last executing test programs:

6m14.295604126s ago: executing program 0 (id=127):
r0 = socket$kcm(0x2, 0xa, 0x2)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000000)={'bond0\x00', &(0x7f0000000040)=@ethtool_sfeatures={0x3b, 0x2, [{}, {0xfffffffe, 0x80003}]}})

6m14.207516277s ago: executing program 0 (id=134):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000580)=@updpolicy={0xc4, 0x19, 0x501, 0x0, 0x25dfdbfb, {{@in6=@private0, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0xfffffffffffffffc}, {}, 0x0, 0x0, 0x2}, [@offload={0xc, 0x1c, {0x0, 0x4}}]}, 0xc4}}, 0x0)

6m14.063847398s ago: executing program 0 (id=135):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0a000000030000000800000001"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000400)={{r0}, 0x0, &(0x7f00000003c0)='%-010d \x00'}, 0x20)

6m13.778394513s ago: executing program 0 (id=137):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x8, &(0x7f00000001c0)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}}]}, &(0x7f0000000300)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
io_submit(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f0000000400)='./file0\x00', 0x410c84, &(0x7f00000003c0)={[{@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x4}}]}, 0x1, 0x775, &(0x7f0000001180)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
r3 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = inotify_init()
r5 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
r6 = inotify_add_watch(r4, &(0x7f0000000240)='./file0\x00', 0x8c7)
write$binfmt_elf32(r5, &(0x7f0000000040)=ANY=[@ANYRES64=r6], 0x69)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000080000000c"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
close(r5)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1b, 0xc, &(0x7f0000000680)=ANY=[@ANYRESOCT=r7, @ANYRES32=r9, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180200000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r9}, &(0x7f0000000180), &(0x7f00000001c0)=r3}, 0x20)
r10 = openat$binfmt_register(0xffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$binfmt_register(r10, &(0x7f0000000000)={0x3a, 'syz3', 0x3a, 'E', 0x3a, 0x6, 0x3a, 'E', 0x3a, '@{@$\x9a$^', 0x3a, './file2', 0x3a, [0x46, 0x43, 0x43]}, 0x32)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r11}, 0x10)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)

6m12.890505464s ago: executing program 0 (id=147):
r0 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0)
write$binfmt_register(r0, &(0x7f0000000400)={0x3a, 'syz2', 0x3a, 'M', 0x3a, 0x8, 0x3a, '{', 0x3a, '', 0x3a, './file0', 0x3a, [0x46, 0x4f, 0x4f]}, 0x2b)

6m12.294401582s ago: executing program 0 (id=169):
r0 = socket$igmp6(0xa, 0x3, 0x2)
sendmmsg$inet6(r0, &(0x7f0000000000)=[{{&(0x7f00000019c0)={0xa, 0x0, 0x0, @local, 0xfffffffb}, 0x1c, 0x0, 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x138}}], 0x1, 0x24005efe)

6m11.317034774s ago: executing program 32 (id=169):
r0 = socket$igmp6(0xa, 0x3, 0x2)
sendmmsg$inet6(r0, &(0x7f0000000000)=[{{&(0x7f00000019c0)={0xa, 0x0, 0x0, @local, 0xfffffffb}, 0x1c, 0x0, 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x138}}], 0x1, 0x24005efe)

18.082923546s ago: executing program 3 (id=4842):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000080), 0x81, 0x7a5, &(0x7f0000000f80)="$eJzs3c9rXNUeAPDvnfxq0r6XPHjwXl0FBA2UTkyNrYKLigsRLBR0bRsm01AzyZTMpDQh0BYR3AgqLgTddO2PunPrj63+Fy6kpWparLiQkTuZSSbNTJq0mZlgPh+4uefcc2/O+c65P87MvcwEcGCNpn8yEUcj4v0kYri2PImIvmqqN+L02nr3V1dy6ZREpfL6r0l1nXurK7lo2CZ1uJb5f0R8907EsczWektLy7NThUJ+oZYfL89dGi8tLR+/ODc1k5/Jz5+cmJw8ceq5Uyf3Ltbff1w+cvuDV57+8vSfb//v5nvfJ3E6jtTKGuPYK6MxWntN+tKXcJOX97qyLku63QAeSXpo9qwd5XE0hqOnmmphsJMtAwDa5WpEVACAAyZx/QeAA6b+OcC91ZVcferuJxKddeeliDi0Fn/9/uZaSW/tnt2h6n3QoXvJpjsjSUSM7EH9oxHx6ddvfp5O0ab7kADNXLseEedHRree/5Mtzyzs1jPbFVYGqrPRBxY7/0HnfJOOf55vNv7LrI9/osn4Z6DJsfsoHn78Z27tQTUtpeO/FxuebbvfEH/NSE8t96/qmK8vuXCxkE/Pbf+OiLHoG0jzE9VVmz8FNXb3r7ut6m8c//324VufpfWn8401Mrd6BzZvMz1VnnrcuOvuXI94ordZ/Ml6/yctxr9nd1jHqy+8+0mrsjT+NN76tDX+9qrciHiqaf9v9GWy7fOJ49XdYby+UzTx1U8fD7Wqf6P/B6rztP76e4FOSPt/aPv4R5LG5zVLu6/jhxvD37Yqa9z/m8fffP/vT96opvtry65MlcsLExH9yWtbl5/Y2Laer6+fxj/2ZPPjv9X+n6k9G3t+Pbe93tu/fFH7V03jr7rWKv72SuOf3lX/b5Oo1LZ5oOjm/dmeVvXvrP8nq6mx2pKdnP8e0tLH2JsBAAAAAAAAAAAAAAAAAAAAAAAAYPcyEXEkkkx2PZ3JZLNrv+H93xjKFIql8rELxcX56aj+VvZI9GXqX3U53PB9qBO178Ov5088kH82Iv4TER8NDFbz2VyxMN3t4AEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACg5vDm3/+/ms6y2bWynwe63ToAoG0OdbsBAEDHuf4DwMGzu+v/YNvaAQB0zq7f/1eS9jQEAOiYHV//z7e3HQBA57j/DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQJudPXMmnSp/rK7k0vz05aXF2eLl49P50mx2bjGXzRUXLmVnisWZQj6bK861/EfX1maFYvHSZMwvXhkv50vl8dLS8rm54uJ8+dzFuamZ/Ll8X8ciAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICdKy0tz04VCvkFiW0Tg/ujGfsm0Rv7ohn/+ER/12pvPEsMdu8EBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALDP/R0AAP//aHclQg==")
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
symlink(&(0x7f00000005c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f00000002c0)='.\x02\x00')
truncate(&(0x7f0000000040)='./file2\x00', 0xa)

18.004186697s ago: executing program 3 (id=4847):
r0 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000380)='$\x00', 0x0)
fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f00000005c0)='\x00H\xeb', 0x0, r0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='syzkaller\x00', &(0x7f0000001140)='\xf1\x95\xb3>-\x8c\xd4\r\x01\xfa\xe2{eED\x0e\xaaPV\x11\xff\xb6j\xd4~6\x82^\x9b b', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r0, 0x2, &(0x7f0000000580)='\xa3\x04\x00', &(0x7f00000003c0)="c5", 0x1)
close(r0)

17.951656847s ago: executing program 3 (id=4849):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f00000002c0)=[{0x6}]}, 0x10)
write$binfmt_misc(r1, &(0x7f0000001280), 0x6)

17.951063717s ago: executing program 3 (id=4852):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x519, &(0x7f0000000340)="$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")
creat(&(0x7f0000000040)='./bus\x00', 0x24)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000500)='./bus\x00', 0x0, 0x42)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x1b, 0x0, "ef359f41a4ae6dddfbd1ce5d29c2ee5e5c9d000ff8ee09e737ff0edf110ff4eb4b78c66ee677df701905b9aafab4ffffffff00", "cba3d625780820d1cbf7db71038259ca171ce1a311ef97e4298d1e14ef01060000e9009600fdff00000000000000000000000000000000000400", "d300e6d6ae9ef30bea2a0040000000000000000000f27c0000e8ff00", [0x0, 0xffffffffffffffff]})
creat(&(0x7f0000000340)='./file0\x00', 0x0)

17.74211454s ago: executing program 3 (id=4858):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001e40)=ANY=[@ANYBLOB="b702000005000000bfa300000000000007030000007effff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065060400010000050404000001007d60b7030000000000006a0a00fe00000000850000000d000000b7000000000000009500000000000000496cf27fb6d2c643db7e2d5fb4b0936cdf827fb43a431ca711fcd0cdfa146ed3d09a6175037958e27106e225b7937f02008b5e5a076d83923dd29c034055b67dafe6c8dc525d78c07f34e4d5b3185b310efcfa89147a09000000f110026e6d2ef831ab7ea0c24f17e3ad6eecbb622003b538dfd8e012e79578e51bc53099e90f4580d760551b5b0a341a2d7cbdb9cd38bdb2ca8e050000003a14817ac61e4dd11183a13477bf7e060e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132b8667c214733a18c8b6619f28d9961b626c57c2691208173656d60a17e3c184b751c51160fbcbbdb5b1e7be6148ba532e60a0ac346dfebd71a08060000000200000000000000334d83239dd27080e71113610e10d858e8327ef01fb6c86acac12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e957bc73ddc4eabba08ab1e1ad828267d4eadd3964663e88535c133f7130856f756436303767d2e24f29e5dad9796edb697a6ea0182babc190ae2ebf8aad34732181feb215139f15ea7e8cb0bae7c34d5ac5e7c805210600000000000000c3dec04b25dfc17975238345d4f70700f781c0a99bd50499ccc421ace5e845885efb5b9964e4beba7da8223fe5308e4e65ee93e107000000f8ddebf70132a4d0175b989b8eccf707882042e716df9b57b290c661d4e85031086197bcc5cb0e221a0c34323c129102b6ff0100002e88a1940b3c02ed9c92d6f64b1282dc51bb0015982730711c599e1c72ffa11ed8be1a6830d7507005154c46bd3ca96318c570f0721fc7aa2a5836ba99fe1f86468694f22cdf550ef091a78098534f0d973059594119d06d5ea9a8d0857382ec6e2a071474cfc12346e47ad97f4ead7cf70a9d1cdac944779dc08a705414888700a30e2366c6a06b3367a389ca39059787790017b0689a173db9c24db65c1e00015c1d093dab18fd0699fe3304000000323e9c7080397bc49d70c060d57bc88fbe3bbaa058b040362ab926150363fb099408885afc2bf9a46a076b7babf8c35030669ea69f5e4be1b8e0d6697e97186f9ae97d5670dba6623279f73db9dec75070cd9ab0fda6b069ef6d2857ca3e4effcf7462710d133d541da86e0477e4a6cc999dc21c3ef408e6b178e7c9f274d7fafc8d757d33dfa35aa2000034837d365e63845f3c1092f8dde8af3904ea0f4b82649b83ed4fa0f873339c4cadecc13219ba7518aa4f7db34ead13484742067ab743c1d82a5687f2ed690000000000000000000000000000000000000000000099d4fa0000000000003f0ecdc7c82e72919c91d2039afe17e95edeeeba72205beff7771bcb293747b88486cacee403000000a2919a4bff2ed893f2c814679fa79fc7e0cf761f918725704a01c56009a9f748e5aaf30a10bd8c409b1870c1f75e26b45264e3d3f8e0048e55ae289ce2ad779ce71d4dc30cbb2cc4289d2f884d66cddc76eb7f601110ff39053c262279f4ef00fbdb8c328615a9ec84f27a9f3938ae736138b8c1ec220c1540bf3d162dc1c27fa30f0dc60b9f257db5d1c7ed2e152cb2cf06f8edb30177fead735a952ffce676a93110904d5ee2abdab2ef3ff84c4d61443f73552195c7ccfbf9f03c44432eaa3b7501d4239354da8de21eada75d3a3afb2c76ff0700007981699b6c0f0e946766f57544ff52cef0dd811bec4e3c0a30f2d7d19d26d2503a3ea376721b8eded3bc475958dd498ee2b2d6146e33fc0de1dc2e0516ac565ddb1d4ae89e6712824a85eb9ee0a3b68c9e209756623adf685dd715d68ed11e4b4d5502f5124948f8f98c615cac3666c58f785c3f758be352a71871d5c081197d37980e4f4e26b5476fb20407ff7098b7174bef66fa03a9825c0c20b378065fac4ef9ac2d0d804b9400000060e5d3f1749f6aecf69ba83a71caa9bdddc679f1b826f54b6563a4be1fd82b73c8c2bc65f63982b951fb058fd3c7b6341c4580376b6c16bd94d2da66059de81abfa15eeeb88b6ae5882ad341032c73f1285e21fff5a1d138e061b1dc7bbda199b5fab8e0719e9cd69b47dcb52b0be6a3a73afdf328132e1d4f21065716be0c53a23940d07188b015fa341dbc92231c8b5e5717eac184f46c9f61b69f55cd2231bcf821052429a1f250e8b734be0605a15f25923d599544b319319ff0a32621019347df460a098119a6f47eb1bac47946d7a009cbc6ec74c19a93cc7c7138b28c95270116181fd5f553573c48104d2ad0e10d3663e40a664401453f22f0d76d2162635365258af61ae1f46f4a7862f302d91e3f7c2781f602220522e84602a939a8d5e4137ae31ccd397404dc72e06715a6503d4d865182803ee6725da7293b23daeebefd6fce7411c9624a7e8d5ba5a13e1c32adc4f3274497c6882a72475e4280a4d9a47c003c6ed3071330c58145be813a10788a720a6b5a498ca2b42496c479a0a71e2f6f9bad8c84bc6be20281bde0b348cf2c60538a505ad4a0510eebb023e4954c9eb6cd70627f5c03d867db2f6f51ef5bac2c52c08c879a49f3ad5d1f1dc852064dd0efafc3df20ec8faf3d194db76127f88f284fa1b71ab964fdd2474471da76373e65e9a8bf844bdfdd348bc7d00c4c7e7afe8a1f8cde79b7a6c5aafe954b8ba37818e40c14b37c23f9f614576b689436fef2f27f8b1e756e00262e22bca49c43fd73e7e99b2fa44a8c1db99c2cf2735ad6c5fabf082e0df0f8ba7e24272165f2f5b28230c02b53d44bd84bf6770157e96bbb96b5e1f165c87e7ad68a3600b3d357fa9a7d53c281d88ebb175a4dbb82130e6870982947913110f091d21760d985afd3163f2e6880682432f9b3b97d57a9f980edfa1116a3d04d58872a07d6a7e12db673acd2f7b8988d833e71943fe2c1c65a3cf36b955c56b55bfd3ecf0af694c71a03f2996c15b1ba971de1cb9c7e6a0000000000000014783ef54c51199317413f98dca8ff3d0bda50f6c0af58dbd6c031b1a5a7512c5896514adfa17d31429c68db50a93d88199defd3b4625fea426ff9293a28a544a6a9e2a79b55daa1b3c6b14c4ec6d164e902ce4913843d65d841973468729ea12bf6d3499036dbb66718f3497855c3baa6cc07c0fa388ec9df0617c1a28ef5a595ee267a76175b8a057e6efaf4fefe46def451f2858fe71a53e77b1a44e98843bb3a40102da3703dfb9f61bdcea2fb810b32d52e2157a150a63ea6135d1cf6f864c2e68884d7245bc5d61dc5a114d10ffb22e76678bbfc1e3865d17d128306d1b81884a934cb00000000000000000098a4526e6468987dbc63bff7590eb388afaba43d811996333eef7e9f472bee293f0c40d434b8be07cbd52325296e22802493edb5c590ad208bac683a8b2d4c9d2d57ff846ae8c422e0b28546671f11d8157bb762c91f3fbcca8e21589c92446ae65d408c0637ffcc2d44d715ce003dd1e12b085e186d069a55c2e96efbe5024d61a56a36d988c0f51a973a6c238e545b28211a92000000001501aed8d72af0fcd540a9d4e293690c5e697b3a1480e46df5371bca1cfb28a57c1b3c956ec81397e81fbf870a67385fea04220423f52ad8178b9fd04bdc7e5fee4bd52db996e633792118efdb6b88023e80da74fdf723c7f0000000"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffff4, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r2, 0x18000000000002a0, 0xf, 0x0, &(0x7f0000000040)="76389e147583ddd0569ba56a88a855", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x48)

17.677087011s ago: executing program 3 (id=4862):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="78010000170001000000000000000000fc0000000000000000000000000000000000000000000000fe8000000000000000000000000000bbac1414bb000000000000000000000000fc00"/104, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc020000000000000000000000000000ffffffff00000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000440005007f000001000000000000000000000000000000003c00000000000000fc02000000000000000000000000000000000000000000000000000000000000000000000c00080008"], 0x178}}, 0x0)

