)
[  524.624472][ T1119] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  524.638462][ T1119] EXT4-fs (loop7): This should not happen!! Data will be lost
[  524.638462][ T1119] 
[  524.657197][T10897] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  524.715478][T12259] sch_tbf: peakrate 64 is lower than or equals to rate 17038211371681383082 !
[  524.762410][T12261] loop3: detected capacity change from 0 to 1024
[  524.772735][T12261] EXT4-fs: Ignoring removed bh option
[  524.811952][T12261] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  524.841483][T12263] loop7: detected capacity change from 0 to 2048
[  524.881477][T12263] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  524.923119][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  524.982815][T12263] EXT4-fs (loop7): shut down requested (0)
[  525.168734][T10897] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  525.199847][   T28] audit: type=1326 audit(1757031650.955:1401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12272 comm="syz.3.1926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a71d8ebe9 code=0x7ffc0000
[  525.282735][   T28] audit: type=1326 audit(1757031650.985:1402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12272 comm="syz.3.1926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=238 compat=0 ip=0x7f2a71d8ebe9 code=0x7ffc0000
[  525.291839][T12276] loop4: detected capacity change from 0 to 512
[  525.334158][   T28] audit: type=1326 audit(1757031650.985:1403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12272 comm="syz.3.1926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a71d8ebe9 code=0x7ffc0000
[  525.419283][T12276] EXT4-fs error (device loop4): ext4_orphan_get:1399: inode #15: comm syz.4.1928: casefold flag without casefold feature
[  525.479215][T12276] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.1928: couldn't read orphan inode 15 (err -117)
[  525.545655][T12276] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  525.730770][ T7905] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  525.768089][T12289] loop6: detected capacity change from 0 to 1024
[  525.864610][T12289] EXT4-fs (loop6): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  525.892746][T12295] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1933'.
[  525.976375][T12289] ext4 filesystem being mounted at /252/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  525.992023][T12297] loop7: detected capacity change from 0 to 1024
[  526.014839][T12297] EXT4-fs: Ignoring removed bh option
[  526.026851][T12289] EXT4-fs error (device loop6): ext4_map_blocks:718: inode #15: block 3: comm syz.6.1932: lblock 3 mapped to illegal pblock 3 (length 3)
[  526.092160][T12301] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #15: block 3: comm syz.6.1932: lblock 3 mapped to illegal pblock 3 (length 3)
[  526.125268][T12289] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  526.141394][T12297] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  526.157354][T12289] EXT4-fs (loop6): This should not happen!! Data will be lost
[  526.157354][T12289] 
[  526.277106][T11043] EXT4-fs error (device loop6): ext4_map_blocks:718: inode #15: block 8: comm kworker/u4:12: lblock 8 mapped to illegal pblock 8 (length 8)
[  526.303625][T10897] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  526.335013][T11043] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  526.377720][T11043] EXT4-fs (loop6): This should not happen!! Data will be lost
[  526.377720][T11043] 
[  526.420912][ T9084] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  527.186046][T12330] loop6: detected capacity change from 0 to 1024
[  527.223953][T12330] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  527.233838][T12330] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  527.243587][T12330] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  527.276528][T12330] EXT4-fs error (device loop6): ext4_get_journal_inode:5807: inode #5: comm syz.6.1946: unexpected bad inode w/o EXT4_IGET_BAD
[  527.292457][T12330] EXT4-fs (loop6): no journal found
[  527.297820][T12330] EXT4-fs (loop6): can't get journal size
[  527.397897][T12330] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  528.429557][T12335] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1948'.
[  528.636471][T12337] loop7: detected capacity change from 0 to 128
[  528.740143][T12339] loop3: detected capacity change from 0 to 1024
[  528.889610][T12339] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  528.968038][T12339] ext4 filesystem being mounted at /496/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  529.069213][T12339] EXT4-fs error (device loop3): ext4_map_blocks:718: inode #15: block 3: comm syz.3.1950: lblock 3 mapped to illegal pblock 3 (length 3)
[  529.114032][T12339] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  529.164227][T12339] EXT4-fs (loop3): This should not happen!! Data will be lost
[  529.164227][T12339] 
[  529.192024][T12345] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #15: block 3: comm syz.3.1950: lblock 3 mapped to illegal pblock 3 (length 3)
[  529.275638][  T993] bio_check_eod: 379 callbacks suppressed
[  529.275655][  T993] kworker/u4:5: attempt to access beyond end of device
[  529.275655][  T993] loop7: rw=1, sector=145, nr_sectors = 896 limit=128
[  529.299474][ T1075] EXT4-fs error (device loop3): ext4_map_blocks:718: inode #15: block 8: comm kworker/u4:6: lblock 8 mapped to illegal pblock 8 (length 8)
[  529.352016][ T1075] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  529.366514][ T1075] EXT4-fs (loop3): This should not happen!! Data will be lost
[  529.366514][ T1075] 
[  529.382646][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  529.952885][T12364] loop7: detected capacity change from 0 to 512
[  530.011087][T12364] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  530.031504][T12367] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1958'.
[  530.055184][T12364] EXT4-fs (loop7): 1 truncate cleaned up
[  530.072107][T12364] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  531.199561][T10897] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  531.497822][T12380] loop4: detected capacity change from 0 to 512
[  531.647517][T12380] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  531.655795][T12380] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  531.664315][T12380] System zones: 0-1, 15-15, 18-18, 34-34
[  531.672013][T12380] EXT4-fs (loop4): orphan cleanup on readonly fs
[  531.679033][T12380] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=0
[  531.689036][T12380] EXT4-fs warning (device loop4): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  531.703751][T12380] EXT4-fs (loop4): Cannot turn on quotas: error -22
[  531.758769][T12380] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.1961: bg 0: block 40: padding at end of block bitmap is not set
[  531.776435][T12380] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  531.787511][T12380] EXT4-fs (loop4): 1 truncate cleaned up
[  531.799900][T12380] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  532.179206][ T7905] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  532.418361][   T28] audit: type=1326 audit(1757031658.175:1404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12392 comm="syz.4.1964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  532.474189][   T28] audit: type=1326 audit(1757031658.175:1405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12392 comm="syz.4.1964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  532.524737][   T28] audit: type=1326 audit(1757031658.175:1406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12392 comm="syz.4.1964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  532.555486][   T28] audit: type=1326 audit(1757031658.175:1407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12392 comm="syz.4.1964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=93 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  532.592732][   T28] audit: type=1326 audit(1757031658.175:1408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12392 comm="syz.4.1964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  532.618448][   T28] audit: type=1326 audit(1757031658.175:1409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12392 comm="syz.4.1964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ecff8ebe9 code=0x7ffc0000
[  532.690392][T12397] loop4: detected capacity change from 0 to 512
[  532.724764][T12397] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  532.768069][T12397] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a003c11c, mo2=0002]
[  532.777424][T12397] System zones: 1-12
[  532.789744][T12397] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2244: inode #15: comm syz.4.1968: corrupted in-inode xattr: e_value size too large
[  532.828407][T12397] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.1968: couldn't read orphan inode 15 (err -117)
[  532.857677][T12397] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  532.941646][ T7905] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  533.229280][T12410] block device autoloading is deprecated and will be removed.