17.628941392s ago: executing program 33 (id=4862):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="78010000170001000000000000000000fc0000000000000000000000000000000000000000000000fe8000000000000000000000000000bbac1414bb000000000000000000000000fc00"/104, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc020000000000000000000000000000ffffffff00000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000440005007f000001000000000000000000000000000000003c00000000000000fc02000000000000000000000000000000000000000000000000000000000000000000000c00080008"], 0x178}}, 0x0)

14.425777093s ago: executing program 2 (id=4921):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000040)=0x9, 0x4)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r0, &(0x7f0000000600)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=""/70, 0x46}}], 0x1, 0x0, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x42, &(0x7f0000000100)=0x1e79, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

13.578079534s ago: executing program 2 (id=4934):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x6}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xe}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
read$rfkill(r2, &(0x7f0000000200), 0x8)

13.561734434s ago: executing program 2 (id=4935):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
sendmsg$SEG6_CMD_GET_TUNSRC(r0, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000680)={0x0}, 0x1, 0x0, 0x0, 0x4008004}, 0x4000000)

13.520388965s ago: executing program 2 (id=4937):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x519, &(0x7f0000000340)="$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")
creat(&(0x7f0000000040)='./bus\x00', 0x24)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000500)='./bus\x00', 0x0, 0x42)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x1b, 0x0, "ef359f41a4ae6dddfbd1ce5d29c2ee5e5c9d000ff8ee09e737ff0edf110ff4eb4b78c66ee677df701905b9aafab4ffffffff00", "cba3d625780820d1cbf7db71038259ca171ce1a311ef97e4298d1e14ef01060000e9009600fdff00000000000000000000000000000000000400", "d300e6d6ae9ef30bea2a0040000000000000000000f27c0000e8ff00", [0x0, 0xffffffffffffffff]})
creat(&(0x7f0000000340)='./file0\x00', 0x0)

13.376547597s ago: executing program 2 (id=4943):
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.memory_pressure\x00', 0x26e1, 0x0)
r1 = socket$kcm(0x2, 0x1000000000000002, 0x0)
setsockopt$sock_attach_bpf(r1, 0x1, 0x3e, &(0x7f00000002c0)=r0, 0x161)
sendmsg$inet(r1, &(0x7f0000007940)={&(0x7f0000000100)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="2c00000000000000000000000700000044150503"], 0x30}, 0x40880)

13.270589358s ago: executing program 2 (id=4947):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000740)=@raw={'raw\x00', 0x3c1, 0x3, 0x408, 0x230, 0x12, 0x60a, 0x0, 0x202, 0x338, 0x2e8, 0x2e8, 0x338, 0x2c0, 0x4, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @dev}, @mcast2, [], [], 'veth1_to_bond\x00', 'xfrm0\x00'}, 0x0, 0x108, 0x230, 0x0, {}, [@common=@unspec=@statistic={{0x38}}, @common=@inet=@socket2={{0x28}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x57c, 'system_u:object_r:file_context_t:s0\x00'}}}, {{@ipv6={@private2, @loopback, [], [], 'vxcan1\x00', 'geneve0\x00'}, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@empty, [], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x39e}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x468)

13.251326348s ago: executing program 34 (id=4947):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000740)=@raw={'raw\x00', 0x3c1, 0x3, 0x408, 0x230, 0x12, 0x60a, 0x0, 0x202, 0x338, 0x2e8, 0x2e8, 0x338, 0x2c0, 0x4, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @dev}, @mcast2, [], [], 'veth1_to_bond\x00', 'xfrm0\x00'}, 0x0, 0x108, 0x230, 0x0, {}, [@common=@unspec=@statistic={{0x38}}, @common=@inet=@socket2={{0x28}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x57c, 'system_u:object_r:file_context_t:s0\x00'}}}, {{@ipv6={@private2, @loopback, [], [], 'vxcan1\x00', 'geneve0\x00'}, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@empty, [], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x39e}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x468)

2.227700641s ago: executing program 7 (id=5265):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @lirc_mode2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x47, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x18)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f000042f000/0x800000)=nil, 0x800000, 0x15)

1.999530314s ago: executing program 7 (id=5274):
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000240)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000000000800000"], 0x48)
syz_extract_tcp_res(&(0x7f0000000000)={<r3=>0x41424344}, 0xffffffff, 0xd)
syz_emit_ethernet(0x4a, &(0x7f0000000340)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffff2cbf92ffffff86dd600000ff00140600fe8000000000000000000000000000bbfe8800000000000000000000000000aa00", @ANYRES32=0x41424344, @ANYRES32=r3, @ANYBLOB="50d900009078ffff"], 0x0)
syz_emit_ethernet(0x1162, &(0x7f0000002c80)=ANY=[], 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r4, &(0x7f0000001ac0)={0x0, 0x600, &(0x7f0000000440)={&(0x7f0000001940)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="01dfffffff9a2600000021"], 0x20}, 0x1, 0x0, 0x0, 0x4000c00}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000ffffffff000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = syz_open_dev$usbfs(&(0x7f0000000080), 0x70, 0x101301)
ioctl$USBDEVFS_IOCTL(r7, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r7, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r6}, 0x18)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f00000004c0)={[{@acl}, {@barrier}, {@barrier_val}, {@sysvgroups}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@resuid}, {@nodelalloc}, {@acl}, {@noinit_itable}]}, 0xfc, 0x587, &(0x7f0000002100)="$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")
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYBLOB="000000000000001d8fb91a4d7389f94db0489ef8", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x3, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)

1.413366802s ago: executing program 4 (id=5298):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x19, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xfffffffb})
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

1.395860612s ago: executing program 4 (id=5299):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x2, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$inet6(0x10, 0x3, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r2}, 0x10)
sendto$inet6(r1, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)

1.367713812s ago: executing program 4 (id=5301):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000840)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000080), &(0x7f0000000340)='%pS    \x00'}, 0x20)
timer_getoverrun(0x0)

1.337241412s ago: executing program 4 (id=5303):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0b00000007000000d7c900000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(r4, 0x0, 0x60, &(0x7f0000000180)={'filter\x00', 0xfffffffffffff20, [{}, {0x0, 0x100000000000000}]}, 0x68)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000008c0)=ANY=[@ANYBLOB="1800000000000005000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000140)={0x2, 0x3, 0x0, 0x3, 0xc}, 0x60}, 0x1, 0x7}, 0x0)
r7 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(r7, 0x0, 0x60, &(0x7f0000000080)={'filter\x00', 0x58, [{}, {0x0, 0x100000000000000}]}, 0x68)
getsockopt$bt_BT_VOICE(r7, 0x112, 0xb, &(0x7f0000000380)=0x1, &(0x7f00000003c0)=0x2)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r9, 0x84, 0x84, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0xfffd}, 0x90)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r9, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000180)=[@in={0x2, 0x4e24, @local}]}, &(0x7f0000000100)=0x10)
r10 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r11 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f00000001c0)={'wg0\x00', <r13=>0x0})
sendmsg$nl_route_sched(r12, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r13, {}, {0xffff, 0xffff}, {0xd}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x51}, 0x8000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@newqdisc={0x4c, 0x24, 0x3fe3aa0262d8c583, 0x4, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x4}, {0xffff, 0xffff}, {0x0, 0xc}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x800, 0x3, 0x0, 0xfffffffe, 0x7}}}}]}, 0x4c}}, 0x0)
r14 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r14, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@getqdisc={0x24, 0x26, 0x705, 0x70bd27, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x1, 0xfff1}, {0x7, 0x8}, {0x4, 0x7}}}, 0x24}, 0x1, 0x0, 0x0, 0x40188de}, 0x0)
ioctl$TIOCSETD(r11, 0x5423, &(0x7f0000000100)=0x2)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="42870040", @ANYRES16=r10, @ANYRES8], 0x2c}, 0x1, 0x0, 0x0, 0x8040}, 0x4886)

1.146129685s ago: executing program 7 (id=5307):
pipe(&(0x7f0000000480)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
vmsplice(r0, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1)
r1 = syz_io_uring_setup(0x497, &(0x7f0000000400)={0x0, 0x707b, 0x0, 0x4, 0x288}, &(0x7f0000000340)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r1, 0x3516, 0x0, 0x4, 0x0, 0x0)

901.316828ms ago: executing program 6 (id=5311):
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x800000000003}, 0x1100, 0x5dd8, 0x0, 0x3, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})

900.809118ms ago: executing program 5 (id=5312):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000240)='kfree\x00', r1}, 0x18)
r2 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
sendfile(r2, r2, 0x0, 0x800000009)

877.982549ms ago: executing program 5 (id=5313):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000001c0)={{r0}, &(0x7f0000000040), &(0x7f0000000500)='%-010d \x00'}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x10, 0x4}}}}}}}, 0x0)

856.766969ms ago: executing program 5 (id=5314):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffdfc, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x18, 0x3, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x2d7, 0x61, 0x11, 0x94}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

818.413309ms ago: executing program 5 (id=5316):
socket$nl_generic(0x10, 0x3, 0x10)
syz_clone3(&(0x7f0000000880)={0x101000, &(0x7f0000000680), 0x0, 0x0, {}, &(0x7f0000000740)=""/76, 0x4c, 0x0, 0x0}, 0x58)
r0 = syz_io_uring_setup(0x8d2, &(0x7f00000000c0)={0x0, 0x0, 0x3010}, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r0, 0x47ba, 0x3e80, 0x0, 0x0, 0x0)

742.00681ms ago: executing program 6 (id=5319):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x39)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
ustat(0x9, &(0x7f0000000080))

741.60939ms ago: executing program 1 (id=5320):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0xfe98, &(0x7f0000000000)={&(0x7f00000002c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x1c, 0x2, [@TCA_FQ_FLOW_DEFAULT_RATE={0x18, 0x10, 0x44}, @TCA_FQ_FLOW_MAX_RATE={0x2, 0x2}, @TCA_FQ_FLOW_MAX_RATE={0x1400, 0x7, 0x3}]}}]}, 0x48}}, 0x0)

731.06648ms ago: executing program 6 (id=5321):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0a000000020000000900000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xb, 0xc, 0x4, 0xc4f, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x23, r2}, 0x38)

707.415091ms ago: executing program 1 (id=5322):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
r2 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
pwrite64(r2, &(0x7f0000000080)='3', 0x1, 0x0)

661.106231ms ago: executing program 6 (id=5323):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f00000003c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a80)={{r2}, &(0x7f0000000a00), &(0x7f0000000a40)=r1}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000900)={{r2}, &(0x7f0000000880), &(0x7f00000008c0)=r1}, 0x20)

653.253991ms ago: executing program 1 (id=5324):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b70200"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000006000000070000000900010073797a30000000003c000000090a0104"], 0xc4}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x11, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000040900010073797a300000000088000000090a010400000000000000000700000308000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d44001280200001800e000100636f6e6e6c696d69740000000c0002800800014000000008200001800e000100636f6e6e6c696d69740000000c000280080001400000e41f080003400000"], 0xd0}, 0x1, 0x0, 0x0, 0x2004c851}, 0x20050800)

584.265343ms ago: executing program 6 (id=5325):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='module_request\x00', r1}, 0x10)
socketpair(0xb, 0x6, 0x0, &(0x7f00000002c0))

558.408713ms ago: executing program 5 (id=5326):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001900)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=@newqdisc={0x5c, 0x24, 0xf0b, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x0, 0xc}, {0xffff, 0xffff}, {0xd, 0xc}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x2, 0x4}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x5, 0x5, 0x12, 0x42, 0x1, 0x1000, 0x4000}}, {0x4}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x44004}, 0x4000)

532.446533ms ago: executing program 1 (id=5327):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10)
r2 = gettid()
rt_sigqueueinfo(r2, 0x21, &(0x7f0000000000))

513.797693ms ago: executing program 1 (id=5328):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000180), 0x10)
sendmsg$can_bcm(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="05"], 0x48}}, 0x0)
sendmsg$can_bcm(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="050000000208"], 0x80}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

509.298943ms ago: executing program 6 (id=5329):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x8, &(0x7f00000001c0)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}}]}, &(0x7f0000000300)='GPL\x00', 0x9, 0x1, &(0x7f0000000340)=""/1, 0x0, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
io_submit(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f0000000400)='./file0\x00', 0x410c84, &(0x7f00000003c0)={[{@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x4}}]}, 0x1, 0x775, &(0x7f0000001180)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = inotify_init()
r5 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
r6 = inotify_add_watch(r4, &(0x7f0000000240)='./file0\x00', 0x8c7)
write$binfmt_elf32(r5, &(0x7f0000000040)=ANY=[@ANYRES64=r6], 0x69)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000080000000c"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
close(r5)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1b, 0xc, &(0x7f0000000680)=ANY=[@ANYRESOCT=r7, @ANYRES32=r9, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180200000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r9}, &(0x7f0000000180), &(0x7f00000001c0)=r3}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)

491.910814ms ago: executing program 4 (id=5330):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000080), &(0x7f0000000200)=r1}, 0x20)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
utimensat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)

479.896674ms ago: executing program 5 (id=5331):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r2)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010023010000340200000200000008000100", @ANYRES32=r1], 0x1c}}, 0x0)
write$nci(r0, &(0x7f00000004c0)=ANY=[@ANYBLOB="330206210454af81d836"], 0x9)

446.169024ms ago: executing program 4 (id=5332):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0b00000007000000d7c900000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(r4, 0x0, 0x60, &(0x7f0000000180)={'filter\x00', 0xfffffffffffff20, [{}, {0x0, 0x100000000000000}]}, 0x68)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000008c0)=ANY=[@ANYBLOB="1800000000000005000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000140)={0x2, 0x3, 0x0, 0x3, 0xc}, 0x60}, 0x1, 0x7}, 0x0)
r7 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(r7, 0x0, 0x60, &(0x7f0000000080)={'filter\x00', 0x58, [{}, {0x0, 0x100000000000000}]}, 0x68)
getsockopt$bt_BT_VOICE(r7, 0x112, 0xb, &(0x7f0000000380)=0x1, &(0x7f00000003c0)=0x2)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r9, 0x84, 0x84, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0xfffd}, 0x90)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r9, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000180)=[@in={0x2, 0x4e24, @local}]}, &(0x7f0000000100)=0x10)
r10 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r11 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f00000001c0)={'wg0\x00', <r13=>0x0})
sendmsg$nl_route_sched(r12, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r13, {}, {0xffff, 0xffff}, {0xd}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x51}, 0x8000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@newqdisc={0x4c, 0x24, 0x3fe3aa0262d8c583, 0x4, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x4}, {0xffff, 0xffff}, {0x0, 0xc}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x800, 0x3, 0x0, 0xfffffffe, 0x7}}}}]}, 0x4c}}, 0x0)
r14 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r14, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@getqdisc={0x24, 0x26, 0x705, 0x70bd27, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x1, 0xfff1}, {0x7, 0x8}, {0x4, 0x7}}}, 0x24}, 0x1, 0x0, 0x0, 0x40188de}, 0x0)
ioctl$TIOCSETD(r11, 0x5423, &(0x7f0000000100)=0x2)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="42870040", @ANYRES16=r10, @ANYRES8], 0x2c}, 0x1, 0x0, 0x0, 0x8040}, 0x4886)

399.933255ms ago: executing program 1 (id=5333):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r3, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002ec0)={0x38, r2, 0x10ada85e65c25359, 0xfffffffd, 0x25dfdbfd, {{0x6b}, {@val={0x8}, @val={0xc, 0x99, {0x2, 0x72}}}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8, 0xd, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x4}]}]}]}]}, 0x38}}, 0x0)

52.003419ms ago: executing program 7 (id=5334):
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
setreuid(0xee00, 0x0)
r0 = getuid()
setreuid(0x0, r0)
r1 = socket(0x2, 0x2, 0x0)
setsockopt$inet_opts(r1, 0x0, 0x14, &(0x7f00000001c0)="02000000", 0x4)

32.37265ms ago: executing program 7 (id=5335):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x3, 0x5, 0x1000, 0xffffffffffffffff, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000010c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x3f0, 0x0, 0x9403, 0x0, 0x0, 0x2c0, 0x320, 0x3d8, 0x3d8, 0x320, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0x1c8, 0x210, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x1, 0x0, 'syz0\x00'}}, @inet=@rpfilter={{0x28}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@uncond, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@TCPOPTSTRIP={0x40}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x450)