[  533.252658][T12410] syz.4.1971: attempt to access beyond end of device
[  533.252658][T12410] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  533.312435][T12412] netlink: 348 bytes leftover after parsing attributes in process `syz.7.1972'.
[  533.602006][ T9084] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  534.197541][T12426] loop6: detected capacity change from 0 to 512
[  534.423535][T12426] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  534.431625][T12426] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  534.440238][T12426] System zones: 0-1, 15-15, 18-18, 34-34
[  534.448052][T12426] EXT4-fs (loop6): orphan cleanup on readonly fs
[  534.455151][T12426] Quota error (device loop6): v2_read_header: Failed header read: expected=8 got=0
[  534.464973][T12426] EXT4-fs warning (device loop6): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  534.481283][T12426] EXT4-fs (loop6): Cannot turn on quotas: error -22
[  534.503555][T12426] EXT4-fs error (device loop6): ext4_validate_block_bitmap:439: comm syz.6.1974: bg 0: block 40: padding at end of block bitmap is not set
[  534.523553][T12426] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  534.539093][T12426] EXT4-fs (loop6): 1 truncate cleaned up
[  534.582198][T12426] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  534.866527][ T9084] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  538.026400][T12501] loop3: detected capacity change from 0 to 4096
[  538.074549][T12501] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  538.194780][T12501] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #15: comm syz.3.2005: corrupted inode contents
[  538.243316][T12501] EXT4-fs error (device loop3): ext4_dirty_inode:6106: inode #15: comm syz.3.2005: mark_inode_dirty error
[  538.245302][T12499] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  538.274850][T12501] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #15: comm syz.3.2005: corrupted inode contents
[  538.333087][T12501] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #15: comm syz.3.2005: mark_inode_dirty error
[  538.390687][T12501] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #15: comm syz.3.2005: corrupted inode contents
[  538.422489][T12501] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #15: comm syz.3.2005: mark_inode_dirty error
[  538.444649][T12501] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #15: comm syz.3.2005: corrupted inode contents
[  538.467107][T12501] EXT4-fs error (device loop3): ext4_truncate:4288: inode #15: comm syz.3.2005: mark_inode_dirty error
[  538.481974][T12501] EXT4-fs error (device loop3): ext4_evict_inode:263: comm syz.3.2005: couldn't truncate inode 15 (err -117)
[  538.598220][T12523] loop4: detected capacity change from 0 to 2048
[  538.619834][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  538.640534][T12523] EXT4-fs (loop4): failed to initialize system zone (-117)
[  538.651179][T12523] EXT4-fs (loop4): mount failed
[  539.304656][T12540] loop9: detected capacity change from 0 to 7
[  539.415826][T12544] loop6: detected capacity change from 0 to 512
[  539.519128][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  539.528403][    C0] buffer_io_error: 10 callbacks suppressed
[  539.528418][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  539.560195][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  539.569480][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  539.579218][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  539.588435][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  539.639499][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  539.648812][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  539.662419][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  539.671677][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  539.681674][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  539.690907][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  539.700323][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  539.709552][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  539.750262][T12540] ldm_validate_partition_table(): Disk read failed.
[  539.823868][T12544] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  539.832032][T12544] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  539.840776][T12544] System zones: 0-1, 15-15, 18-18, 34-34
[  539.848560][T12544] EXT4-fs (loop6): orphan cleanup on readonly fs
[  539.855586][T12544] Quota error (device loop6): v2_read_header: Failed header read: expected=8 got=0
[  539.865503][T12544] EXT4-fs warning (device loop6): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  539.880165][T12544] EXT4-fs (loop6): Cannot turn on quotas: error -22
[  539.909318][T12544] EXT4-fs error (device loop6): ext4_validate_block_bitmap:439: comm syz.6.2016: bg 0: block 40: padding at end of block bitmap is not set
[  539.933333][T12544] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  539.944234][T12544] EXT4-fs (loop6): 1 truncate cleaned up
[  539.957169][T12544] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  540.227569][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  540.236876][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  540.248107][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  540.257354][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  540.277046][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  540.286303][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  540.301985][T12540] Dev loop9: unable to read RDB block 0
[  540.331872][T12540]  loop9: unable to read partition table
[  540.348313][T12540] loop9: partition table beyond EOD, truncated
[  540.387991][T12540] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  540.387991][T12540] 
) failed (rc=-5)
[  540.514407][ T9084] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  540.557308][T12548] loop4: detected capacity change from 0 to 512
[  540.580615][T12548] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  540.640649][T12548] EXT4-fs (loop4): 1 truncate cleaned up
[  540.675882][T12548] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  540.699787][T12554] program syz.3.2022 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  540.731149][T12556] loop6: detected capacity change from 0 to 512
[  540.743871][T12556] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  540.842402][T12556] EXT4-fs (loop6): 1 truncate cleaned up
[  540.880525][T12556] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  540.949762][T12556] EXT4-fs (loop6): shut down requested (1)
[  540.953059][ T7905] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  541.076907][ T9084] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  541.492429][T12581] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  541.505913][T12581] syzkaller0: entered promiscuous mode
[  541.511615][T12581] syzkaller0: entered allmulticast mode
[  541.525279][T12580] tipc: Resetting bearer <eth:syzkaller0>
[  541.575433][T12580] tipc: Disabling bearer <eth:syzkaller0>
[  541.780305][T12583] loop3: detected capacity change from 0 to 512
[  542.084950][T12583] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  542.093116][T12583] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  542.101714][T12583] System zones: 0-1, 15-15, 18-18, 34-34
[  542.109313][T12583] EXT4-fs (loop3): orphan cleanup on readonly fs
[  542.116293][T12583] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=0
[  542.126060][T12583] EXT4-fs warning (device loop3): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  542.140707][T12583] EXT4-fs (loop3): Cannot turn on quotas: error -22
[  542.178641][T12583] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.2030: bg 0: block 40: padding at end of block bitmap is not set
[  542.197256][T12583] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  542.207940][T12583] EXT4-fs (loop3): 1 truncate cleaned up
[  542.220534][T12583] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  542.523525][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  543.008608][T12602] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2036'.
[  543.026243][T12602] loop4: detected capacity change from 0 to 512
[  543.073999][T12602] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  543.082025][T12602] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  543.090304][T12602] System zones: 0-1, 15-15, 18-18, 34-34
[  543.096466][T12602] EXT4-fs (loop4): orphan cleanup on readonly fs
[  543.103019][T12602] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=0
[  543.112508][T12602] EXT4-fs warning (device loop4): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  543.127199][T12602] EXT4-fs (loop4): Cannot turn on quotas: error -22
[  543.135690][T12602] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.2036: bg 0: block 40: padding at end of block bitmap is not set
[  543.150392][T12602] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  543.169692][T12602] EXT4-fs (loop4): 1 truncate cleaned up
[  543.433128][T12610] loop6: detected capacity change from 0 to 512
[  543.455998][T12610] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  543.521234][T12610] EXT4-fs warning (device loop6): ext4_update_dynamic_rev:1154: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  543.540444][T12610] EXT4-fs error (device loop6): ext4_validate_block_bitmap:439: comm syz.6.2040: bg 0: block 248: padding at end of block bitmap is not set
[  543.561015][T12610] Quota error (device loop6): write_blk: dquota write failed
[  543.569057][T12610] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  543.581889][T12610] EXT4-fs error (device loop6): ext4_acquire_dquot:6940: comm syz.6.2040: Failed to acquire dquot type 1
[  543.598829][T12610] EXT4-fs (loop6): 1 truncate cleaned up
[  543.766259][ T9084] EXT4-fs unmount: 3 callbacks suppressed
[  543.766278][ T9084] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0008-000000000000.
[  543.781790][ T1106] Quota error (device loop6): do_check_range: Getting block 0 out of range 1-5
[  543.796057][ T1106] EXT4-fs error (device loop6): ext4_release_dquot:6976: comm kworker/u4:8: Failed to release dquot type 1
[  543.829530][T12621] loop4: detected capacity change from 0 to 8192
[  544.033749][T12623] batman_adv: batadv0: Interface deactivated: virt_wifi0
[  544.741362][T12627] loop4: detected capacity change from 0 to 4096
[  544.936270][T12627] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  545.022850][T12627] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2045'.
[  545.615557][T12627] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[  545.625166][T12627] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[  545.634824][T12627] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  546.578458][T12645] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2051'.
[  546.811947][ T7905] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  546.950425][T12645] veth1_vlan (unregistering): left allmulticast mode
[  547.228345][T12650] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2052'.
[  547.245996][T12650] loop4: detected capacity change from 0 to 512
[  547.294337][T12650] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  547.302349][T12650] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  547.310603][T12650] System zones: 0-1, 15-15, 18-18, 34-34
[  547.316685][T12650] EXT4-fs (loop4): orphan cleanup on readonly fs
[  547.323135][T12650] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=0
[  547.332668][T12650] EXT4-fs warning (device loop4): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  547.347461][T12650] EXT4-fs (loop4): Cannot turn on quotas: error -22
[  547.369237][T12650] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.2052: bg 0: block 40: padding at end of block bitmap is not set
[  547.394352][T12650] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  547.408196][T12650] EXT4-fs (loop4): 1 truncate cleaned up
[  547.415227][T12650] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  547.591185][T12656] loop3: detected capacity change from 0 to 512
[  547.616164][T12656] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  547.632598][T12656] ext4 filesystem being mounted at /535/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  547.663819][T12656] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  547.679696][T12656] EXT4-fs (loop3): Remounting filesystem read-only
[  547.713173][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  547.723318][ T1106] Quota error (device loop3): dquot_write_dquot: Can't write quota structure (error -5). Quota may get out of sync!
[  547.736782][ T1106] Quota error (device loop3): dquot_write_dquot: Can't write quota structure (error -5). Quota may get out of sync!
[  547.859707][ T7905] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  548.515977][T12678] cgroup: Invalid name
[  548.572483][T12680] loop4: detected capacity change from 0 to 512
[  548.582664][T12680] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  548.600061][T12680] EXT4-fs (loop4): 1 truncate cleaned up
[  548.607693][T12680] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  548.650729][ T7905] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  563.099980][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  563.106415][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  563.347494][ T5779] usb 4-1: USB disconnect, device number 4
[  624.538718][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  624.545437][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  685.978278][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  685.984840][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  703.893554][   T29] INFO: task kworker/0:6:5879 blocked for more than 143 seconds.
[  703.901616][   T29]       Not tainted syzkaller #0
[  703.906835][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  703.915597][   T29] task:kworker/0:6     state:D stack:23048 pid:5879  ppid:2      flags:0x00004000
[  703.924961][   T29] Workqueue: events rfkill_global_led_trigger_worker
[  703.931751][   T29] Call Trace:
[  703.935316][   T29]  <TASK>
[  703.938299][   T29]  __schedule+0x14d2/0x44d0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  703.946495][   T29]  ? mark_lock+0x94/0x320
[  703.951052][   T29]  ? asan.module_dtor+0x20/0x20
[  703.965463][   T29]  ? lockdep_hardirqs_on+0x98/0x150
[  703.982457][   T29]  schedule+0xbd/0x170
[  704.027431][   T29]  schedule_preempt_disabled+0x13/0x20
[  704.032988][   T29]  __mutex_lock+0x6b7/0xcc0
[  704.037633][   T29]  ? __mutex_lock+0x4e8/0xcc0
[  704.042473][   T29]  ? rfkill_global_led_trigger_worker+0x27/0xd0
[  704.048931][   T29]  ? mutex_lock_nested+0x20/0x20
[  704.054021][   T29]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  704.060153][   T29]  ? read_lock_is_recursive+0x20/0x20
[  704.075710][   T29]  ? process_scheduled_works+0x957/0x15b0
[  704.081526][   T29]  rfkill_global_led_trigger_worker+0x27/0xd0
[  704.092027][   T29]  ? process_scheduled_works+0x957/0x15b0
[  704.100260][   T29]  process_scheduled_works+0xa45/0x15b0
[  704.106265][   T29]  ? assign_work+0x400/0x400
[  704.110971][   T29]  ? assign_work+0x39e/0x400
[  704.115664][   T29]  worker_thread+0xa55/0xfc0
[  704.120301][   T29]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  704.126385][   T29]  ? _raw_spin_unlock+0x40/0x40
[  704.131310][   T29]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[  704.137449][   T29]  kthread+0x2fa/0x390
[  704.141699][   T29]  ? pr_cont_work+0x560/0x560
[  704.146539][   T29]  ? kthread_blkcg+0xd0/0xd0
[  704.151175][   T29]  ret_from_fork+0x48/0x80
[  704.155724][   T29]  ? kthread_blkcg+0xd0/0xd0
[  704.160407][   T29]  ret_from_fork_asm+0x11/0x20
[  704.165258][   T29]  </TASK>
[  704.168351][   T29] INFO: task syz.7.2042:12611 blocked for more than 143 seconds.