0s ago: executing program 7 (id=5336):
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
readv(r1, &(0x7f0000000180)=[{&(0x7f0000000000)=""/24, 0xfd90}], 0x1)

kernel console output (not intermixed with test programs):

0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14901 comm="syz.4.4331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce3c2be969 code=0x7ffc0000
[  364.736899][   T29] audit: type=1326 audit(2000000021.950:7564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14901 comm="syz.4.4331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fce3c2bd2d0 code=0x7ffc0000
[  364.761352][   T29] audit: type=1326 audit(2000000021.950:7565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14901 comm="syz.4.4331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce3c2be969 code=0x7ffc0000
[  364.786634][   T29] audit: type=1326 audit(2000000021.950:7566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14901 comm="syz.4.4331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce3c2be969 code=0x7ffc0000
[  364.810963][   T29] audit: type=1326 audit(2000000021.950:7567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14901 comm="syz.4.4331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7fce3c2be969 code=0x7ffc0000
[  364.835717][   T29] audit: type=1326 audit(2000000021.950:7568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14901 comm="syz.4.4331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce3c2be969 code=0x7ffc0000
[  364.986267][T14908] loop3: detected capacity change from 0 to 1024
[  365.019011][T14908] EXT4-fs: Ignoring removed orlov option
[  365.025145][T14908] EXT4-fs: Ignoring removed nomblk_io_submit option
[  365.058438][T14911] loop5: detected capacity change from 0 to 512
[  365.074364][T14906] binfmt_misc: register: failed to install interpreter file ./file2
[  365.098692][T14911] EXT4-fs: inline encryption not supported
[  365.115087][T14911] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  365.130678][T14913] loop4: detected capacity change from 0 to 512
[  365.148135][T14913] EXT4-fs: Ignoring removed nobh option
[  365.175232][T14911] EXT4-fs (loop5): 1 truncate cleaned up
[  365.214782][T14913] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #16: comm syz.4.4335: corrupted inode contents
[  365.241862][T14913] EXT4-fs (loop4): Remounting filesystem read-only
[  365.256677][T14913] EXT4-fs (loop4): 1 truncate cleaned up
[  365.269776][T14913] ext4 filesystem being mounted at /899/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  365.283821][ T9709] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  365.294498][ T9709] Quota error (device loop4): write_blk: dquota write failed
[  365.301937][ T9709] Quota error (device loop4): remove_free_dqentry: Can't write block (5) with free entries
[  365.312709][ T9709] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  365.324188][ T9709] Quota error (device loop4): write_blk: dquota write failed
[  365.380643][ T9709] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  365.449940][T14929] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4340'.
[  365.494095][T14929] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4340'.
[  365.563675][T14935] loop2: detected capacity change from 0 to 1024
[  365.583722][T14937] loop5: detected capacity change from 0 to 764
[  365.587531][T14935] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  365.607720][T14937] rock: directory entry would overflow storage
[  365.614155][T14937] rock: sig=0x4f50, size=4, remaining=3
[  365.620016][T14937] iso9660: Corrupted directory entry in block 4 of inode 1792
[  365.651976][T14934] loop4: detected capacity change from 0 to 8192
[  365.800099][T14934] syz.4.4341: attempt to access beyond end of device
[  365.800099][T14934] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  365.842952][T14947] loop5: detected capacity change from 0 to 1024
[  365.883099][T14947] EXT4-fs: Ignoring removed orlov option
[  365.888946][T14947] EXT4-fs: Ignoring removed nomblk_io_submit option
[  365.971778][T14957] loop3: detected capacity change from 0 to 2048
[  365.990621][T14958] loop4: detected capacity change from 0 to 2048
[  366.223715][T14972] loop5: detected capacity change from 0 to 512
[  366.253714][T14972] EXT4-fs: Ignoring removed nobh option
[  366.279811][T14974] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4354'.
[  366.293442][T14974] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4354'.
[  366.294799][T14972] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #16: comm syz.5.4351: corrupted inode contents
[  366.335652][T14978] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4355'.
[  366.340751][T14972] EXT4-fs (loop5): Remounting filesystem read-only
[  366.352191][T14972] EXT4-fs (loop5): 1 truncate cleaned up
[  366.358562][T14972] ext4 filesystem being mounted at /800/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  366.372222][ T9677] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  366.383014][ T9677] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  366.396638][T14980] loop4: detected capacity change from 0 to 1024
[  366.410553][ T9677] EXT4-fs (loop5): Quota write (off=8, len=24) cancelled because transaction is not started
[  366.458047][T14980] EXT4-fs (loop4): shut down requested (0)
[  366.618167][T14987] loop5: detected capacity change from 0 to 8192
[  366.633481][T14987] syz.5.4358: attempt to access beyond end of device
[  366.633481][T14987] loop5: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  366.726102][T14994] loop4: detected capacity change from 0 to 1024
[  366.740225][T14994] EXT4-fs: Ignoring removed mblk_io_submit option
[  366.762092][T14994] EXT4-fs: Ignoring removed nobh option
[  366.767885][T14994] EXT4-fs: Ignoring removed bh option
[  366.775111][T14996] loop2: detected capacity change from 0 to 164
[  366.784094][T14996] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  366.802805][T14996] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  366.834032][T14994] EXT4-fs error (device loop4): ext4_xattr_inode_iget:437: comm syz.4.4360: inode #327696: comm syz.4.4360: iget: illegal inode #
[  366.896159][T15012] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4367'.
[  366.906754][T14994] EXT4-fs (loop4): Remounting filesystem read-only
[  366.907509][T15012] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4367'.
[  366.915730][T14994] EXT4-fs warning (device loop4): ext4_xattr_inode_inc_ref_all:1129: inode #18: comm syz.4.4360: cleanup dec ref error -30
[  366.961915][T14994] EXT4-fs warning (device loop4): ext4_xattr_block_set:2190: inode #18: comm syz.4.4360: dec ref error=-30
[  367.004883][T15017] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4368'.
[  367.096523][T15026] loop3: detected capacity change from 0 to 128
[  367.250856][T15031] loop3: detected capacity change from 0 to 256
[  367.264057][T15031] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  367.276276][T15036] loop2: detected capacity change from 0 to 2048
[  367.319429][T15039] loop3: detected capacity change from 0 to 512
[  367.326583][T15039] EXT4-fs: inline encryption not supported
[  367.334187][T15039] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  367.346337][T15041] loop5: detected capacity change from 0 to 164
[  367.346849][T15039] EXT4-fs (loop3): 1 truncate cleaned up
[  367.362856][T15041] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  367.378607][T15041] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  367.475998][T15046] tipc: Started in network mode
[  367.480931][T15046] tipc: Node identity 7, cluster identity 4711
[  367.488110][T15046] tipc: Node number set to 7
[  367.634396][T15059] loop5: detected capacity change from 0 to 256
[  367.776702][T15069] loop5: detected capacity change from 0 to 512
[  367.810550][T15073] loop3: detected capacity change from 0 to 164
[  367.823134][T15073] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  367.836793][T15069] EXT4-fs (loop5): 1 orphan inode deleted
[  367.844245][T15069] ext4 filesystem being mounted at /811/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  367.855342][ T9677] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:23: Failed to release dquot type 1
[  367.875282][T15073] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  367.999747][T15080] loop3: detected capacity change from 0 to 1024
[  368.048995][T15080] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  368.109557][T15085] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4393'.
[  368.118674][T15085] IPVS: Error joining to the multicast group
[  368.233816][T15090] hub 2-0:1.0: USB hub found
[  368.238616][T15090] hub 2-0:1.0: 8 ports detected
[  368.260207][T15090] loop3: detected capacity change from 0 to 1024
[  368.507393][T15108] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4400'.
[  368.524649][T15109] loop2: detected capacity change from 0 to 512
[  368.575982][T15109] ext4 filesystem being mounted at /846/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  369.215511][T15122] loop4: detected capacity change from 0 to 164
[  369.305141][T15122] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  369.337349][T15122] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  369.417434][T15124] loop4: detected capacity change from 0 to 1024
[  369.433538][T15126] loop3: detected capacity change from 0 to 512
[  369.445992][T15124] EXT4-fs: Ignoring removed oldalloc option
[  369.475355][T15124] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  369.505827][T15126] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.4404: casefold flag without casefold feature
[  369.562206][T15126] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.4404: couldn't read orphan inode 15 (err -117)
[  369.630104][T15126] EXT4-fs error (device loop3): ext4_check_dx_root:2205: inode #2: comm syz.3.4404: Corrupt dir, invalid name_len for '.', running e2fsck is recommended
[  369.700376][   T29] kauditd_printk_skb: 379 callbacks suppressed
[  369.700394][   T29] audit: type=1326 audit(2000000026.980:7938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15135 comm="syz.4.4409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce3c2be969 code=0x7ffc0000
[  369.732650][   T29] audit: type=1326 audit(2000000026.980:7939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15135 comm="syz.4.4409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce3c2be969 code=0x7ffc0000
[  369.756910][   T29] audit: type=1326 audit(2000000026.980:7940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15135 comm="syz.4.4409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce3c2be969 code=0x7ffc0000
[  369.782311][   T29] audit: type=1326 audit(2000000026.980:7941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15135 comm="syz.4.4409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7fce3c2be969 code=0x7ffc0000
[  369.806546][   T29] audit: type=1326 audit(2000000026.980:7942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15135 comm="syz.4.4409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce3c2be969 code=0x7ffc0000
[  369.984258][   T29] audit: type=1326 audit(2000000027.120:7943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15132 comm="syz.5.4408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0055fe969 code=0x7ffc0000
[  370.009065][   T29] audit: type=1326 audit(2000000027.120:7944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15132 comm="syz.5.4408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0055fe969 code=0x7ffc0000
[  370.033964][   T29] audit: type=1326 audit(2000000027.120:7945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15132 comm="syz.5.4408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fa0055fe969 code=0x7ffc0000
[  370.057625][   T29] audit: type=1326 audit(2000000027.120:7946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15132 comm="syz.5.4408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0055fe969 code=0x7ffc0000
[  370.082323][   T29] audit: type=1326 audit(2000000027.120:7947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15132 comm="syz.5.4408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0055fe969 code=0x7ffc0000
[  370.300965][T15155] loop2: detected capacity change from 0 to 2048
[  370.317868][T15157] loop5: detected capacity change from 0 to 512
[  370.326659][T15157] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  370.340459][T15157] EXT4-fs (loop5): 1 truncate cleaned up
[  370.409854][T15163] loop2: detected capacity change from 0 to 256
[  370.472264][T15169] loop2: detected capacity change from 0 to 128
[  370.479125][T15169] EXT4-fs: Ignoring removed nobh option
[  370.499627][T15169] ext4 filesystem being mounted at /851/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  370.558846][T15178] loop5: detected capacity change from 0 to 128
[  370.574370][T15178] ext4 filesystem being mounted at /821/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  370.776804][T15185] loop5: detected capacity change from 0 to 512
[  370.805920][T15185] ext4 filesystem being mounted at /822/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  371.169207][T15197] loop3: detected capacity change from 0 to 1024
[  371.409992][T15204] hub 2-0:1.0: USB hub found
[  371.449722][T15203] loop4: detected capacity change from 0 to 2048
[  371.464571][T15204] hub 2-0:1.0: 8 ports detected
[  371.595234][T15207] loop2: detected capacity change from 0 to 1024
[  371.697456][T15206] binfmt_misc: register: failed to install interpreter file ./file2
[  372.313501][T15215] loop3: detected capacity change from 0 to 512
[  372.378890][T15215] ext4 filesystem being mounted at /865/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  372.419070][T15221] loop2: detected capacity change from 0 to 512
[  372.432795][T15221] EXT4-fs (loop2): failed to initialize system zone (-117)
[  372.454615][T15221] EXT4-fs (loop2): mount failed
[  372.468059][T15226] loop5: detected capacity change from 0 to 1024
[  372.494419][T15226] EXT4-fs: Ignoring removed mblk_io_submit option
[  372.510971][T15226] EXT4-fs: Ignoring removed nobh option
[  372.516783][T15226] EXT4-fs: Ignoring removed bh option
[  372.559837][T15226] EXT4-fs error (device loop5): ext4_xattr_inode_iget:437: comm syz.5.4434: inode #327696: comm syz.5.4434: iget: illegal inode #
[  372.608926][T15226] EXT4-fs (loop5): Remounting filesystem read-only
[  372.626079][T15226] EXT4-fs warning (device loop5): ext4_xattr_inode_inc_ref_all:1129: inode #18: comm syz.5.4434: cleanup dec ref error -30
[  372.641075][T15226] EXT4-fs warning (device loop5): ext4_xattr_block_set:2190: inode #18: comm syz.5.4434: dec ref error=-30
[  372.708089][T15244] loop3: detected capacity change from 0 to 2048
[  372.740220][T15246] loop2: detected capacity change from 0 to 512
[  372.825920][T15246] ext4 filesystem being mounted at /856/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  372.920199][T15244] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  373.026843][T15244] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[  373.040472][T15244] EXT4-fs (loop3): This should not happen!! Data will be lost
[  373.040472][T15244] 
[  373.050374][T15244] EXT4-fs (loop3): Total free blocks count 0
[  373.056523][T15244] EXT4-fs (loop3): Free/Dirty block details
[  373.063183][T15244] EXT4-fs (loop3): free_blocks=2415919104
[  373.069400][T15244] EXT4-fs (loop3): dirty_blocks=16
[  373.074658][T15244] EXT4-fs (loop3): Block reservation details
[  373.080760][T15244] EXT4-fs (loop3): i_reserved_data_blocks=1
[  373.408213][T15255] __nla_validate_parse: 1 callbacks suppressed
[  373.408230][T15255] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4444'.
[  373.664333][T15261] loop4: detected capacity change from 0 to 256
[  373.793310][T15264] loop4: detected capacity change from 0 to 1024
[  373.806857][T15253] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 2012 with error 28
[  373.820171][T15253] EXT4-fs (loop3): This should not happen!! Data will be lost
[  373.820171][T15253] 
[  373.836015][T15264] EXT4-fs: Ignoring removed nobh option
[  373.842660][T15264] EXT4-fs: Ignoring removed bh option
[  373.924589][T15272] loop4: detected capacity change from 0 to 512
[  373.957856][T15272] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.4450: casefold flag without casefold feature
[  374.009923][T15272] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.4450: couldn't read orphan inode 15 (err -117)
[  374.052999][T15279] loop3: detected capacity change from 0 to 256
[  374.069763][T15272] EXT4-fs error (device loop4): ext4_check_dx_root:2205: inode #2: comm syz.4.4450: Corrupt dir, invalid name_len for '.', running e2fsck is recommended
[  374.233439][T15293] loop2: detected capacity change from 0 to 1024
[  374.240854][T15290] hub 2-0:1.0: USB hub found
[  374.244479][T14631] kernel write not supported for file bpf-prog (pid: 14631 comm: kworker/0:3)
[  374.245977][T15290] hub 2-0:1.0: 8 ports detected
[  374.259559][T15293] EXT4-fs: Ignoring removed oldalloc option
[  374.280556][T15293] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  374.366613][T15311] loop3: detected capacity change from 0 to 512
[  374.375053][T15309] loop2: detected capacity change from 0 to 2048
[  374.395404][T15311] EXT4-fs error (device loop3): ext4_iget_extra_inode:4693: inode #15: comm syz.3.4465: corrupted in-inode xattr: invalid ea_ino
[  374.406809][T15309] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  374.410586][T15311] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.4465: couldn't read orphan inode 15 (err -117)
[  374.425801][T15309] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[  374.450077][T15309] EXT4-fs (loop2): This should not happen!! Data will be lost
[  374.450077][T15309] 
[  374.460351][T15309] EXT4-fs (loop2): Total free blocks count 0
[  374.466748][T15309] EXT4-fs (loop2): Free/Dirty block details
[  374.473005][T15309] EXT4-fs (loop2): free_blocks=2415919104
[  374.479117][T15309] EXT4-fs (loop2): dirty_blocks=16
[  374.484473][T15309] EXT4-fs (loop2): Block reservation details
[  374.490538][T15309] EXT4-fs (loop2): i_reserved_data_blocks=2
[  374.502130][T15318] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  374.572504][T15327] loop3: detected capacity change from 0 to 128
[  374.605809][T15331] netlink: 64 bytes leftover after parsing attributes in process `syz.5.4468'.
[  374.619491][T15331] loop5: detected capacity change from 0 to 512
[  374.626476][T15331] EXT4-fs: Ignoring removed nobh option
[  374.645019][T15331] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #16: comm syz.5.4468: corrupted inode contents
[  374.659726][T15331] EXT4-fs (loop5): Remounting filesystem read-only
[  374.666607][T15331] EXT4-fs (loop5): 1 truncate cleaned up
[  374.676440][T15331] ext4 filesystem being mounted at /826/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  374.687478][ T9709] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  374.698475][ T9709] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  374.710034][ T9709] __quota_error: 336 callbacks suppressed
[  374.710049][ T9709] Quota error (device loop5): write_blk: dquota write failed