[  704.176437][   T29]       Not tainted syzkaller #0
[  704.181416][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  704.190175][   T29] task:syz.7.2042      state:D stack:25320 pid:12611 ppid:10897  flags:0x00004004
[  704.199612][   T29] Call Trace:
[  704.202945][   T29]  <TASK>
[  704.205969][   T29]  __schedule+0x14d2/0x44d0
[  704.210534][   T29]  ? __kernfs_remove+0x720/0x840
[  704.218105][   T29]  ? asan.module_dtor+0x20/0x20
[  704.223038][   T29]  ? __mutex_lock+0x6b2/0xcc0
[  704.227913][   T29]  ? __mutex_trylock_common+0x84/0x250
[  704.233566][   T29]  ? trace_raw_output_contention_end+0xd0/0xd0
[  704.239815][   T29]  schedule+0xbd/0x170
[  704.244118][   T29]  schedule_preempt_disabled+0x13/0x20
[  704.249640][   T29]  __mutex_lock+0x6b7/0xcc0
[  704.254339][   T29]  ? __mutex_lock+0x4e8/0xcc0
[  704.259091][   T29]  ? rfkill_unregister+0xc8/0x220
[  704.265523][   T29]  ? mutex_lock_nested+0x20/0x20
[  704.270749][   T29]  ? kill_device+0x160/0x160
[  704.275461][   T29]  ? nfc_genl_device_removed+0x22e/0x320
[  704.281314][   T29]  ? destroy_workqueue+0x898/0xf20
[  704.286655][   T29]  ? nfc_genl_setup_device_added+0x320/0x320
[  704.292864][   T29]  ? destroy_workqueue+0xd80/0xf20
[  704.298103][   T29]  ? destroy_workqueue+0x898/0xf20
[  704.303380][   T29]  rfkill_unregister+0xc8/0x220
[  704.308309][   T29]  nfc_unregister_device+0x96/0x2a0
[  704.313718][   T29]  ? virtual_ncidev_open+0x1a0/0x1a0
[  704.319057][   T29]  virtual_ncidev_close+0x59/0x90
[  704.324388][   T29]  __fput+0x234/0x970
[  704.328465][   T29]  task_work_run+0x1ce/0x250
[  704.333216][   T29]  ? task_work_cancel+0x240/0x240
[  704.338293][   T29]  ? exit_to_user_mode_loop+0x3b/0x110
[  704.343852][   T29]  exit_to_user_mode_loop+0xe6/0x110
[  704.349225][   T29]  exit_to_user_mode_prepare+0xb1/0x140
[  704.354951][   T29]  syscall_exit_to_user_mode+0x1a/0x50
[  704.360461][   T29]  do_syscall_64+0x61/0xb0
[  704.365237][   T29]  ? clear_bhb_loop+0x40/0x90
[  704.369955][   T29]  ? clear_bhb_loop+0x40/0x90
[  704.375202][   T29]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  704.381158][   T29] RIP: 0033:0x7fd52ef8ebe9
[  704.385717][   T29] RSP: 002b:00007ffd431e0418 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  704.394226][   T29] RAX: 0000000000000000 RBX: 00007fd52f1c7da0 RCX: 00007fd52ef8ebe9
[  704.402226][   T29] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  704.410310][   T29] RBP: 00007fd52f1c7da0 R08: 0000000000000fa4 R09: 00000011431e070f
[  704.418359][   T29] R10: 00007fd52f1c7cb0 R11: 0000000000000246 R12: 0000000000084e1a
[  704.426500][   T29] R13: 00007fd52f1c6090 R14: ffffffffffffffff R15: 00007ffd431e0530
[  704.434674][   T29]  </TASK>
[  704.437924][   T29] INFO: task syz.6.2044:12623 blocked for more than 143 seconds.
[  704.447043][   T29]       Not tainted syzkaller #0
[  704.452033][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  704.460780][   T29] task:syz.6.2044      state:D stack:24304 pid:12623 ppid:9084   flags:0x00004006
[  704.470213][   T29] Call Trace:
[  704.473791][   T29]  <TASK>
[  704.476765][   T29]  __schedule+0x14d2/0x44d0
[  704.481298][   T29]  ? asan.module_dtor+0x20/0x20
[  704.486251][   T29]  ? __mutex_lock+0x6b2/0xcc0
[  704.490987][   T29]  ? __mutex_trylock_common+0x84/0x250
[  704.496584][   T29]  ? trace_raw_output_contention_end+0xd0/0xd0
[  704.502807][   T29]  schedule+0xbd/0x170
[  704.506982][   T29]  schedule_preempt_disabled+0x13/0x20
[  704.512509][   T29]  __mutex_lock+0x6b7/0xcc0
[  704.517117][   T29]  ? __mutex_lock+0x4e8/0xcc0
[  704.521846][   T29]  ? nfc_rfkill_set_block+0x50/0x2e0
[  704.527402][   T29]  ? mutex_lock_nested+0x20/0x20
[  704.532479][   T29]  ? lockdep_hardirqs_on+0x98/0x150
[  704.537773][   T29]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  704.543801][   T29]  ? _raw_spin_unlock+0x40/0x40
[  704.548701][   T29]  ? nfc_unregister_device+0x2a0/0x2a0
[  704.554460][   T29]  nfc_rfkill_set_block+0x50/0x2e0
[  704.559639][   T29]  ? nfc_unregister_device+0x2a0/0x2a0
[  704.565256][   T29]  rfkill_set_block+0x1c6/0x420
[  704.570192][   T29]  rfkill_fop_write+0x45c/0x570
[  704.575253][   T29]  ? end_current_label_crit_section+0x149/0x170
[  704.581552][   T29]  ? rfkill_fop_read+0x4b0/0x4b0
[  704.586804][   T29]  ? iov_iter_iovec_advance+0xf0/0x290
[  704.592311][   T29]  do_iter_write+0x50e/0xc70
[  704.596984][   T29]  ? rfkill_fop_read+0x4b0/0x4b0
[  704.601965][   T29]  ? vfs_iter_write+0xa0/0xa0
[  704.606785][   T29]  ? __import_iovec+0x3fa/0x860
[  704.611696][   T29]  ? import_iovec+0x73/0xa0
[  704.616276][   T29]  do_writev+0x252/0x410
[  704.620563][   T29]  ? do_readv+0x3e0/0x3e0
[  704.625023][   T29]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  704.631040][   T29]  ? lock_chain_count+0x20/0x20
[  704.635986][   T29]  ? lockdep_hardirqs_on+0x98/0x150
[  704.641227][   T29]  do_syscall_64+0x55/0xb0
[  704.645735][   T29]  ? clear_bhb_loop+0x40/0x90
[  704.650453][   T29]  ? clear_bhb_loop+0x40/0x90
[  704.655211][   T29]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  704.661145][   T29] RIP: 0033:0x7fbab3b8ebe9
[  704.665667][   T29] RSP: 002b:00007fbab4acf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  704.674183][   T29] RAX: ffffffffffffffda RBX: 00007fbab3dc5fa0 RCX: 00007fbab3b8ebe9
[  704.682180][   T29] RDX: 0000000000000002 RSI: 0000200000000180 RDI: 0000000000000005
[  704.690243][   T29] RBP: 00007fbab3c11e19 R08: 0000000000000000 R09: 0000000000000000
[  704.698550][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  704.706646][   T29] R13: 00007fbab3dc6038 R14: 00007fbab3dc5fa0 R15: 00007ffd5af6c788
[  704.714760][   T29]  </TASK>
[  704.717864][   T29] INFO: task syz.3.2057:12667 blocked for more than 144 seconds.
[  704.725716][   T29]       Not tainted syzkaller #0
[  704.730680][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  704.739415][   T29] task:syz.3.2057      state:D stack:25128 pid:12667 ppid:5787   flags:0x00004004
[  704.748722][   T29] Call Trace:
[  704.752012][   T29]  <TASK>
[  704.755049][   T29]  __schedule+0x14d2/0x44d0
[  704.759607][   T29]  ? asan.module_dtor+0x20/0x20
[  704.764561][   T29]  ? __mutex_lock+0x6b2/0xcc0
[  704.769274][   T29]  ? __mutex_trylock_common+0x84/0x250
[  704.774915][   T29]  ? trace_raw_output_contention_end+0xd0/0xd0
[  704.781138][   T29]  schedule+0xbd/0x170
[  704.785374][   T29]  schedule_preempt_disabled+0x13/0x20
[  704.790875][   T29]  __mutex_lock+0x6b7/0xcc0
[  704.795513][   T29]  ? __mutex_lock+0x4e8/0xcc0
[  704.800234][   T29]  ? rfkill_register+0x37/0x8e0
[  704.805386][   T29]  ? mutex_lock_nested+0x20/0x20
[  704.810364][   T29]  ? __init_waitqueue_head+0xa9/0x150
[  704.815811][   T29]  ? device_initialize+0x24b/0x440
[  704.820990][   T29]  rfkill_register+0x37/0x8e0
[  704.825793][   T29]  nfc_register_device+0x14a/0x320
[  704.830955][   T29]  nci_register_device+0x880/0x9d0
[  704.836193][   T29]  ? nci_free_device+0x90/0x90
[  704.841008][   T29]  ? __init_waitqueue_head+0xa9/0x150
[  704.846521][   T29]  virtual_ncidev_open+0x12c/0x1a0
[  704.851690][   T29]  ? virtual_ncidev_ioctl+0xd0/0xd0
[  704.857007][   T29]  misc_open+0x2f9/0x370
[  704.861301][   T29]  chrdev_open+0x59e/0x670
[  704.865811][   T29]  ? cd_forget+0x160/0x160
[  704.870260][   T29]  ? fsnotify_perm+0x3ed/0x5e0
[  704.875127][   T29]  ? cd_forget+0x160/0x160
[  704.879580][   T29]  do_dentry_open+0x8c6/0x1500
[  704.884455][   T29]  path_openat+0x274b/0x3190
[  704.889095][   T29]  ? __kasan_slab_alloc+0x6c/0x80
[  704.894207][   T29]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  704.900317][   T29]  ? verify_lock_unused+0x140/0x140
[  704.905656][   T29]  ? do_filp_open+0x3d0/0x3d0
[  704.910387][   T29]  ? __virt_addr_valid+0x18c/0x540
[  704.915800][   T29]  do_filp_open+0x1c5/0x3d0
[  704.920357][   T29]  ? vfs_tmpfile+0x490/0x490
[  704.925081][   T29]  ? _raw_spin_unlock+0x28/0x40
[  704.929970][   T29]  ? alloc_fd+0x58f/0x630
[  704.934375][   T29]  do_sys_openat2+0x12c/0x1c0
[  704.939088][   T29]  ? do_sys_open+0xe0/0xe0
[  704.943606][   T29]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  704.949654][   T29]  ? lock_chain_count+0x20/0x20
[  704.954617][   T29]  __x64_sys_openat+0x139/0x160
[  704.959518][   T29]  do_syscall_64+0x55/0xb0
[  704.964058][   T29]  ? clear_bhb_loop+0x40/0x90
[  704.968785][   T29]  ? clear_bhb_loop+0x40/0x90
[  704.973578][   T29]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  704.979539][   T29] RIP: 0033:0x7f2a71d8ebe9
[  704.984270][   T29] RSP: 002b:00007f2a72b52038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  704.992728][   T29] RAX: ffffffffffffffda RBX: 00007f2a71fc5fa0 RCX: 00007f2a71d8ebe9
[  705.000839][   T29] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  705.009012][   T29] RBP: 00007f2a71e11e19 R08: 0000000000000000 R09: 0000000000000000
[  705.017095][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  705.025524][   T29] R13: 00007f2a71fc6038 R14: 00007f2a71fc5fa0 R15: 00007ffecfb30e88
[  705.033754][   T29]  </TASK>
[  705.036843][   T29] INFO: task syz.4.2064:12688 blocked for more than 144 seconds.
[  705.044732][   T29]       Not tainted syzkaller #0
[  705.049695][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  705.058438][   T29] task:syz.4.2064      state:D stack:27912 pid:12688 ppid:7905   flags:0x00004004
[  705.067740][   T29] Call Trace:
[  705.071306][   T29]  <TASK>
[  705.074385][   T29]  __schedule+0x14d2/0x44d0
[  705.078959][   T29]  ? asan.module_dtor+0x20/0x20
[  705.083940][   T29]  ? __mutex_lock+0x6b2/0xcc0
[  705.088662][   T29]  ? __mutex_trylock_common+0x84/0x250
[  705.094551][   T29]  ? trace_raw_output_contention_end+0xd0/0xd0
[  705.100790][   T29]  schedule+0xbd/0x170
[  705.104991][   T29]  schedule_preempt_disabled+0x13/0x20
[  705.110495][   T29]  __mutex_lock+0x6b7/0xcc0
[  705.115100][   T29]  ? __mutex_lock+0x4e8/0xcc0
[  705.119818][   T29]  ? misc_open+0x5a/0x370
[  705.124273][   T29]  ? mutex_lock_nested+0x20/0x20
[  705.129261][   T29]  ? __lock_acquire+0x7c80/0x7c80
[  705.134627][   T29]  ? kobject_get_unless_zero+0x162/0x1f0
[  705.140326][   T29]  ? __kobject_del+0x300/0x300
[  705.145203][   T29]  ? __asan_memset+0x22/0x40
[  705.149840][   T29]  misc_open+0x5a/0x370
[  705.154102][   T29]  chrdev_open+0x59e/0x670
[  705.158552][   T29]  ? cd_forget+0x160/0x160
[  705.162984][   T29]  ? fsnotify_perm+0x3ed/0x5e0
[  705.167847][   T29]  ? cd_forget+0x160/0x160
[  705.172297][   T29]  do_dentry_open+0x8c6/0x1500
[  705.177423][   T29]  path_openat+0x274b/0x3190
[  705.182100][   T29]  ? __kasan_slab_alloc+0x6c/0x80
[  705.187672][   T29]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  705.193937][   T29]  ? verify_lock_unused+0x140/0x140
[  705.199187][   T29]  ? do_filp_open+0x3d0/0x3d0
[  705.204117][   T29]  ? __virt_addr_valid+0x18c/0x540
[  705.209281][   T29]  do_filp_open+0x1c5/0x3d0
[  705.213890][   T29]  ? vfs_tmpfile+0x490/0x490
[  705.218540][   T29]  ? _raw_spin_unlock+0x28/0x40
[  705.223491][   T29]  ? alloc_fd+0x58f/0x630
[  705.227883][   T29]  do_sys_openat2+0x12c/0x1c0
[  705.232944][   T29]  ? do_sys_open+0xe0/0xe0
[  705.237534][   T29]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  705.243661][   T29]  ? lock_chain_count+0x20/0x20
[  705.248577][   T29]  __x64_sys_openat+0x139/0x160
[  705.253817][   T29]  do_syscall_64+0x55/0xb0
[  705.258290][   T29]  ? clear_bhb_loop+0x40/0x90
[  705.263088][   T29]  ? clear_bhb_loop+0x40/0x90
[  705.268245][   T29]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  705.274282][   T29] RIP: 0033:0x7f2ecff8ebe9
[  705.278734][   T29] RSP: 002b:00007f2ed0e9c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  705.287312][   T29] RAX: ffffffffffffffda RBX: 00007f2ed01c5fa0 RCX: 00007f2ecff8ebe9
[  705.295416][   T29] RDX: 0000000000000302 RSI: 0000200000000340 RDI: ffffffffffffff9c
[  705.303605][   T29] RBP: 00007f2ed0011e19 R08: 0000000000000000 R09: 0000000000000000
[  705.311617][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  705.319758][   T29] R13: 00007f2ed01c6038 R14: 00007f2ed01c5fa0 R15: 00007ffc2c921028
[  705.327852][   T29]  </TASK>
[  705.330926][   T29] INFO: task syz-executor:12695 blocked for more than 144 seconds.