[  374.723953][ T9709] Quota error (device loop5): free_dqentry: Can't move quota data block (5) to free list
[  374.739796][T15336] loop3: detected capacity change from 0 to 512
[  374.873582][T15336] ext4 filesystem being mounted at /873/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  374.945481][ T9709] EXT4-fs (loop5): Quota write (off=8, len=24) cancelled because transaction is not started
[  374.956005][ T9709] Quota error (device loop5): v2_write_file_info: Can't write info structure
[  375.097265][ T9709] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  376.283811][T15353] loop5: detected capacity change from 0 to 256
[  376.297687][ T3308] EXT4-fs unmount: 88 callbacks suppressed
[  376.297705][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  376.434727][T15319] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 2048 with error 28
[  376.448506][T15319] EXT4-fs (loop2): This should not happen!! Data will be lost
[  376.448506][T15319] 
[  376.653374][   T29] audit: type=1107 audit(2000000033.940:8282): pid=15359 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[  376.676610][T15361] loop5: detected capacity change from 0 to 2048
[  376.708911][T15364] loop4: detected capacity change from 0 to 512
[  376.717817][T15361] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  376.731328][   T29] audit: type=1400 audit(2000000034.010:8283): avc:  denied  { mounton } for  pid=15363 comm="syz.4.4484" path="/936/bus" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  376.758953][T15364] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  376.782407][T15364] EXT4-fs (loop4): 1 truncate cleaned up
[  376.803375][T15364] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  376.842051][T15364] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  376.997052][T15377] loop4: detected capacity change from 0 to 512
[  377.011755][T15377] EXT4-fs: Ignoring removed nobh option
[  377.027631][T15381] netlink: 'syz.2.4488': attribute type 1 has an invalid length.
[  377.094376][T15377] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.4486: invalid indirect mapped block 256 (level 2)
[  377.109640][T15377] EXT4-fs (loop4): 2 truncates cleaned up
[  377.117874][T15377] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  377.133943][T15379] loop3: detected capacity change from 0 to 2048
[  377.154943][T15379] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  377.177082][T15377] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.4486: bg 0: block 5: invalid block bitmap
[  377.237847][T15377] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 64 with error 28
[  377.252880][T15377] EXT4-fs (loop4): This should not happen!! Data will be lost
[  377.252880][T15377] 
[  377.263052][T15377] EXT4-fs (loop4): Total free blocks count 0
[  377.269412][T15377] EXT4-fs (loop4): Free/Dirty block details
[  377.275724][T15377] EXT4-fs (loop4): free_blocks=0
[  377.280722][T15377] EXT4-fs (loop4): dirty_blocks=64
[  377.287489][T15377] EXT4-fs (loop4): Block reservation details
[  377.293698][T15377] EXT4-fs (loop4): i_reserved_data_blocks=64
[  377.495886][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  377.592857][ T3861] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  377.636997][   T29] audit: type=1400 audit(2000000034.920:8284): avc:  denied  { ioctl } for  pid=15404 comm="syz.1.4497" path="/dev/usbmon7" dev="devtmpfs" ino=163 ioctlcmd=0x9207 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  377.743075][   T29] audit: type=1326 audit(2000000035.030:8285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15412 comm="syz.1.4500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf76a9e969 code=0x7ffc0000
[  377.769541][   T29] audit: type=1326 audit(2000000035.050:8286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15412 comm="syz.1.4500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf76a9e969 code=0x7ffc0000
[  377.794126][   T29] audit: type=1326 audit(2000000035.050:8287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15412 comm="syz.1.4500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcf76a9e969 code=0x7ffc0000
[  377.898891][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  377.928970][T15422] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4504'.
[  377.950320][T15424] loop2: detected capacity change from 0 to 512
[  377.959196][T15424] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  378.049335][T15426] loop3: detected capacity change from 0 to 8192
[  378.059023][T15426] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  378.084212][T15424] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  378.110484][T15424] EXT4-fs error (device loop2): ext4_iget_extra_inode:4693: inode #15: comm syz.2.4505: corrupted in-inode xattr: e_value size too large
[  378.127731][T15424] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.4505: couldn't read orphan inode 15 (err -117)
[  378.145134][T15424] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  378.190671][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  378.259797][T15432] loop3: detected capacity change from 0 to 2048
[  378.296379][T15432] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  378.896745][T15446] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4512'.
[  379.158672][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  379.236403][T15458] loop3: detected capacity change from 0 to 512
[  379.251537][T15460] random: crng reseeded on system resumption
[  379.272393][T15458] EXT4-fs: Ignoring removed oldalloc option
[  379.346610][T15462] loop2: detected capacity change from 0 to 512
[  379.360891][T15458] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  379.372737][T15462] EXT4-fs: Ignoring removed nobh option
[  379.380280][T15458] EXT4-fs (loop3): 1 truncate cleaned up
[  379.387274][T15458] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  379.412864][T15462] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  379.434570][T15462] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.4519: invalid indirect mapped block 8707 (level 2)
[  379.464290][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  379.475777][T15462] EXT4-fs (loop2): 2 truncates cleaned up
[  379.487442][T15462] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  379.572091][T15473] loop4: detected capacity change from 0 to 512
[  379.648760][T15462] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.4519: bg 0: block 5: invalid block bitmap
[  379.671974][T15473] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  379.685061][T15473] ext4 filesystem being mounted at /942/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  379.743830][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  379.798059][T15480] loop3: detected capacity change from 0 to 512
[  379.806118][T15480] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  379.820180][T15480] EXT4-fs (loop3): 1 truncate cleaned up
[  379.828344][T15480] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  379.874269][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  380.136870][T15483] loop5: detected capacity change from 0 to 2048
[  380.146261][T15483] EXT4-fs: Ignoring removed mblk_io_submit option
[  380.165116][T15483] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  380.186484][T15483] EXT4-fs error (device loop5): ext4_lookup:1789: inode #12: comm syz.5.4527: iget: bogus i_mode (355)
[  380.200305][T15483] EXT4-fs (loop5): Remounting filesystem read-only
[  380.353907][ T3861] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  380.480127][   T29] kauditd_printk_skb: 119 callbacks suppressed
[  380.480145][   T29] audit: type=1326 audit(2000000037.760:8407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15486 comm="syz.1.4529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf76a9e969 code=0x7ffc0000
[  380.519216][   T29] audit: type=1326 audit(2000000037.800:8408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15486 comm="syz.1.4529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf76a9e969 code=0x7ffc0000
[  380.543689][   T29] audit: type=1326 audit(2000000037.800:8409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15486 comm="syz.1.4529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fcf76a9d2d0 code=0x7ffc0000
[  380.568951][   T29] audit: type=1326 audit(2000000037.800:8410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15486 comm="syz.1.4529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fcf76a9d2d0 code=0x7ffc0000
[  380.593833][   T29] audit: type=1326 audit(2000000037.800:8411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15486 comm="syz.1.4529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf76a9e969 code=0x7ffc0000
[  380.618402][   T29] audit: type=1326 audit(2000000037.800:8412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15486 comm="syz.1.4529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf76a9e969 code=0x7ffc0000
[  380.643027][   T29] audit: type=1326 audit(2000000037.800:8413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15486 comm="syz.1.4529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=217 compat=0 ip=0x7fcf76a9e969 code=0x7ffc0000
[  380.667166][   T29] audit: type=1326 audit(2000000037.800:8414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15486 comm="syz.1.4529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf76a9e969 code=0x7ffc0000
[  380.691641][   T29] audit: type=1326 audit(2000000037.800:8415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15486 comm="syz.1.4529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fcf76a9e969 code=0x7ffc0000
[  380.715607][   T29] audit: type=1326 audit(2000000037.800:8416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15486 comm="syz.1.4529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf76a9e969 code=0x7ffc0000
[  380.892714][T15503] loop2: detected capacity change from 0 to 512
[  380.959074][T15503] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  380.976581][T15511] loop3: detected capacity change from 0 to 128
[  380.992055][T15511] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  381.075974][T15503] ext4 filesystem being mounted at /870/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  381.090628][T15503] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #2: comm syz.2.4531: corrupted inode contents
[  381.106031][T15511] ext4 filesystem being mounted at /884/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  381.122023][T15503] EXT4-fs error (device loop2): ext4_dirty_inode:6103: inode #2: comm syz.2.4531: mark_inode_dirty error
[  381.151818][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  381.162207][T15503] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #2: comm syz.2.4531: corrupted inode contents
[  381.174552][T15503] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #2: comm syz.2.4531: mark_inode_dirty error
[  381.186958][T15513] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #2: comm syz.2.4531: corrupted inode contents
[  381.187313][ T3308] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  381.210188][T15513] EXT4-fs error (device loop2): ext4_dirty_inode:6103: inode #2: comm syz.2.4531: mark_inode_dirty error
[  381.223151][T15515] loop4: detected capacity change from 0 to 1024
[  381.227330][T15513] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #2: comm syz.2.4531: corrupted inode contents
[  381.230570][T15515] EXT4-fs: Ignoring removed orlov option
[  381.248197][T15515] EXT4-fs: Ignoring removed nomblk_io_submit option
[  381.256394][T15503] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #2: comm syz.2.4531: corrupted inode contents
[  381.270306][T15503] EXT4-fs error (device loop2): ext4_append:88: inode #2: comm syz.2.4531: mark_inode_dirty error
[  381.273444][T15515] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  381.283056][T15503] EXT4-fs error (device loop2) in ext4_append:100: Corrupt filesystem
[  381.328976][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  381.343943][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  381.380036][T15523] loop2: detected capacity change from 0 to 512
[  381.390228][T15521] loop3: detected capacity change from 0 to 512
[  381.401156][T15523] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  381.422521][T15523] EXT4-fs (loop2): 1 truncate cleaned up
[  381.428604][T15523] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  381.450223][T15521] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  381.468469][T15523] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  381.484761][T15521] ext4 filesystem being mounted at /885/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  381.538405][T15534] loop4: detected capacity change from 0 to 512
[  381.556503][T15534] EXT4-fs: Ignoring removed nobh option
[  381.562520][T15534] EXT4-fs: Ignoring removed bh option
[  381.585436][T15534] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.4540: invalid indirect mapped block 256 (level 2)
[  381.605481][T15534] EXT4-fs (loop4): 2 truncates cleaned up
[  381.614460][T15534] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  381.659761][T15534] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.4540: bg 0: block 5: invalid block bitmap
[  381.660419][T15544] loop2: detected capacity change from 0 to 256
[  381.807807][T15534] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 1 with error 28
[  381.811706][T15553] loop2: detected capacity change from 0 to 128
[  381.820752][T15534] EXT4-fs (loop4): This should not happen!! Data will be lost
[  381.820752][T15534] 
[  381.837019][T15534] EXT4-fs (loop4): Total free blocks count 0
[  381.843343][T15534] EXT4-fs (loop4): Free/Dirty block details
[  381.850168][T15534] EXT4-fs (loop4): free_blocks=0
[  381.855703][T15534] EXT4-fs (loop4): dirty_blocks=2
[  381.860771][T15534] EXT4-fs (loop4): Block reservation details
[  381.866997][T15534] EXT4-fs (loop4): i_reserved_data_blocks=2
[  381.933524][T15556] loop5: detected capacity change from 0 to 512
[  382.032907][T15557] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  382.825947][T15553] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  382.847527][T15556] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  382.860218][T15556] ext4 filesystem being mounted at /842/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  382.916556][T15569] loop4: detected capacity change from 0 to 512
[  382.919798][T15553] ext4 filesystem being mounted at /874/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  382.923845][T15569] EXT4-fs: Ignoring removed nobh option
[  382.940656][T15569] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  383.134637][T15569] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.4546: invalid indirect mapped block 8707 (level 2)
[  383.183228][T15569] EXT4-fs (loop4): 2 truncates cleaned up
[  383.211487][T15569] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  383.246250][ T3313] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  383.289145][T15578] bridge0: entered promiscuous mode
[  383.302024][T15578] macvlan2: entered promiscuous mode
[  383.315708][T15578] bridge0: port 4(macvlan2) entered blocking state
[  383.322577][T15578] bridge0: port 4(macvlan2) entered disabled state
[  383.346416][T15569] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.4546: bg 0: block 5: invalid block bitmap
[  383.374014][T15578] macvlan2: entered allmulticast mode
[  383.379513][T15578] bridge0: entered allmulticast mode
[  383.406413][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  383.422918][T15578] macvlan2: left allmulticast mode
[  383.428190][T15578] bridge0: left allmulticast mode
[  383.444703][T15578] bridge0: left promiscuous mode
[  383.580856][ T3861] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  383.640366][T15592] rdma_op ffff8881266d2580 conn xmit_rdma 0000000000000000
[  383.661945][T15590] loop5: detected capacity change from 0 to 256
[  383.690755][T15590] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  383.725754][T15598] loop2: detected capacity change from 0 to 8192
[  384.420391][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  384.428749][T15615] program syz.2.4578 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  384.477874][T15621] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  384.531249][T15628] loop2: detected capacity change from 0 to 512
[  384.538342][T15628] EXT4-fs: Ignoring removed mblk_io_submit option
[  384.546984][T15628] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -13
[  384.556905][T15628] EXT4-fs error (device loop2): ext4_clear_blocks:876: inode #13: comm syz.2.4572: attempt to clear invalid blocks 2 len 1
[  384.570694][T15628] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  384.585457][T15628] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.4572: invalid indirect mapped block 1819239214 (level 0)
[  384.586059][T15628] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.4572: invalid indirect mapped block 1819239214 (level 1)
[  384.586539][T15628] EXT4-fs (loop2): 1 truncate cleaned up
[  384.586955][T15628] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  384.593730][T15628] EXT4-fs (loop2): Quota file not on filesystem root. Journaled quota will not work
[  384.643771][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  384.660545][T15643] loop2: detected capacity change from 0 to 512
[  384.675689][T15639] hub 4-0:1.0: USB hub found
[  384.690276][T15643] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  384.695459][T15639] hub 4-0:1.0: 8 ports detected
[  384.715330][T15643] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  384.737510][T15643] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended
[  384.755979][T15643] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  384.764752][T15643] System zones: 0-2, 18-18, 34-35
[  384.776978][T15650] loop5: detected capacity change from 0 to 1024
[  384.788090][T15643] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  384.806359][T15654] loop3: detected capacity change from 0 to 1024
[  384.815559][T15654] EXT4-fs: inline encryption not supported
[  384.822651][T15654] EXT4-fs: Ignoring removed bh option
[  384.829532][T15650] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  384.835324][T15648] vhci_hcd: invalid port number 96
[  384.845066][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  384.846848][T15648] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  384.872798][T15654] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  384.896871][ T9718] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  384.929230][T15664] xt_connbytes: Forcing CT accounting to be enabled
[  384.929559][ T9718] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  384.949045][ T9718] EXT4-fs (loop5): This should not happen!! Data will be lost
[  384.949045][ T9718] 
[  384.949065][ T9718] EXT4-fs (loop5): Total free blocks count 0
[  384.949158][ T9718] EXT4-fs (loop5): Free/Dirty block details
[  384.949171][ T9718] EXT4-fs (loop5): free_blocks=68451041280
[  384.949185][ T9718] EXT4-fs (loop5): dirty_blocks=32
[  384.949198][ T9718] EXT4-fs (loop5): Block reservation details
[  384.949209][ T9718] EXT4-fs (loop5): i_reserved_data_blocks=2