[  705.338939][   T29]       Not tainted syzkaller #0
[  705.344004][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  705.352692][   T29] task:syz-executor    state:D stack:27912 pid:12695 ppid:1      flags:0x00004000
[  705.362029][   T29] Call Trace:
[  705.365575][   T29]  <TASK>
[  705.368559][   T29]  __schedule+0x14d2/0x44d0
[  705.373114][   T29]  ? asan.module_dtor+0x20/0x20
[  705.378053][   T29]  ? __mutex_lock+0x6b2/0xcc0
[  705.382743][   T29]  ? __mutex_trylock_common+0x84/0x250
[  705.388339][   T29]  ? trace_raw_output_contention_end+0xd0/0xd0
[  705.394604][   T29]  schedule+0xbd/0x170
[  705.398701][   T29]  schedule_preempt_disabled+0x13/0x20
[  705.404255][   T29]  __mutex_lock+0x6b7/0xcc0
[  705.408805][   T29]  ? __mutex_lock+0x4e8/0xcc0
[  705.413999][   T29]  ? misc_open+0x5a/0x370
[  705.418384][   T29]  ? mutex_lock_nested+0x20/0x20
[  705.423457][   T29]  ? __lock_acquire+0x7c80/0x7c80
[  705.428623][   T29]  ? kobject_get_unless_zero+0x162/0x1f0
[  705.434375][   T29]  ? __kobject_del+0x300/0x300
[  705.439200][   T29]  ? __asan_memset+0x22/0x40
[  705.443895][   T29]  misc_open+0x5a/0x370
[  705.448111][   T29]  chrdev_open+0x59e/0x670
[  705.452540][   T29]  ? cd_forget+0x160/0x160
[  705.457028][   T29]  ? fsnotify_perm+0x3ed/0x5e0
[  705.461856][   T29]  ? cd_forget+0x160/0x160
[  705.466352][   T29]  do_dentry_open+0x8c6/0x1500
[  705.471166][   T29]  path_openat+0x274b/0x3190
[  705.476084][   T29]  ? verify_lock_unused+0x140/0x140
[  705.481336][   T29]  ? __lock_acquire+0x7c80/0x7c80
[  705.486484][   T29]  ? do_filp_open+0x3d0/0x3d0
[  705.491218][   T29]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  705.497259][   T29]  do_filp_open+0x1c5/0x3d0
[  705.501788][   T29]  ? vfs_tmpfile+0x490/0x490
[  705.506507][   T29]  ? _raw_spin_unlock+0x28/0x40
[  705.511427][   T29]  ? alloc_fd+0x58f/0x630
[  705.515867][   T29]  do_sys_openat2+0x12c/0x1c0
[  705.520586][   T29]  ? __bpf_trace_rcu_stall_warning+0x140/0x140
[  705.526833][   T29]  ? do_sys_open+0xe0/0xe0
[  705.531323][   T29]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  705.537503][   T29]  ? fd_install+0x60/0x4e0
[  705.541977][   T29]  ? lock_chain_count+0x20/0x20
[  705.546925][   T29]  __x64_sys_openat+0x139/0x160
[  705.551844][   T29]  do_syscall_64+0x55/0xb0
[  705.556326][   T29]  ? clear_bhb_loop+0x40/0x90
[  705.561040][   T29]  ? clear_bhb_loop+0x40/0x90
[  705.565939][   T29]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  705.571964][   T29] RIP: 0033:0x7ff33198d4d1
[  705.576454][   T29] RSP: 002b:00007ffce59dae20 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[  705.585192][   T29] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007ff33198d4d1
[  705.593254][   T29] RDX: 0000000000000002 RSI: 00007ff331a12822 RDI: 00000000ffffff9c
[  705.601282][   T29] RBP: 00007ff331a12822 R08: 0000000000000000 R09: 00007ff3326fd6c0
[  705.609369][   T29] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
[  705.617434][   T29] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  705.625520][   T29]  </TASK>
[  705.628580][   T29] INFO: task syz-executor:12696 blocked for more than 145 seconds.