[  384.955380][T15654] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, 
[  384.970069][ T9718] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 131075 with max blocks 1 with error 28
[  384.971263][T15654] inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[  385.026511][T15654] EXT4-fs (loop3): Remounting filesystem read-only
[  385.062096][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  385.082074][T15671] 9pnet_virtio: no channels available for device syz
[  385.126922][T15679] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4595'.
[  385.193885][T15684] hub 2-0:1.0: USB hub found
[  385.197356][T15688] program syz.3.4599 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  385.198772][T15684] hub 2-0:1.0: 8 ports detected
[  385.233256][T15684] loop2: detected capacity change from 0 to 1024
[  385.266477][T15684] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  385.320889][T15696] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4601'.
[  385.370981][T15704] loop5: detected capacity change from 0 to 512
[  385.378945][T15704] EXT4-fs: Ignoring removed mblk_io_submit option
[  385.386829][T15704] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -13
[  385.395603][T15704] EXT4-fs error (device loop5): ext4_clear_blocks:876: inode #13: comm syz.5.4603: attempt to clear invalid blocks 2 len 1
[  385.409566][T15704] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  385.424029][T15704] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.4603: invalid indirect mapped block 1819239214 (level 0)
[  385.439719][T15704] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.4603: invalid indirect mapped block 1819239214 (level 1)
[  385.455273][T15704] EXT4-fs (loop5): 1 truncate cleaned up
[  385.462061][T15704] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  385.480191][T15704] EXT4-fs (loop5): Quota file not on filesystem root. Journaled quota will not work
[  385.490225][   T29] kauditd_printk_skb: 323 callbacks suppressed
[  385.490240][   T29] audit: type=1400 audit(2000000042.770:8740): avc:  denied  { quotaon } for  pid=15702 comm="syz.5.4603" name="file0" dev="loop5" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  385.526087][T15712] netlink: 'syz.3.4607': attribute type 2 has an invalid length.
[  385.534065][T15712] netlink: 'syz.3.4607': attribute type 1 has an invalid length.
[  385.542020][T15712] netlink: 199820 bytes leftover after parsing attributes in process `syz.3.4607'.
[  385.552512][ T3861] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  385.579086][T15716] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4609'.
[  385.599539][   T29] audit: type=1400 audit(2000000042.880:8741): avc:  denied  { mount } for  pid=15717 comm="syz.5.4610" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  385.623518][   T29] audit: type=1400 audit(2000000042.880:8742): avc:  denied  { search } for  pid=15717 comm="syz.5.4610" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  385.646792][   T29] audit: type=1400 audit(2000000042.880:8743): avc:  denied  { mounton } for  pid=15717 comm="syz.5.4610" path="/853/file0" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  385.671025][   T29] audit: type=1400 audit(2000000042.900:8744): avc:  denied  { unmount } for  pid=3861 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  385.713905][   T29] audit: type=1326 audit(2000000043.000:8745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15722 comm="syz.4.4613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce3c2be969 code=0x7ffc0000
[  385.738674][   T29] audit: type=1326 audit(2000000043.000:8746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15722 comm="syz.4.4613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce3c2be969 code=0x7ffc0000
[  385.774421][   T29] audit: type=1326 audit(2000000043.000:8747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15722 comm="syz.4.4613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fce3c2bd2d0 code=0x7ffc0000
[  385.799163][   T29] audit: type=1326 audit(2000000043.000:8748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15722 comm="syz.4.4613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fce3c2bd2d0 code=0x7ffc0000
[  385.823850][   T29] audit: type=1326 audit(2000000043.000:8749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15722 comm="syz.4.4613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce3c2be969 code=0x7ffc0000
[  385.950671][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  386.000969][T15739] loop2: detected capacity change from 0 to 1024
[  386.009257][T15739] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  386.020116][T15739] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  386.032017][T15739] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  386.058529][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  386.166852][T15759] loop2: detected capacity change from 0 to 164
[  386.175476][T15759] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  386.186572][T15762] loop3: detected capacity change from 0 to 512
[  386.186695][T15759] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  386.202411][T15763] netlink: 64 bytes leftover after parsing attributes in process `syz.1.4624'.
[  386.203441][T15759] Symlink component flag not implemented
[  386.217340][T15759] Symlink component flag not implemented
[  386.224899][T15759] Symlink component flag not implemented (7)
[  386.231052][T15759] Symlink component flag not implemented (116)
[  386.233370][T15762] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  386.251155][T15762] ext4 filesystem being mounted at /908/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  386.278863][T15762] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.4628: corrupted xattr block 33: e_value out of bounds
[  386.294356][T15762] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  386.304593][T15762] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.4628: corrupted xattr block 33: e_value out of bounds
[  386.318910][T15762] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  386.329838][T15772] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.4628: corrupted xattr block 33: e_value out of bounds
[  386.347470][T15772] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  386.424368][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  386.470835][T15782] loop3: detected capacity change from 0 to 2048
[  386.504177][T15782] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  386.599610][T15789] loop2: detected capacity change from 0 to 512
[  386.609927][T15789] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  386.623853][T15789] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[  386.632468][T15789] EXT4-fs error (device loop2): ext4_iget_extra_inode:4693: inode #15: comm syz.2.4636: corrupted in-inode xattr: e_value size too large
[  386.649286][T15789] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.4636: couldn't read orphan inode 15 (err -117)
[  386.662035][T15789] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  386.688765][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  386.773283][T15798] loop4: detected capacity change from 0 to 2048
[  386.804955][T15798] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  386.901737][T15805] loop2: detected capacity change from 0 to 2048
[  386.933332][T15805] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  386.947727][T15805] ext4 filesystem being mounted at /901/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  387.028332][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  387.305605][T15815] netlink: 64 bytes leftover after parsing attributes in process `syz.1.4643'.
[  387.678385][T15833] loop2: detected capacity change from 0 to 512
[  387.714180][T15833] ext4 filesystem being mounted at /903/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  387.852803][T15837] loop3: detected capacity change from 0 to 736
[  387.903763][T15837] Symlink component flag not implemented
[  387.941337][T15837] Symlink component flag not implemented (122)
[  388.198969][T15845] loop3: detected capacity change from 0 to 512
[  388.287742][T15845] ext4 filesystem being mounted at /915/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  388.489308][T15856] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  388.511090][T15854] IPVS: stopping master sync thread 15856 ...
[  388.580204][T15859] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4660'.
[  388.625018][T15859] netlink: 48 bytes leftover after parsing attributes in process `syz.1.4660'.
[  388.764320][T15873] loop4: detected capacity change from 0 to 164
[  388.820598][T15875] loop3: detected capacity change from 0 to 512
[  388.842821][T15873] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  388.857902][T15873] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  388.868408][T15875] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  388.928666][T15875] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.4666: Failed to acquire dquot type 0
[  388.978331][T15875] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  389.045057][T15875] EXT4-fs (loop3): 1 truncate cleaned up
[  389.095026][T15875] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  389.199812][T15894] block device autoloading is deprecated and will be removed.
[  389.238709][T15894] syz.1.4672: attempt to access beyond end of device
[  389.238709][T15894] md30: rw=2048, sector=0, nr_sectors = 8 limit=0
[  389.323406][T15905] loop5: detected capacity change from 0 to 8192
[  389.347748][T15909] loop3: detected capacity change from 0 to 4096
[  389.371834][T15914] netlink: 64 bytes leftover after parsing attributes in process `syz.4.4677'.
[  389.394981][T15909] EXT4-fs (loop3): shut down requested (1)
[  389.412678][T15909] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  389.440739][T15909] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  389.467149][T15902] loop4: detected capacity change from 0 to 512
[  389.476267][T15902] EXT4-fs: Ignoring removed nobh option
[  389.494885][T15902] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #16: comm syz.4.4677: corrupted inode contents
[  389.525771][T15902] EXT4-fs (loop4): Remounting filesystem read-only
[  389.538145][T15902] EXT4-fs (loop4): 1 truncate cleaned up
[  389.551659][T15902] ext4 filesystem being mounted at /959/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  389.563588][ T9718] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  389.574164][ T9718] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  389.598052][ T9718] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  389.659781][T15926] loop3: detected capacity change from 0 to 512
[  389.674487][T15926] ext4 filesystem being mounted at /923/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  390.557042][T15948] netlink: 288 bytes leftover after parsing attributes in process `syz.2.4692'.
[  390.593280][T15948] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4692'.
[  390.704259][   T29] kauditd_printk_skb: 459 callbacks suppressed
[  390.704276][   T29] audit: type=1400 audit(2000000047.990:9201): avc:  denied  { read } for  pid=15952 comm="syz.4.4693" path="socket:[44355]" dev="sockfs" ino=44355 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  390.805948][T15958] loop4: detected capacity change from 0 to 512
[  390.813006][T15959] netlink: 64 bytes leftover after parsing attributes in process `syz.2.4695'.
[  390.863562][T15959] loop2: detected capacity change from 0 to 512
[  390.870494][T15959] EXT4-fs: Ignoring removed nobh option
[  390.888671][T15958] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.4696: iget: bad extended attribute block 1
[  390.913057][T15959] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #16: comm syz.2.4695: corrupted inode contents
[  390.945772][T15958] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.4696: couldn't read orphan inode 15 (err -117)
[  390.965175][T15959] EXT4-fs (loop2): Remounting filesystem read-only
[  390.993831][T15959] EXT4-fs (loop2): 1 truncate cleaned up
[  391.010330][   T29] audit: type=1400 audit(2000000048.290:9202): avc:  denied  { ioctl } for  pid=15957 comm="syz.4.4696" path="/962/file0/cpu.stat" dev="loop4" ino=18 ioctlcmd=0x583b scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  391.036756][T15959] ext4 filesystem being mounted at /912/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  391.047718][ T9697] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  391.058479][ T9697] Quota error (device loop2): write_blk: dquota write failed
[  391.066679][ T9697] Quota error (device loop2): remove_free_dqentry: Can't write block (5) with free entries
[  391.077379][ T9697] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  391.088072][ T9697] Quota error (device loop2): write_blk: dquota write failed
[  391.096364][ T9697] Quota error (device loop2): free_dqentry: Can't move quota data block (5) to free list
[  391.106888][T15958] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 7934 vs 220 free clusters
[  391.229380][ T9697] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[  391.239920][ T9697] Quota error (device loop2): v2_write_file_info: Can't write info structure
[  391.252824][ T9697] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  391.278512][   T29] audit: type=1400 audit(2000000048.560:9203): avc:  denied  { create } for  pid=15975 comm="syz.1.4703" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  391.316130][   T29] audit: type=1400 audit(2000000048.570:9204): avc:  denied  { write } for  pid=15975 comm="syz.1.4703" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  391.337220][T15980] loop2: detected capacity change from 0 to 128
[  391.350806][T15982] openvswitch: netlink: Message has 6 unknown bytes.
[  391.455724][T15997] loop3: detected capacity change from 0 to 2048
[  391.501684][   T23] hid-generic 0000:0004:0000.0006: unknown main item tag 0x0
[  391.509297][   T23] hid-generic 0000:0004:0000.0006: unknown main item tag 0x0
[  391.516858][   T23] hid-generic 0000:0004:0000.0006: unknown main item tag 0x0
[  391.557215][T16008] netlink: 64 bytes leftover after parsing attributes in process `syz.5.4713'.
[  391.574650][T16008] loop5: detected capacity change from 0 to 512
[  391.584107][   T23] hid-generic 0000:0004:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[  391.594643][T16008] EXT4-fs: Ignoring removed nobh option
[  391.605710][T16013] loop3: detected capacity change from 0 to 164
[  391.616622][T16014] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4717'.
[  391.630836][T16013] rock: directory entry would overflow storage
[  391.637157][T16013] rock: sig=0x4f50, size=4, remaining=3
[  391.642884][T16013] iso9660: Corrupted directory entry in block 4 of inode 1792
[  391.684979][T16008] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #16: comm syz.5.4713: corrupted inode contents
[  391.700215][T16022] tipc: Started in network mode
[  391.705562][T16022] tipc: Node identity fe80000000000000000000000000001, cluster identity 4711
[  391.715298][T16022] tipc: Enabled bearer <udp:s >, priority 10
[  391.717540][T16008] EXT4-fs (loop5): Remounting filesystem read-only
[  391.773048][T16027] loop3: detected capacity change from 0 to 512
[  391.785431][T16027] EXT4-fs: Ignoring removed nobh option
[  391.793331][T16008] EXT4-fs (loop5): 1 truncate cleaned up
[  391.809049][T16008] ext4 filesystem being mounted at /876/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  391.832225][ T9718] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  391.843496][ T9718] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  391.873258][T16027] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.4722: invalid indirect mapped block 256 (level 2)
[  391.887340][ T9718] EXT4-fs (loop5): Quota write (off=8, len=24) cancelled because transaction is not started
[  391.899753][T16027] EXT4-fs (loop3): 2 truncates cleaned up
[  391.922950][T16037] loop4: detected capacity change from 0 to 2048
[  391.953608][T16027] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.4722: bg 0: block 5: invalid block bitmap
[  392.019809][T16045] loop2: detected capacity change from 0 to 8192
[  392.096708][T16060] loop2: detected capacity change from 0 to 512
[  392.103908][T16060] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  392.134754][T16058] siw: device registration error -23
[  392.141175][T16060] EXT4-fs error (device loop2): ext4_get_branch:178: inode #11: block 4294967295: comm syz.2.4736: invalid block
[  392.198091][T16068] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  392.247827][T16060] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.4736: invalid indirect mapped block 4294967295 (level 1)
[  392.283959][T16060] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.4736: invalid indirect mapped block 4294967295 (level 1)
[  392.319196][T16060] EXT4-fs (loop2): 2 truncates cleaned up
[  392.330029][T16060] EXT4-fs error (device loop2): ext4_inlinedir_to_tree:1339: inode #12: block 7: comm syz.2.4736: path /918/file0/file0: bad entry in directory: rec_len % 4 != 0 - offset=259, inode=4278190093, rec_len=255, size=60 fake=0
[  392.352962][T16081] netlink: 64 bytes leftover after parsing attributes in process `syz.5.4739'.
[  392.353449][T16060] EXT4-fs error (device loop2): ext4_inlinedir_to_tree:1339: inode #12: block 7: comm syz.2.4736: path /918/file0/file0: bad entry in directory: rec_len % 4 != 0 - offset=259, inode=4278190093, rec_len=255, size=60 fake=0
[  392.399938][T16081] loop5: detected capacity change from 0 to 512
[  392.411484][T16081] EXT4-fs: Ignoring removed nobh option
[  392.423707][T16082] hub 2-0:1.0: USB hub found
[  392.428942][T16082] hub 2-0:1.0: 8 ports detected
[  392.448592][T16082] loop4: detected capacity change from 0 to 1024
[  392.459793][T16081] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #16: comm syz.5.4739: corrupted inode contents
[  392.482371][T16081] EXT4-fs (loop5): Remounting filesystem read-only
[  392.499928][T16081] EXT4-fs (loop5): 1 truncate cleaned up
[  392.513976][ T9718] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  392.524624][ T9718] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  392.542382][T16081] ext4 filesystem being mounted at /880/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  392.548220][ T9718] EXT4-fs (loop5): Quota write (off=8, len=24) cancelled because transaction is not started
[  392.608779][T16096] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4745'.
[  392.633917][T16099] loop3: detected capacity change from 0 to 512
[  392.640926][T16099] EXT4-fs: Ignoring removed mblk_io_submit option
[  392.647671][T16099] EXT4-fs: Ignoring removed mblk_io_submit option
[  392.654852][T16099] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  392.665529][T16099] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c11c, mo2=0002]
[  392.674784][T16099] System zones: 1-12
[  392.679138][T16099] EXT4-fs error (device loop3): ext4_iget_extra_inode:4693: inode #15: comm syz.3.4746: corrupted in-inode xattr: e_value size too large
[  392.693777][T16099] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.4746: couldn't read orphan inode 15 (err -117)