[  705.636619][   T29]       Not tainted syzkaller #0
[  705.641579][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  705.650384][   T29] task:syz-executor    state:D stack:27912 pid:12696 ppid:1      flags:0x00004000
[  705.659696][   T29] Call Trace:
[  705.663015][   T29]  <TASK>
[  705.666067][   T29]  __schedule+0x14d2/0x44d0
[  705.670629][   T29]  ? asan.module_dtor+0x20/0x20
[  705.675557][   T29]  ? __mutex_lock+0x6b2/0xcc0
[  705.680304][   T29]  ? __mutex_trylock_common+0x84/0x250
[  705.685881][   T29]  ? trace_raw_output_contention_end+0xd0/0xd0
[  705.692090][   T29]  schedule+0xbd/0x170
[  705.696596][   T29]  schedule_preempt_disabled+0x13/0x20
[  705.702103][   T29]  __mutex_lock+0x6b7/0xcc0
[  705.706742][   T29]  ? __mutex_lock+0x4e8/0xcc0
[  705.711471][   T29]  ? misc_open+0x5a/0x370
[  705.715944][   T29]  ? mutex_lock_nested+0x20/0x20
[  705.720954][   T29]  ? __lock_acquire+0x7c80/0x7c80
[  705.726109][   T29]  ? kobject_get_unless_zero+0x162/0x1f0
[  705.731810][   T29]  ? __kobject_del+0x300/0x300
[  705.736762][   T29]  ? __asan_memset+0x22/0x40
[  705.741436][   T29]  misc_open+0x5a/0x370
[  705.745990][   T29]  chrdev_open+0x59e/0x670
[  705.750445][   T29]  ? cd_forget+0x160/0x160
[  705.755024][   T29]  ? fsnotify_perm+0x3ed/0x5e0
[  705.759834][   T29]  ? cd_forget+0x160/0x160
[  705.764335][   T29]  do_dentry_open+0x8c6/0x1500
[  705.769139][   T29]  path_openat+0x274b/0x3190
[  705.773912][   T29]  ? verify_lock_unused+0x140/0x140
[  705.779143][   T29]  ? __lock_acquire+0x7c80/0x7c80
[  705.784289][   T29]  ? do_filp_open+0x3d0/0x3d0
[  705.789016][   T29]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  705.795138][   T29]  do_filp_open+0x1c5/0x3d0
[  705.799692][   T29]  ? vfs_tmpfile+0x490/0x490
[  705.804464][   T29]  ? _raw_spin_unlock+0x28/0x40
[  705.809357][   T29]  ? alloc_fd+0x58f/0x630
[  705.813778][   T29]  do_sys_openat2+0x12c/0x1c0
[  705.818495][   T29]  ? __bpf_trace_rcu_stall_warning+0x140/0x140
[  705.824734][   T29]  ? do_sys_open+0xe0/0xe0
[  705.829684][   T29]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  705.835759][   T29]  ? fd_install+0x60/0x4e0
[  705.840214][   T29]  ? lock_chain_count+0x20/0x20
[  705.845256][   T29]  __x64_sys_openat+0x139/0x160
[  705.850145][   T29]  do_syscall_64+0x55/0xb0
[  705.854655][   T29]  ? clear_bhb_loop+0x40/0x90
[  705.859376][   T29]  ? clear_bhb_loop+0x40/0x90
[  705.864135][   T29]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  705.870087][   T29] RIP: 0033:0x7f53f238d4d1
[  705.874619][   T29] RSP: 002b:00007ffc95c2d020 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[  705.883076][   T29] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f53f238d4d1
[  705.891158][   T29] RDX: 0000000000000002 RSI: 00007f53f2412822 RDI: 00000000ffffff9c
[  705.899209][   T29] RBP: 00007f53f2412822 R08: 0000000000000000 R09: 00007f53f30fd6c0
[  705.907488][   T29] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
[  705.915681][   T29] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  705.924044][   T29]  </TASK>
[  705.927104][   T29] 
[  705.927104][   T29] Showing all locks held in the system:
[  705.934922][   T29] 1 lock held by khungtaskd/29:
[  705.939847][   T29]  #0: ffffffff8cd2fc20 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x290
[  705.949820][   T29] 2 locks held by getty/5554:
[  705.954571][   T29]  #0: ffff88802cf8e0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  705.964455][   T29]  #1: ffffc9000327b2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x425/0x1380
[  705.974799][   T29] 3 locks held by kworker/0:6/5879:
[  705.980045][   T29]  #0: ffff888017870938 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x957/0x15b0
[  705.991157][   T29]  #1: ffffc90004cbfd00 ((work_completion)(&rfkill_global_led_trigger_work)){+.+.}-{0:0}, at: process_scheduled_works+0x957/0x15b0
[  706.004808][   T29]  #2: ffffffff8e297d68 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_global_led_trigger_worker+0x27/0xd0
[  706.016329][   T29] 1 lock held by syz.4.932/9113:
[  706.021300][   T29]  #0: ffffffff8e297d68 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_unregister+0xc8/0x220
[  706.031974][   T29] 2 locks held by syz.7.2042/12611:
[  706.037261][   T29]  #0: ffff88805ec63100 (&dev->mutex){....}-{3:3}, at: nfc_unregister_device+0x63/0x2a0
[  706.047118][   T29]  #1: ffffffff8e297d68 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_unregister+0xc8/0x220
[  706.057854][   T29] 2 locks held by syz.6.2044/12623:
[  706.063082][   T29]  #0: ffffffff8e297d68 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_fop_write+0x1a2/0x570
[  706.073377][   T29]  #1: ffff88805ec63100 (&dev->mutex){....}-{3:3}, at: nfc_rfkill_set_block+0x50/0x2e0
[  706.083539][   T29] 3 locks held by syz.3.2057/12667:
[  706.088867][   T29]  #0: ffffffff8d4c3508 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x5a/0x370
[  706.097517][   T29]  #1: ffff88801b3ba100 (&dev->mutex){....}-{3:3}, at: nfc_register_device+0xa1/0x320
[  706.107238][   T29]  #2: ffffffff8e297d68 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_register+0x37/0x8e0
[  706.117311][   T29] 1 lock held by syz.4.2064/12688:
[  706.122454][   T29]  #0: ffffffff8d4c3508 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x5a/0x370
[  706.131119][   T29] 1 lock held by syz-executor/12695:
[  706.136548][   T29]  #0: ffffffff8d4c3508 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x5a/0x370
[  706.145178][   T29] 1 lock held by syz-executor/12696:
[  706.150499][   T29]  #0: ffffffff8d4c3508 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x5a/0x370
[  706.159064][   T29] 1 lock held by syz-executor/12702:
[  706.164526][   T29]  #0: ffffffff8d4c3508 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x5a/0x370
[  706.173058][   T29] 1 lock held by syz-executor/12704:
[  706.178433][   T29]  #0: ffffffff8d4c3508 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x5a/0x370
[  706.187001][   T29] 1 lock held by syz-executor/12706:
[  706.192306][   T29]  #0: ffffffff8d4c3508 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x5a/0x370
[  706.200862][   T29] 1 lock held by syz-executor/12708:
[  706.206255][   T29]  #0: ffffffff8d4c3508 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x5a/0x370
[  706.215379][   T29] 1 lock held by syz-executor/12710:
[  706.221390][   T29]  #0: ffffffff8d4c3508 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x5a/0x370
[  706.230376][   T29] 1 lock held by syz-executor/12712:
[  706.235959][   T29]  #0: ffffffff8d4c3508 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x5a/0x370
[  706.244667][   T29] 1 lock held by syz-executor/12715:
[  706.249980][   T29]  #0: ffffffff8d4c3508 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x5a/0x370
[  706.258567][   T29] 1 lock held by syz-executor/12716:
[  706.263955][   T29]  #0: ffffffff8d4c3508 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x5a/0x370
[  706.272662][   T29] 1 lock held by syz-executor/12718:
[  706.278061][   T29]  #0: ffffffff8d4c3508 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x5a/0x370
[  706.286892][   T29] 1 lock held by syz-executor/12720:
[  706.292207][   T29]  #0: ffffffff8d4c3508 (misc_mtx){+.+.}-{3:3}, at: misc_open+0x5a/0x370
[  706.300995][   T29] 
[  706.306975][   T29] =============================================
[  706.306975][   T29] 
[  706.315810][   T29] NMI backtrace for cpu 1
[  706.320192][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted syzkaller #0
[  706.327512][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  706.337599][   T29] Call Trace:
[  706.340994][   T29]  <TASK>
[  706.343945][   T29]  dump_stack_lvl+0x16c/0x230
[  706.348675][   T29]  ? show_regs_print_info+0x20/0x20
[  706.353887][   T29]  ? load_image+0x3b0/0x3b0
[  706.358400][   T29]  nmi_cpu_backtrace+0x39b/0x3d0
[  706.363359][   T29]  ? nmi_trigger_cpumask_backtrace+0x2f0/0x2f0
[  706.369563][   T29]  ? _printk+0xd0/0x110
[  706.373740][   T29]  ? load_image+0x3b0/0x3b0
[  706.378273][   T29]  ? load_image+0x3b0/0x3b0
[  706.382788][   T29]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  706.388874][   T29]  nmi_trigger_cpumask_backtrace+0x17a/0x2f0
[  706.394882][   T29]  watchdog+0xf41/0xf80
[  706.399063][   T29]  ? watchdog+0x1e1/0xf80
[  706.403418][   T29]  kthread+0x2fa/0x390
[  706.407588][   T29]  ? hungtask_pm_notify+0x90/0x90
[  706.412655][   T29]  ? kthread_blkcg+0xd0/0xd0
[  706.417361][   T29]  ret_from_fork+0x48/0x80
[  706.421796][   T29]  ? kthread_blkcg+0xd0/0xd0
[  706.426410][   T29]  ret_from_fork_asm+0x11/0x20
[  706.431224][   T29]  </TASK>
[  706.434532][   T29] Sending NMI from CPU 1 to CPUs 0:
[  706.439795][    C0] NMI backtrace for cpu 0
[  706.439806][    C0] CPU: 0 PID: 993 Comm: kworker/u4:5 Not tainted syzkaller #0
[  706.439823][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  706.439834][    C0] Workqueue: events_unbound nsim_dev_trap_report_work
[  706.439856][    C0] RIP: 0010:kasan_check_range+0x89/0x290
[  706.439878][    C0] Code: 00 fc ff df 4d 8d 34 19 4d 89 f4 4d 29 dc 49 83 fc 10 7f 29 4d 85 e4 0f 84 41 01 00 00 4c 89 cb 48 f7 d3 4c 01 fb 41 80 3b 00 <0f> 85 cc 01 00 00 49 ff c3 48 ff c3 75 ee e9 21 01 00 00 44 89 dd
[  706.439893][    C0] RSP: 0018:ffffc900043cf928 EFLAGS: 00000246
[  706.439906][    C0] RAX: ffffffff849eb501 RBX: fffffffffffffff9 RCX: ffffffff849eb64e
[  706.439919][    C0] RDX: 0000000000000001 RSI: 0000000000000040 RDI: ffffc900043cf9a0
[  706.439930][    C0] RBP: 0000000000000000 R08: ffffc900043cf9df R09: 1ffff92000879f3b
[  706.439941][    C0] R10: dffffc0000000000 R11: fffff52000879f35 R12: 0000000000000008
[  706.439953][    C0] R13: 0000000000000002 R14: fffff52000879f3c R15: 1ffff92000879f34
[  706.439964][    C0] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  706.439978][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  706.439989][    C0] CR2: 00005626fe29afb0 CR3: 000000000cb30000 CR4: 00000000003506f0
[  706.440004][    C0] Call Trace:
[  706.440009][    C0]  <TASK>
[  706.440019][    C0]  __asan_memset+0x22/0x40
[  706.440041][    C0]  _get_random_bytes+0x1be/0x210
[  706.440064][    C0]  ? get_random_bytes+0x20/0x20
[  706.440099][    C0]  nsim_dev_trap_report_work+0x646/0xb00
[  706.440127][    C0]  ? process_scheduled_works+0x957/0x15b0
[  706.440147][    C0]  process_scheduled_works+0xa45/0x15b0
[  706.440182][    C0]  ? assign_work+0x400/0x400
[  706.440205][    C0]  ? assign_work+0x39e/0x400
[  706.440227][    C0]  worker_thread+0xa55/0xfc0
[  706.440247][    C0]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  706.440264][    C0]  ? _raw_spin_unlock+0x40/0x40
[  706.440288][    C0]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[  706.440314][    C0]  kthread+0x2fa/0x390
[  706.440328][    C0]  ? pr_cont_work+0x560/0x560
[  706.440347][    C0]  ? kthread_blkcg+0xd0/0xd0
[  706.440362][    C0]  ret_from_fork+0x48/0x80
[  706.440380][    C0]  ? kthread_blkcg+0xd0/0xd0
[  706.440396][    C0]  ret_from_fork_asm+0x11/0x20
[  706.440426][    C0]  </TASK>
[  706.442555][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[  706.673201][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted syzkaller #0
[  706.680406][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  706.690469][   T29] Call Trace:
[  706.693762][   T29]  <TASK>
[  706.696718][   T29]  dump_stack_lvl+0x16c/0x230
[  706.701417][   T29]  ? show_regs_print_info+0x20/0x20
[  706.706631][   T29]  ? load_image+0x3b0/0x3b0
[  706.711160][   T29]  panic+0x2c0/0x710
[  706.715093][   T29]  ? schedule_preempt_disabled+0x20/0x20
[  706.720747][   T29]  ? bpf_jit_dump+0xd0/0xd0
[  706.725264][   T29]  ? __irq_work_queue_local+0x13a/0x3b0
[  706.730824][   T29]  ? nmi_trigger_cpumask_backtrace+0x2a4/0x2f0
[  706.736997][   T29]  watchdog+0xf80/0xf80
[  706.741181][   T29]  ? watchdog+0x1e1/0xf80
[  706.745530][   T29]  kthread+0x2fa/0x390
[  706.749607][   T29]  ? hungtask_pm_notify+0x90/0x90
[  706.754649][   T29]  ? kthread_blkcg+0xd0/0xd0
[  706.759251][   T29]  ret_from_fork+0x48/0x80
[  706.763679][   T29]  ? kthread_blkcg+0xd0/0xd0
[  706.768280][   T29]  ret_from_fork_asm+0x11/0x20
[  706.773078][   T29]  </TASK>
[  706.776466][   T29] Kernel Offset: disabled
[  706.780800][   T29] Rebooting in 86400 seconds..