[  392.748054][T16105] dummy0 speed is unknown, defaulting to 1000
[  392.794679][T16111] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  392.803497][T16111] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  392.831178][   T23] tipc: Node number set to 4269801488
[  392.833807][T16117] syzkaller1: entered promiscuous mode
[  392.842988][T16117] syzkaller1: entered allmulticast mode
[  392.913790][T16124] program syz.1.4755 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  392.990930][T16137] loop3: detected capacity change from 0 to 2048
[  393.397196][T16159] loop2: detected capacity change from 0 to 1764
[  393.426637][T16161] SELinux: ebitmap: truncated map
[  393.435910][T16161] SELinux: failed to load policy
[  393.517796][T16166] loop4: detected capacity change from 0 to 512
[  393.527147][T16166] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  393.575377][T16166] EXT4-fs (loop4): 1 truncate cleaned up
[  393.608077][T16172] netlink: 76 bytes leftover after parsing attributes in process `syz.2.4775'.
[  393.640460][T16178] loop4: detected capacity change from 0 to 128
[  393.661545][T16177] netlink: 'syz.3.4777': attribute type 3 has an invalid length.
[  393.799440][T16197] loop2: detected capacity change from 0 to 512
[  393.838283][T16201] netlink: 64 bytes leftover after parsing attributes in process `syz.5.4788'.
[  393.849429][T16197] EXT4-fs (loop2): 1 orphan inode deleted
[  393.871296][ T9718] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:63: Failed to release dquot type 1
[  393.885616][T16197] ext4 filesystem being mounted at /931/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  394.017925][T16219] loop3: detected capacity change from 0 to 2048
[  394.108984][T16239] loop3: detected capacity change from 0 to 512
[  394.117316][T16239] EXT4-fs (loop3): failed to initialize system zone (-117)
[  394.126130][T16239] EXT4-fs (loop3): mount failed
[  394.157274][T16242] loop3: detected capacity change from 0 to 512
[  394.165162][T16242] EXT4-fs: Ignoring removed orlov option
[  394.193730][T16242] ext4 filesystem being mounted at /945/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  394.354081][T16260] sg_write: process 2093 (syz.5.4813) changed security contexts after opening file descriptor, this is not allowed.
[  394.413498][T16267] loop5: detected capacity change from 0 to 2048
[  394.427825][T16270] syzkaller1: entered promiscuous mode
[  394.433731][T16270] syzkaller1: entered allmulticast mode
[  394.478474][T16274] loop5: detected capacity change from 0 to 1024
[  394.485629][T16274] EXT4-fs: Ignoring removed bh option
[  394.560496][T16282] loop3: detected capacity change from 0 to 4096
[  394.574179][T16282] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  394.641447][T16295] ip6tnl1: entered promiscuous mode
[  394.646735][T16295] ip6tnl1: entered allmulticast mode
[  394.678068][T16299] loop3: detected capacity change from 0 to 2048
[  394.698181][T16299] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  394.715179][T16299] EXT4-fs (loop3): Remounting filesystem read-only
[  394.757570][T16309] dummy0 speed is unknown, defaulting to 1000
[  394.777143][T16313] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4835'.
[  394.798873][T16318] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  394.814732][T16318] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  394.871797][T16325] bridge0: port 3(vlan2) entered blocking state
[  394.878322][T16325] bridge0: port 3(vlan2) entered disabled state
[  394.885108][T16325] vlan2: entered allmulticast mode
[  394.890400][T16325] bridge0: entered allmulticast mode
[  394.896331][T16325] vlan2: left allmulticast mode
[  394.901381][T16325] bridge0: left allmulticast mode
[  394.957388][T16331] loop3: detected capacity change from 0 to 2048
[  394.985404][T16331] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  395.099989][T16353] loop3: detected capacity change from 0 to 512
[  395.118071][T16355] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  395.127773][T16355] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  395.138839][T16353] EXT4-fs (loop3): 1 orphan inode deleted
[  395.146488][T16353] ext4 filesystem being mounted at /961/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  395.157813][ T9677] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:23: Failed to release dquot type 1
[  395.212550][T16353] loop3: detected capacity change from 512 to 64
[  395.287980][T12219] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5899: Out of memory
[  395.299439][T12219] EXT4-fs error (device loop3): ext4_dirty_inode:6103: inode #2: comm syz.3.3577: mark_inode_dirty error
[  395.324889][T16356] kmmpd-loop3: attempt to access beyond end of device
[  395.324889][T16356] loop3: rw=14337, sector=64, nr_sectors = 8 limit=64
[  395.338878][T16356] Buffer I/O error on dev loop3, logical block 8, lost sync page write
[  395.429350][ T9718] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  395.497263][T16382] loop5: detected capacity change from 0 to 4096
[  395.527872][T16382] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  395.547303][ T9718] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  395.575713][T16395] netlink: 64 bytes leftover after parsing attributes in process `syz.4.4867'.
[  395.602452][T16395] loop4: detected capacity change from 0 to 512
[  395.612232][ T9718] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  395.613853][T16395] EXT4-fs: Ignoring removed nobh option
[  395.633984][T16378] dummy0 speed is unknown, defaulting to 1000
[  395.644860][T16395] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #16: comm syz.4.4867: corrupted inode contents
[  395.661858][T16395] EXT4-fs (loop4): Remounting filesystem read-only
[  395.668899][T16395] EXT4-fs (loop4): 1 truncate cleaned up
[  395.676859][T16395] ext4 filesystem being mounted at /1000/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  395.692906][ T9697] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  395.703593][ T9697] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  395.714504][ T9697] __quota_error: 528 callbacks suppressed
[  395.714520][ T9697] Quota error (device loop4): write_blk: dquota write failed
[  395.727853][ T9697] Quota error (device loop4): free_dqentry: Can't move quota data block (5) to free list
[  395.751660][ T9697] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  395.762132][ T9697] Quota error (device loop4): v2_write_file_info: Can't write info structure
[  395.772162][ T9697] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  395.784560][ T9718] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  395.830877][T16418] dummy0 speed is unknown, defaulting to 1000
[  395.844292][T16378] chnl_net:caif_netlink_parms(): no params data found
[  395.862085][T16421] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  395.900247][T16421] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  395.968403][ T9718] bridge_slave_1: left promiscuous mode
[  395.974734][ T9718] bridge0: port 2(bridge_slave_1) entered disabled state
[  395.982417][ T9718] bridge_slave_0: left allmulticast mode
[  395.988114][ T9718] bridge_slave_0: left promiscuous mode
[  395.994102][ T9718] bridge0: port 1(bridge_slave_0) entered disabled state
[  396.053723][ T9718] team0: Port device geneve1 removed
[  396.103533][ T9718]  (unregistering): (slave bond_slave_0): Releasing backup interface
[  396.113277][ T9718]  (unregistering): (slave bond_slave_1): Releasing backup interface
[  396.123291][ T9718]  (unregistering): (slave batadv_slave_0): Releasing backup interface
[  396.133128][ T9718]  (unregistering): Released all slaves
[  396.141823][ T9718] bond0 (unregistering): Released all slaves
[  396.150338][ T9718] bond1 (unregistering): Released all slaves
[  396.176333][T16378] bridge0: port 1(bridge_slave_0) entered blocking state
[  396.183555][T16378] bridge0: port 1(bridge_slave_0) entered disabled state
[  396.190884][T16378] bridge_slave_0: entered allmulticast mode
[  396.197535][T16378] bridge_slave_0: entered promiscuous mode
[  396.204405][ T9718] IPVS: stopping master sync thread 9373 ...
[  396.207442][T16378] bridge0: port 2(bridge_slave_1) entered blocking state
[  396.217675][T16378] bridge0: port 2(bridge_slave_1) entered disabled state
[  396.225396][T16378] bridge_slave_1: entered allmulticast mode
[  396.232076][T16378] bridge_slave_1: entered promiscuous mode
[  396.256643][ T9718] hsr_slave_0: left promiscuous mode
[  396.262365][ T9718] hsr_slave_1: left promiscuous mode
[  396.268007][ T9718] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  396.275541][ T9718] batman_adv: batadv0: Removing interface: batadv_slave_1
[  396.286773][ T9718] veth1_macvtap: left promiscuous mode
[  396.292728][ T9718] veth1_vlan: left promiscuous mode
[  396.298246][ T9718] veth0_vlan: left promiscuous mode
[  396.374111][ T9718] team0 (unregistering): Port device team_slave_1 removed
[  396.384168][ T9718] team0 (unregistering): Port device team_slave_0 removed
[  396.418110][T16378] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  396.427434][ T2968] infiniband syz1: ib_query_port failed (-19)
[  396.430596][T16378] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  396.450449][T16428] loop5: detected capacity change from 0 to 512
[  396.457614][T16428] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  396.458656][T16378] team0: Port device team_slave_0 added
[  396.473194][T16378] team0: Port device team_slave_1 added
[  396.479552][T16428] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  396.488275][T16428] EXT4-fs error (device loop5): ext4_iget_extra_inode:4693: inode #15: comm syz.5.4877: corrupted in-inode xattr: e_value size too large
[  396.503663][T16428] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.4877: couldn't read orphan inode 15 (err -117)
[  396.504650][T16378] batman_adv: batadv0: Adding interface: batadv_slave_0
[  396.522996][T16378] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  396.551190][T16378] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  396.565693][T16378] batman_adv: batadv0: Adding interface: batadv_slave_1
[  396.573026][T16378] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  396.599833][T16378] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  396.630261][T16434] loop2: detected capacity change from 0 to 512
[  396.651003][T16434] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  396.653157][   T29] audit: type=1400 audit(2000000053.930:9717): avc:  denied  { create } for  pid=16435 comm="syz.1.4880" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  396.661237][T16434] EXT4-fs (loop2): invalid journal inode
[  396.680223][   T29] audit: type=1400 audit(2000000053.930:9718): avc:  denied  { write } for  pid=16435 comm="syz.1.4880" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  396.688815][T16434] EXT4-fs (loop2): can't get journal size
[  396.716167][T16378] hsr_slave_0: entered promiscuous mode
[  396.723654][T16378] hsr_slave_1: entered promiscuous mode
[  396.729907][T16378] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  396.737765][T16432] loop5: detected capacity change from 0 to 512
[  396.744249][T16378] Cannot create hsr debugfs directory
[  396.749881][T16436] lo speed is unknown, defaulting to 1000
[  396.757691][T16434] EXT4-fs (loop2): 1 truncate cleaned up
[  396.759375][T16432] EXT4-fs (loop5): external journal device major/minor numbers have changed
[  396.774903][T16436] lo speed is unknown, defaulting to 1000
[  396.781180][T16436] lo speed is unknown, defaulting to 1000
[  396.789181][T16436] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  396.789298][T16432] block device autoloading is deprecated and will be removed.
[  396.817365][T16434] SELinux:  Context system_u:object_r:hald_cache_t:s0 is not valid (left unmapped).
[  396.828522][T16432] syz.5.4878: attempt to access beyond end of device
[  396.828522][T16432] md185: rw=0, sector=2, nr_sectors = 2 limit=0
[  396.841342][   T29] audit: type=1400 audit(2000000054.100:9719): avc:  denied  { mac_admin } for  pid=16433 comm="syz.2.4879" capability=33  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  396.841394][   T29] audit: type=1400 audit(2000000054.110:9720): avc:  denied  { relabelto } for  pid=16433 comm="syz.2.4879" name="file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:hald_cache_t:s0"
[  396.842302][T16434] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  396.889659][T16432] EXT4-fs (loop5): couldn't read superblock of external journal
[  396.915571][T16436] lo speed is unknown, defaulting to 1000
[  396.924363][T16436] lo speed is unknown, defaulting to 1000
[  396.931034][T16436] lo speed is unknown, defaulting to 1000
[  396.944861][T16436] lo speed is unknown, defaulting to 1000
[  396.958372][T16436] lo speed is unknown, defaulting to 1000
[  396.965020][T16436] lo speed is unknown, defaulting to 1000
[  396.971554][T16436] lo speed is unknown, defaulting to 1000
[  396.971777][   T29] audit: type=1326 audit(2000000054.230:9721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16439 comm="syz.4.4881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce3c2be969 code=0x7ffc0000
[  397.002847][   T29] audit: type=1326 audit(2000000054.230:9722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16439 comm="syz.4.4881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce3c2be969 code=0x7ffc0000
[  397.070547][T16378] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  397.083702][T16442] loop4: detected capacity change from 0 to 512
[  397.118479][T16442] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.4882: Failed to acquire dquot type 1
[  397.132570][T16442] EXT4-fs (loop4): 1 truncate cleaned up
[  397.133012][T16378] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  397.138877][T16442] ext4 filesystem being mounted at /1003/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  397.160569][T16445] netlink: 'syz.2.4883': attribute type 25 has an invalid length.
[  397.168658][T16445] netlink: 'syz.2.4883': attribute type 1 has an invalid length.
[  397.176619][T16445] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4883'.
[  397.186253][T16445] bridge0: port 1(bridge_slave_0) entered learning state
[  397.193587][T16378] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  397.218578][T16378] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  397.245858][T16459] program  is using a deprecated SCSI ioctl, please convert it to SG_IO
[  397.255478][T16459] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  397.350661][T16378] 8021q: adding VLAN 0 to HW filter on device bond0
[  397.375447][T16467] loop2: detected capacity change from 0 to 164
[  397.396407][T16378] 8021q: adding VLAN 0 to HW filter on device team0
[  397.430198][ T9697] bridge0: port 1(bridge_slave_0) entered blocking state
[  397.437878][ T9697] bridge0: port 1(bridge_slave_0) entered forwarding state
[  397.448864][ T9697] bridge0: port 2(bridge_slave_1) entered blocking state
[  397.456793][ T9697] bridge0: port 2(bridge_slave_1) entered forwarding state
[  397.532227][T16467] syz.2.4890: attempt to access beyond end of device
[  397.532227][T16467] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  397.558370][T16467] syz.2.4890: attempt to access beyond end of device
[  397.558370][T16467] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164
[  397.667036][T16378] 8021q: adding VLAN 0 to HW filter on device batadv0
[  397.679691][T16487] hub 2-0:1.0: USB hub found
[  397.694678][T16487] hub 2-0:1.0: 8 ports detected
[  397.902372][T16378] veth0_vlan: entered promiscuous mode
[  397.912749][T16378] veth1_vlan: entered promiscuous mode
[  397.932133][T16378] veth0_macvtap: entered promiscuous mode
[  397.940397][T16378] veth1_macvtap: entered promiscuous mode
[  397.953553][T16378] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  397.964874][T16378] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  397.975039][T16378] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  397.985797][T16378] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  397.996087][T16378] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  398.006836][T16378] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.016840][T16378] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  398.027377][T16378] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.042039][T16378] batman_adv: batadv0: Interface activated: batadv_slave_0
[  398.053232][T16378] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  398.063853][T16378] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.073713][T16378] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  398.084185][T16378] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.094364][T16378] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  398.105134][T16378] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.115163][T16378] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  398.125861][T16378] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.137020][T16378] batman_adv: batadv0: Interface activated: batadv_slave_1
[  398.147032][T16378] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  398.156085][T16378] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  398.164899][T16378] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  398.173916][T16378] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  398.238615][T16514] loop4: detected capacity change from 0 to 4096
[  398.251920][T16518] SELinux:  policydb version 2066796142 does not match my version range 15-34
[  398.261379][T16518] SELinux: failed to load policy
[  398.264518][T16514] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  398.369532][T16525] dummy0 speed is unknown, defaulting to 1000
[  398.377239][T16525] lo speed is unknown, defaulting to 1000
[  398.488170][T16543] loop6: detected capacity change from 0 to 164
[  398.503060][T16543] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  398.518049][T16543] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  398.527398][T16543] Symlink component flag not implemented
[  398.533250][T16543] Symlink component flag not implemented
[  398.554491][T16543] Symlink component flag not implemented (7)
[  398.561054][T16543] Symlink component flag not implemented (116)
[  398.643580][T16558] loop6: detected capacity change from 0 to 4096
[  398.763714][T16569] hub 2-0:1.0: USB hub found
[  398.768558][T16569] hub 2-0:1.0: 8 ports detected
[  398.780423][T16569] loop6: detected capacity change from 0 to 1024
[  399.327188][T16582] loop9: detected capacity change from 0 to 7
[  399.333732][T16582] Buffer I/O error on dev loop9, logical block 0, async page read
[  399.341729][T16582] Buffer I/O error on dev loop9, logical block 0, async page read
[  399.349877][T16582]  loop9: unable to read partition table
[  399.356204][T16582] loop_reread_partitions: partition scan of loop9 (�被������ڬ��dƤ����ݡ�����
[  399.356204][T16582] 
U�������) failed (rc=-5)
[  399.495337][T16595] loop2: detected capacity change from 0 to 512
[  399.513069][T16597] loop4: detected capacity change from 0 to 1024
[  399.520043][T16597] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  399.557021][T16595] EXT4-fs (loop2): 1 orphan inode deleted
[  399.570617][ T9682] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:28: Failed to release dquot type 1
[  399.583681][T16595] ext4 filesystem being mounted at /953/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  399.621425][T16595] loop2: detected capacity change from 512 to 64
[  399.672328][ T9723] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5899: Out of memory
[  399.676678][T16612] loop4: detected capacity change from 0 to 2048
[  399.690984][ T9723] EXT4-fs error (device loop2): ext4_dirty_inode:6103: inode #2: comm syz.2.2644: mark_inode_dirty error
[  399.705600][T16616] loop6: detected capacity change from 0 to 512
[  399.718343][T16601] kmmpd-loop2: attempt to access beyond end of device
[  399.718343][T16601] loop2: rw=14337, sector=64, nr_sectors = 8 limit=64
[  399.732037][T16601] Buffer I/O error on dev loop2, logical block 8, lost sync page write
[  399.765268][ T9677] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  399.780014][T16616] ext4 filesystem being mounted at /7/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  399.817913][T16627] ipt_rpfilter: unknown options
[  399.828112][T16629] sd 0:0:1:0: device reset
[  399.838392][T16627] loop4: detected capacity change from 0 to 1024
[  399.846423][T16627] EXT4-fs: Ignoring removed i_version option
[  399.862143][T16627] EXT4-fs (loop4): stripe (8) is not aligned with cluster size (16), stripe is disabled
[  399.875616][ T9677] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  399.892466][T16627] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.4949: Failed to acquire dquot type 0
[  399.912658][T16627] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  399.927948][T16627] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.4949: corrupted inode contents
[  399.943956][T16627] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #13: comm syz.4.4949: mark_inode_dirty error
[  399.946780][ T9677] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  399.983461][T16627] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.4949: corrupted inode contents
[  400.009626][T16650] loop6: detected capacity change from 0 to 128
[  400.017165][T16627] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #13: comm syz.4.4949: mark_inode_dirty error
[  400.037026][T16650] ext4 filesystem being mounted at /9/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  400.038703][T16627] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.4949: corrupted inode contents
[  400.060342][ T9677] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  400.071007][T16655] loop5: detected capacity change from 0 to 2048
[  400.072016][T16627] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  400.102059][T16627] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.4949: corrupted inode contents
[  400.135089][T16627] EXT4-fs error (device loop4): ext4_truncate:4255: inode #13: comm syz.4.4949: mark_inode_dirty error
[  400.145802][T16630] dummy0 speed is unknown, defaulting to 1000
[  400.153208][T16627] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  400.153987][T16660] binfmt_misc: register: failed to install interpreter file ./file2
[  400.164397][T16627] EXT4-fs (loop4): 1 truncate cleaned up
[  400.170739][ T9677] bridge_slave_1: left allmulticast mode
[  400.182156][ T9677] bridge_slave_1: left promiscuous mode
[  400.187838][ T9677] bridge0: port 2(bridge_slave_1) entered disabled state
[  400.219322][ T9677] bridge_slave_0: left allmulticast mode
[  400.225111][ T9677] bridge_slave_0: left promiscuous mode
[  400.230797][ T9677] bridge0: port 1(bridge_slave_0) entered disabled state
[  400.365237][ T9677] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  400.383111][ T9677] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  400.397287][ T9677] bond0 (unregistering): Released all slaves
[  400.405696][T16685] loop5: detected capacity change from 0 to 128
[  400.408121][ T9677] bond1 (unregistering): Released all slaves
[  400.424304][ T3567] srz1: Port: 1 Link DOWN
[  400.429707][T16685] ext4 filesystem being mounted at /937/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  400.468221][T16630] lo speed is unknown, defaulting to 1000
[  400.533403][ T9677] tipc: Disabling bearer <eth:macvtap0>
[  400.539628][ T9677] tipc: Left network mode
[  400.562052][ T9677] hsr_slave_0: left promiscuous mode
[  400.568163][ T9677] hsr_slave_1: left promiscuous mode
[  400.573965][ T9677] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  400.581580][ T9677] batman_adv: batadv0: Removing interface: batadv_slave_0
[  400.589572][ T9677] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  400.597296][ T9677] batman_adv: batadv0: Removing interface: batadv_slave_1
[  400.610254][ T9677] veth1_macvtap: left promiscuous mode
[  400.616345][ T9677] veth0_macvtap: left promiscuous mode
[  400.623752][ T9677] veth1_vlan: left promiscuous mode
[  400.629184][ T9677] veth0_vlan: left promiscuous mode
[  400.704753][ T9677] team0 (unregistering): Port device team_slave_1 removed
[  400.717780][ T9677] team0 (unregistering): Port device team_slave_0 removed
[  400.730221][T16701] loop5: detected capacity change from 0 to 512
[  400.737307][T16701] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  400.747438][T16701] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  400.756689][T16701] EXT4-fs (loop5): Couldn't mount because of unsupported optional features (fffc1829)
[  400.769699][T16630] chnl_net:caif_netlink_parms(): no params data found
[  400.809158][   T29] kauditd_printk_skb: 403 callbacks suppressed
[  400.809175][   T29] audit: type=1326 audit(2000000058.090:10121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16706 comm="syz.5.4977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0055fe969 code=0x7ffc0000
[  400.839507][   T29] audit: type=1326 audit(2000000058.090:10122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16706 comm="syz.5.4977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0055fe969 code=0x7ffc0000
[  400.864860][   T29] audit: type=1326 audit(2000000058.090:10123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16706 comm="syz.5.4977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa0055fe969 code=0x7ffc0000
[  400.888686][   T29] audit: type=1326 audit(2000000058.090:10124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16706 comm="syz.5.4977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0055fe969 code=0x7ffc0000
[  400.912519][   T29] audit: type=1326 audit(2000000058.090:10125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16706 comm="syz.5.4977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fa0055fe969 code=0x7ffc0000
[  400.936271][   T29] audit: type=1326 audit(2000000058.100:10126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16709 comm="syz.5.4977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fa005631225 code=0x7ffc0000
[  400.960331][   T29] audit: type=1326 audit(2000000058.100:10127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16706 comm="syz.5.4977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0055fe969 code=0x7ffc0000
[  400.984331][   T29] audit: type=1326 audit(2000000058.100:10128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16706 comm="syz.5.4977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0055fe969 code=0x7ffc0000
[  401.008639][   T29] audit: type=1326 audit(2000000058.100:10129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16706 comm="syz.5.4977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7fa0055fe969 code=0x7ffc0000
[  401.032483][   T29] audit: type=1326 audit(2000000058.100:10130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16706 comm="syz.5.4977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0055fe969 code=0x7ffc0000
[  401.064881][T16630] bridge0: port 1(bridge_slave_0) entered blocking state
[  401.072510][T16630] bridge0: port 1(bridge_slave_0) entered disabled state
[  401.082460][T16630] bridge_slave_0: entered allmulticast mode
[  401.089365][T16630] bridge_slave_0: entered promiscuous mode
[  401.096418][T16630] bridge0: port 2(bridge_slave_1) entered blocking state
[  401.103648][T16630] bridge0: port 2(bridge_slave_1) entered disabled state
[  401.110880][T16630] bridge_slave_1: entered allmulticast mode
[  401.121526][T16630] bridge_slave_1: entered promiscuous mode
[  401.128003][T16720] loop5: detected capacity change from 0 to 764
[  401.145129][T16720] Symlink component flag not implemented
[  401.152283][T16720] Symlink component flag not implemented (7)
[  401.161040][T16630] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  401.234328][T16728] loop4: detected capacity change from 0 to 256
[  401.243800][T16724] bridge0: port 2(bridge_slave_1) entered disabled state
[  401.251229][T16724] bridge0: port 1(bridge_slave_0) entered disabled state
[  401.316359][T16724] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  401.326953][T16724] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  401.342473][T16736] loop4: detected capacity change from 0 to 1024
[  401.369290][T16724] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  401.378571][T16724] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  401.387776][T16724] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  401.396859][T16724] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  401.420202][T16745] loop4: detected capacity change from 0 to 512
[  401.425620][T16630] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  401.441863][T16745] EXT4-fs (loop4): orphan cleanup on readonly fs
[  401.449657][T16745] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.4990: bad orphan inode 13
[  401.482884][T16745] ext4_test_bit(bit=12, block=18) = 1
[  401.488522][T16745] is_bad_inode(inode)=0
[  401.492745][T16745] NEXT_ORPHAN(inode)=2130706432
[  401.498193][T16745] max_ino=32
[  401.501433][T16745] i_nlink=1
[  401.503284][T16630] team0: Port device team_slave_0 added
[  401.512964][T16745] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  401.528352][T16630] team0: Port device team_slave_1 added
[  401.550865][T16753] loop6: detected capacity change from 0 to 1024
[  401.560993][T16745] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.4990: bg 0: block 248: padding at end of block bitmap is not set
[  401.589754][T16630] batman_adv: batadv0: Adding interface: batadv_slave_0
[  401.596891][T16630] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  401.623412][T16630] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  401.635945][T16745] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.4990: Failed to acquire dquot type 1
[  401.649038][T16745] EXT4-fs warning (device loop4): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  401.654352][T16630] batman_adv: batadv0: Adding interface: batadv_slave_1
[  401.671757][T16630] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  401.698835][T16630] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  401.749742][T16630] hsr_slave_0: entered promiscuous mode
[  401.756305][T16630] hsr_slave_1: entered promiscuous mode
[  401.762858][T16630] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  401.770477][T16630] Cannot create hsr debugfs directory
[  401.877707][T16774] loop5: detected capacity change from 0 to 2048
[  401.933962][T16630] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  401.953593][T16630] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  401.973327][T16630] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  401.997313][T16630] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  402.073514][T16630] 8021q: adding VLAN 0 to HW filter on device bond0
[  402.099600][T16786] loop5: detected capacity change from 0 to 2048
[  402.123097][T16630] 8021q: adding VLAN 0 to HW filter on device team0
[  402.146971][ T9670] bridge0: port 1(bridge_slave_0) entered blocking state
[  402.154284][ T9670] bridge0: port 1(bridge_slave_0) entered forwarding state
[  402.167891][ T9697] bridge0: port 2(bridge_slave_1) entered blocking state
[  402.175089][ T9697] bridge0: port 2(bridge_slave_1) entered forwarding state
[  402.342643][T16800] loop4: detected capacity change from 0 to 512
[  402.350034][T16800] EXT4-fs: Ignoring removed bh option
[  402.370187][T16800] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  402.395532][T16630] 8021q: adding VLAN 0 to HW filter on device batadv0
[  402.408473][T16800] EXT4-fs (loop4): 1 truncate cleaned up
[  402.560710][T16814] netlink: 'syz.4.5011': attribute type 12 has an invalid length.
[  402.569016][T16814] netlink: 'syz.4.5011': attribute type 29 has an invalid length.
[  402.578356][T16814] netlink: 148 bytes leftover after parsing attributes in process `syz.4.5011'.
[  402.587970][T16814] netlink: 'syz.4.5011': attribute type 1 has an invalid length.
[  402.596254][T16814] netlink: 47 bytes leftover after parsing attributes in process `syz.4.5011'.
[  402.633060][T16816] loop4: detected capacity change from 0 to 512
[  402.652440][T16816] EXT4-fs: Ignoring removed orlov option
[  402.659376][T16816] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  402.684728][T16819] loop6: detected capacity change from 0 to 1024
[  402.692676][T16816] EXT4-fs (loop4): 1 orphan inode deleted
[  402.698531][T16816] EXT4-fs (loop4): 1 truncate cleaned up
[  402.713536][T16816] EXT4-fs error (device loop4): ext4_inlinedir_to_tree:1339: inode #12: block 7: comm syz.4.5012: path /1024/file1/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0
[  402.720978][T16630] veth0_vlan: entered promiscuous mode
[  402.746670][T16630] veth1_vlan: entered promiscuous mode
[  402.747566][T16819] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  402.773534][T16630] veth0_macvtap: entered promiscuous mode
[  402.783477][T16816] EXT4-fs (loop4): Remounting filesystem read-only
[  402.811929][T16630] veth1_macvtap: entered promiscuous mode
[  402.825344][T16630] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  402.836060][T16630] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  402.846261][T16630] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  402.857021][T16630] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  402.867176][T16630] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  402.877847][T16630] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  402.898507][T16630] batman_adv: batadv0: Interface activated: batadv_slave_0
[  402.909507][T16630] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  402.920129][T16630] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  402.930092][T16630] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  402.941007][T16630] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  402.951081][T16630] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  402.961778][T16630] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  402.973632][T16630] batman_adv: batadv0: Interface activated: batadv_slave_1
[  402.983665][T16828] loop6: detected capacity change from 0 to 512
[  402.993244][T16828] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  403.004642][T16630] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  403.013771][T16630] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  403.022796][T16630] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  403.025507][T16830] loop4: detected capacity change from 0 to 2048
[  403.031688][T16630] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  403.049071][T16828] EXT4-fs (loop6): 1 truncate cleaned up
[  403.135261][T16842] loop7: detected capacity change from 0 to 1024
[  403.145396][T16842] EXT4-fs: Ignoring removed orlov option
[  403.154708][T16841] loop6: detected capacity change from 0 to 1024
[  403.169835][T16842] EXT4-fs (loop7): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  403.182187][T16841] EXT4-fs: Ignoring removed oldalloc option
[  403.188189][T16841] EXT4-fs: Ignoring removed orlov option
[  403.207409][T16841] EXT4-fs (loop6): stripe (1570) is not aligned with cluster size (16), stripe is disabled
[  403.237389][T16842] EXT4-fs error (device loop7): ext4_check_all_de:659: inode #12: block 7: comm syz.7.4948: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=108 fake=0
[  403.332556][T16865] loop6: detected capacity change from 0 to 1024
[  403.358988][T16865] EXT4-fs: Ignoring removed orlov option
[  403.365021][T16865] EXT4-fs: Ignoring removed nomblk_io_submit option
[  403.490118][T16887] syzkaller1: entered promiscuous mode
[  403.496222][T16887] syzkaller1: entered allmulticast mode
[  403.717574][T16905] loop4: detected capacity change from 0 to 128
[  403.733629][T16905] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  403.740237][T16909] loop5: detected capacity change from 0 to 256
[  403.747919][T16905] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  403.878528][T16919] loop4: detected capacity change from 0 to 8192
[  403.896103][T16927] loop6: detected capacity change from 0 to 164
[  403.906522][T16927] Unable to read rock-ridge attributes
[  403.913738][T16927] Unable to read rock-ridge attributes
[  403.921384][T16927] iso9660: Corrupted directory entry in block 4 of inode 1792
[  403.933344][T16919]  loop4: p1 p2 p3 p4
[  403.937674][T16919] loop4: p1 size 108922248 extends beyond EOD, truncated
[  403.950515][T16919] loop4: p2 start 861536256 is beyond EOD, truncated
[  403.957577][T16919] loop4: p3 start 851968 is beyond EOD, truncated
[  403.964087][T16919] loop4: p4 size 65536 extends beyond EOD, truncated
[  404.144997][T16961] xt_NFQUEUE: number of total queues is 0
[  404.166363][T16963] loop4: detected capacity change from 0 to 2048
[  404.214282][T16964] hub 2-0:1.0: USB hub found
[  404.219138][T16964] hub 2-0:1.0: 8 ports detected
[  404.232206][T16964] loop6: detected capacity change from 0 to 1024
[  404.253514][T16973] netlink: 'syz.5.5073': attribute type 3 has an invalid length.
[  404.374282][T16985] xt_hashlimit: max too large, truncated to 1048576
[  404.653455][T16992] xt_CT: No such helper "syz0"
[  404.780951][T16997] bridge0: port 2(bridge_slave_1) entered disabled state
[  404.788307][T16997] bridge0: port 1(bridge_slave_0) entered disabled state
[  404.847103][T16997] 0�X���: left allmulticast mode
[  404.936269][T16997] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  404.998023][T16997] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  405.112006][T16997] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  405.121228][T16997] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  405.130301][T16997] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  405.139374][T16997] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  405.158351][T17012] netlink: 28 bytes leftover after parsing attributes in process `syz.7.5088'.
[  405.167666][T17012] netlink: 108 bytes leftover after parsing attributes in process `syz.7.5088'.
[  405.185794][T17012] netlink: 28 bytes leftover after parsing attributes in process `syz.7.5088'.
[  405.195290][T17012] netlink: 108 bytes leftover after parsing attributes in process `syz.7.5088'.
[  405.204486][T17012] netlink: 84 bytes leftover after parsing attributes in process `syz.7.5088'.
[  405.404030][T17033] hub 2-0:1.0: USB hub found
[  405.409279][T17033] hub 2-0:1.0: 8 ports detected
[  405.428473][T17033] loop4: detected capacity change from 0 to 1024
[  405.555634][T17044] bridge0: port 2(bridge_slave_1) entered disabled state
[  405.563196][T17044] bridge0: port 1(bridge_slave_0) entered disabled state
[  405.611645][T17044] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  405.623429][T17044] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  405.677094][T17044] netdevsim netdevsim7 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  405.686150][T17044] netdevsim netdevsim7 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  405.695263][T17044] netdevsim netdevsim7 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  405.704624][T17044] netdevsim netdevsim7 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  405.789806][T17058] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  405.815590][   T29] kauditd_printk_skb: 454 callbacks suppressed
[  405.815606][   T29] audit: type=1400 audit(2000000063.100:10583): avc:  denied  { create } for  pid=17061 comm="syz.7.5108" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  405.842801][   T29] audit: type=1400 audit(2000000063.100:10584): avc:  denied  { listen } for  pid=17061 comm="syz.7.5108" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  405.900218][   T29] audit: type=1326 audit(2000000063.180:10585): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17068 comm="syz.1.5112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf76a9e969 code=0x7ffc0000
[  405.924821][   T29] audit: type=1326 audit(2000000063.180:10586): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17068 comm="syz.1.5112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf76a9e969 code=0x7ffc0000
[  405.949349][   T29] audit: type=1326 audit(2000000063.180:10587): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17068 comm="syz.1.5112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcf76a9e969 code=0x7ffc0000
[  405.973533][   T29] audit: type=1326 audit(2000000063.180:10588): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17068 comm="syz.1.5112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf76a9e969 code=0x7ffc0000
[  405.998350][   T29] audit: type=1326 audit(2000000063.180:10589): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17068 comm="syz.1.5112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcf76a9e969 code=0x7ffc0000
[  406.022439][   T29] audit: type=1326 audit(2000000063.180:10590): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17068 comm="syz.1.5112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf76a9e969 code=0x7ffc0000
[  406.047047][   T29] audit: type=1326 audit(2000000063.180:10591): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17068 comm="syz.1.5112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fcf76a9e969 code=0x7ffc0000
[  406.071233][   T29] audit: type=1326 audit(2000000063.180:10592): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17068 comm="syz.1.5112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf76a9e969 code=0x7ffc0000
[  406.192462][T17086] netlink: 830 bytes leftover after parsing attributes in process `syz.6.5118'.
[  406.266345][T17097] loop6: detected capacity change from 0 to 2048
[  406.289659][T17099] loop7: detected capacity change from 0 to 512
[  406.314549][T17099] EXT4-fs (loop7): 1 orphan inode deleted
[  406.321019][T17099] EXT4-fs mount: 121 callbacks suppressed
[  406.321035][T17099] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  406.339903][ T9697] EXT4-fs error (device loop7): ext4_release_dquot:6971: comm kworker/u8:43: Failed to release dquot type 1
[  406.340793][T17099] ext4 filesystem being mounted at /30/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  406.465977][T16630] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  406.536806][T17122] dummy0 speed is unknown, defaulting to 1000
[  406.544509][T17122] lo speed is unknown, defaulting to 1000
[  406.753466][T17142] loop7: detected capacity change from 0 to 1024
[  406.780717][T17142] EXT4-fs: Ignoring removed nomblk_io_submit option
[  406.800582][T17145] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5143'.
[  406.852974][T17142] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  406.892763][T17142] EXT4-fs (loop7): shut down requested (0)
[  406.924734][T16630] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  407.059991][T17158] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  407.108072][T17162] hub 9-0:1.0: USB hub found
[  407.119759][T17162] hub 9-0:1.0: 8 ports detected
[  407.184425][T17164] loop7: detected capacity change from 0 to 512
[  407.274195][T17164] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  407.286973][T17164] ext4 filesystem being mounted at /35/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  407.303099][T17164] IPv6: sit1: Disabled Multicast RS
[  407.402653][T17166] loop4: detected capacity change from 0 to 1024
[  407.430462][T17166] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  407.498155][T17166] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  407.589890][T17166] EXT4-fs (loop4): orphan cleanup on readonly fs
[  407.628783][T17175] netlink: 76 bytes leftover after parsing attributes in process `syz.1.5155'.
[  407.648701][T17166] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  407.700037][T17166] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #3: comm syz.4.5151: mark_inode_dirty error
[  407.819643][T17166] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.5151: Invalid block bitmap block 3 in block_group 0
[  407.835027][T16378] EXT4-fs (loop6): unmounting filesystem 00000800-0000-0000-0000-000000000000.
[  407.952378][T17166] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.5151: Invalid block bitmap block 3 in block_group 0
[  408.003833][T17166] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.5151: Invalid block bitmap block 3 in block_group 0
[  408.040904][T17166] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  408.062550][T17166] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #3: comm syz.4.5151: mark_inode_dirty error
[  408.114774][T17166] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 1: comm syz.4.5151: lblock 6 mapped to illegal pblock 1 (length 1)
[  408.166953][T17166] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 48: comm syz.4.5151: lblock 0 mapped to illegal pblock 48 (length 1)
[  408.208217][T17166] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.5151: Failed to acquire dquot type 0
[  408.231873][T17166] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 49: comm syz.4.5151: lblock 1 mapped to illegal pblock 49 (length 1)
[  408.281530][T17166] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.5151: Failed to acquire dquot type 0
[  408.300198][T17166] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  408.368868][T17166] EXT4-fs error (device loop4): ext4_evict_inode:259: inode #15: comm syz.4.5151: mark_inode_dirty error
[  408.432908][T17166] EXT4-fs warning (device loop4): ext4_evict_inode:262: couldn't mark inode dirty (err -117)
[  408.444595][T17166] EXT4-fs (loop4): 1 orphan inode deleted
[  408.450929][T17166] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  408.488587][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  408.669474][T16630] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  408.688634][T17215] netlink: 36 bytes leftover after parsing attributes in process `syz.7.5170'.
[  409.002703][T17232] xt_CT: You must specify a L4 protocol and not use inversions on it
[  409.042729][T17238] sd 0:0:1:0: device reset
[  409.083452][T17243] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5180'.
[  409.179268][T17255] SELinux:  Context system_u:object_r:mouse_device_t:s0 is not valid (left unmapped).
[  409.295884][T17268] loop5: detected capacity change from 0 to 2048
[  409.352386][T17268] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  409.467929][ T3861] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  409.501104][T17287] program syz.1.5202 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  409.540074][T17291] netlink: 'syz.1.5204': attribute type 10 has an invalid length.
[  409.587951][T17291] team0: Device hsr_slave_0 failed to register rx_handler
[  409.656279][T17308] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  409.678268][T17314] geneve0: entered allmulticast mode
[  409.701537][T17308] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  409.763361][T17308] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  409.883087][T17308] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  409.924169][T17345] loop5: detected capacity change from 0 to 2048
[  409.939774][T17308] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  409.951622][T17343] hub 2-0:1.0: USB hub found
[  409.954470][T17308] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  409.956369][T17343] hub 2-0:1.0: 8 ports detected
[  409.965312][T17345] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  409.978773][T17343] loop7: detected capacity change from 0 to 1024
[  409.986926][T17308] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  410.000590][T17308] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  410.022973][T17343] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  410.074597][ T3861] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  410.084566][T17355] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  410.097045][T17354] IPVS: stopping master sync thread 17355 ...
[  410.202100][T17370] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  410.236569][T17374] xt_hashlimit: max too large, truncated to 1048576
[  410.292189][T17380] loop4: detected capacity change from 0 to 512
[  410.302448][T17380] EXT4-fs: Ignoring removed oldalloc option
[  410.312083][T17380] EXT4-fs error (device loop4): ext4_xattr_inode_iget:433: comm syz.4.5244: Parent and EA inode have the same ino 15
[  410.327108][T17380] EXT4-fs (loop4): Remounting filesystem read-only
[  410.333746][T17380] EXT4-fs warning (device loop4): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  410.345293][T17380] EXT4-fs (loop4): 1 orphan inode deleted
[  410.352128][T17380] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  410.366645][T17380] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  410.440266][T17391] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5248'.
[  410.457050][T17391] 8021q: adding VLAN 0 to HW filter on device team1
[  410.474597][T17395] lo: entered promiscuous mode
[  410.479464][T17395] lo: entered allmulticast mode
[  410.527482][T17403] geneve0: entered allmulticast mode
[  410.534944][T17405] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5255'.
[  410.711813][T16630] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  410.916163][   T29] kauditd_printk_skb: 407 callbacks suppressed
[  410.916181][   T29] audit: type=1400 audit(2000000068.200:10993): avc:  denied  { write } for  pid=17440 comm="syz.6.5272" name="file0" dev="tmpfs" ino=336 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  410.949882][   T29] audit: type=1400 audit(2000000068.230:10994): avc:  denied  { open } for  pid=17440 comm="syz.6.5272" path="/60/file0" dev="tmpfs" ino=336 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  410.973353][   T29] audit: type=1400 audit(2000000068.230:10995): avc:  denied  { ioctl } for  pid=17440 comm="syz.6.5272" path="/60/file0" dev="tmpfs" ino=336 ioctlcmd=0x1273 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  411.000613][   T29] audit: type=1326 audit(2000000068.290:10996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17443 comm="syz.1.5273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf76a9e969 code=0x7ffc0000
[  411.034880][   T29] audit: type=1326 audit(2000000068.310:10997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17443 comm="syz.1.5273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=216 compat=0 ip=0x7fcf76a9e969 code=0x7ffc0000
[  411.058792][   T29] audit: type=1326 audit(2000000068.310:10998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17443 comm="syz.1.5273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf76a9e969 code=0x7ffc0000
[  411.124116][T17453] netlink: 52 bytes leftover after parsing attributes in process `syz.1.5277'.
[  411.127486][T17448] hub 2-0:1.0: USB hub found
[  411.143141][T17448] hub 2-0:1.0: 8 ports detected
[  411.164054][T17448] loop7: detected capacity change from 0 to 1024
[  411.179353][   T29] audit: type=1400 audit(2000000068.460:10999): avc:  denied  { getopt } for  pid=17460 comm="syz.5.5281" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  411.202072][T17448] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  411.312702][   T29] audit: type=1326 audit(2000000068.600:11000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17474 comm="syz.6.5287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5462e969 code=0x7ffc0000
[  411.350571][   T29] audit: type=1326 audit(2000000068.620:11001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17474 comm="syz.6.5287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7f2b5462e969 code=0x7ffc0000
[  411.374448][   T29] audit: type=1326 audit(2000000068.620:11002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17474 comm="syz.6.5287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5462e969 code=0x7ffc0000
[  411.474532][T17487] sg_write: data in/out 122/10 bytes for SCSI command 0xe4-- guessing data in;
[  411.474532][T17487]    program syz.6.5292 not setting count and/or reply_len properly
[  411.542401][T17493] netlink: 'syz.6.5295': attribute type 1 has an invalid length.
[  411.553340][T17495] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=17495 comm=syz.4.5296
[  411.568580][T17493] bond1: entered promiscuous mode
[  411.574301][T17493] 8021q: adding VLAN 0 to HW filter on device bond1
[  411.599688][T17493] bond1: (slave veth3): making interface the new active one
[  411.607288][T17493] veth3: entered promiscuous mode
[  411.614974][T17493] bond1: (slave veth3): Enslaving as an active interface with an up link
[  411.638681][T17502] netlink: 96 bytes leftover after parsing attributes in process `syz.4.5299'.
[  411.880805][T16630] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  411.942647][T17538] loop6: detected capacity change from 0 to 1024
[  411.949790][T17538] EXT4-fs: Ignoring removed mblk_io_submit option
[  411.956635][T17538] EXT4-fs: Ignoring removed nobh option
[  411.962417][T17538] EXT4-fs: Ignoring removed bh option
[  411.983060][T17538] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  411.999599][T17538] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4113: comm syz.6.5310: Allocating blocks 385-513 which overlap fs metadata
[  412.016152][T17538] EXT4-fs (loop6): pa ffff8881067841c0: logic 16, phys. 129, len 24
[  412.024404][T17538] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  412.036529][T17538] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[  412.048807][T17538] EXT4-fs (loop6): This should not happen!! Data will be lost
[  412.048807][T17538] 
[  412.058660][T17538] EXT4-fs (loop6): Total free blocks count 0
[  412.064770][T17538] EXT4-fs (loop6): Free/Dirty block details
[  412.070893][T17538] EXT4-fs (loop6): free_blocks=128
[  412.076240][T17538] EXT4-fs (loop6): dirty_blocks=0
[  412.081433][T17538] EXT4-fs (loop6): Block reservation details
[  412.087489][T17538] EXT4-fs (loop6): i_reserved_data_blocks=0
[  412.564866][T17582] loop6: detected capacity change from 0 to 2048
[  412.593828][T17582] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  412.662533][ T9718] nci: nci_rx_work: unknown MT 0x1
[  413.003659][T17605] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  413.037107][T17598] ==================================================================
[  413.045256][T17598] BUG: KCSAN: data-race in xas_find_marked / xas_set_mark
[  413.052674][T17598] 
[  413.055050][T17598] write to 0xffff8881065d8b84 of 4 bytes by task 17582 on cpu 1:
[  413.063069][T17598]  xas_set_mark+0x12b/0x140
[  413.067692][T17598]  __folio_start_writeback+0x1dd/0x430
[  413.073290][T17598]  ext4_bio_write_folio+0x590/0x9d0
[  413.078551][T17598]  mpage_process_page_bufs+0x46c/0x5b0
[  413.084073][T17598]  mpage_prepare_extent_to_map+0x775/0xb80
[  413.089941][T17598]  ext4_do_writepages+0xa25/0x2270
[  413.095097][T17598]  ext4_writepages+0x176/0x300
[  413.099909][T17598]  do_writepages+0x1d2/0x480
[  413.104554][T17598]  file_write_and_wait_range+0x156/0x2c0
[  413.110227][T17598]  generic_buffers_fsync_noflush+0x45/0x120
[  413.116182][T17598]  ext4_sync_file+0x1ab/0x690
[  413.120898][T17598]  vfs_fsync_range+0x10a/0x130
[  413.125798][T17598]  ext4_buffered_write_iter+0x34f/0x3c0
[  413.131477][T17598]  ext4_file_write_iter+0x383/0xf00
[  413.136805][T17598]  iter_file_splice_write+0x5ef/0x970
[  413.142208][T17598]  direct_splice_actor+0x153/0x2a0
[  413.147363][T17598]  splice_direct_to_actor+0x30f/0x680
[  413.152782][T17598]  do_splice_direct+0xda/0x150
[  413.157582][T17598]  do_sendfile+0x380/0x640
[  413.162570][T17598]  __x64_sys_sendfile64+0x105/0x150
[  413.167813][T17598]  x64_sys_call+0xb39/0x2fb0
[  413.172440][T17598]  do_syscall_64+0xd0/0x1a0
[  413.177069][T17598]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  413.183081][T17598] 
[  413.185637][T17598] read to 0xffff8881065d8b84 of 4 bytes by task 17598 on cpu 0:
[  413.193298][T17598]  xas_find_marked+0x5dc/0x620
[  413.198112][T17598]  find_get_entry+0x5d/0x380
[  413.202952][T17598]  filemap_get_folios_tag+0x92/0x210
[  413.208402][T17598]  mpage_prepare_extent_to_map+0x330/0xb80
[  413.214298][T17598]  ext4_do_writepages+0x6eb/0x2270
[  413.219450][T17598]  ext4_writepages+0x176/0x300
[  413.224437][T17598]  do_writepages+0x1d2/0x480
[  413.229565][T17598]  file_write_and_wait_range+0x156/0x2c0
[  413.235272][T17598]  generic_buffers_fsync_noflush+0x45/0x120
[  413.241202][T17598]  ext4_sync_file+0x1ab/0x690
[  413.245919][T17598]  vfs_fsync_range+0x10a/0x130
[  413.250901][T17598]  ext4_buffered_write_iter+0x34f/0x3c0
[  413.256580][T17598]  ext4_file_write_iter+0x383/0xf00
[  413.261826][T17598]  iter_file_splice_write+0x5ef/0x970
[  413.267400][T17598]  direct_splice_actor+0x153/0x2a0
[  413.272635][T17598]  splice_direct_to_actor+0x30f/0x680
[  413.278222][T17598]  do_splice_direct+0xda/0x150
[  413.283029][T17598]  do_sendfile+0x380/0x640
[  413.287749][T17598]  __x64_sys_sendfile64+0x105/0x150
[  413.293079][T17598]  x64_sys_call+0xb39/0x2fb0
[  413.297712][T17598]  do_syscall_64+0xd0/0x1a0
[  413.302287][T17598]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  413.308214][T17598] 
[  413.310668][T17598] value changed: 0x0a000021 -> 0x04000021
[  413.316408][T17598] 
[  413.318781][T17598] Reported by Kernel Concurrency Sanitizer on:
[  413.325167][T17598] CPU: 0 UID: 0 PID: 17598 Comm: syz.6.5329 Not tainted 6.15.0-rc4-syzkaller-00021-gca91b9500108 #0 PREEMPT(voluntary) 
[  413.337886][T17598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  413.347988][T17598] ==================================================================
[  413.384870][T16378] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.