last executing test programs:

2.343891117s ago: executing program 3 (id=2171):
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000240)='./file0\x00', 0x18000, &(0x7f0000002f40)=ANY=[@ANYRES8=0x0, @ANYRES64, @ANYRES16=0x0, @ANYRESDEC, @ANYRES32, @ANYRES32], 0x1, 0x2ee, &(0x7f00000006c0)="$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")
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000280)={&(0x7f0000000b00)=@newtfilter={0x34, 0x2c, 0x100, 0x70bd26, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x5, 0x4}, {0xa, 0x6}, {0xfffc, 0x4}}, [@filter_kind_options=@f_route={{0xa}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
writev(r1, &(0x7f0000000040)=[{&(0x7f0000000100)="290000002000190f00003fffffffda060200000000e80001dd0000040d000600ea1100000005000000", 0x29}], 0x1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpu.stat\x00', 0x275a, 0x0)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r3, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000000), 0x0)
write$binfmt_script(r2, &(0x7f0000000040), 0x208e24b)

1.539837288s ago: executing program 1 (id=2186):
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000240)='./file0\x00', 0x18000, &(0x7f0000002f40)=ANY=[@ANYRES8=0x0, @ANYRES64, @ANYRES16=0x0, @ANYRESDEC, @ANYRES32, @ANYRES32], 0x1, 0x2ee, &(0x7f00000006c0)="$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")
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000280)={&(0x7f0000000b00)=@newtfilter={0x34, 0x2c, 0x100, 0x70bd26, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x5, 0x4}, {0xa, 0x6}, {0xfffc, 0x4}}, [@filter_kind_options=@f_route={{0xa}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
writev(r1, &(0x7f0000000040)=[{&(0x7f0000000100)="290000002000190f00003fffffffda060200000000e80001dd0000040d000600ea1100000005000000", 0x29}], 0x1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpu.stat\x00', 0x275a, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r3, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
write$binfmt_script(r2, &(0x7f0000000040), 0x208e24b)

1.500938759s ago: executing program 2 (id=2187):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b51811", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)=r2}, 0x20)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000001040)={'gre0\x00', &(0x7f0000000100)={'syztnl2\x00', 0x0, 0x2f00, 0x0, 0x4, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x4, 0x2f, 0x0, @empty, @multicast1}}}})

1.46539516s ago: executing program 3 (id=2188):
set_mempolicy(0x1, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000003c0)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='sched_switch\x00', r0}, 0x18)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x1, 0x800001, 0x0, 0x0, 0x0)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x80801c, &(0x7f0000000580), 0x1, 0x503, &(0x7f0000000880)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000001040)={'gre0\x00', &(0x7f0000000100)={'syztnl2\x00', 0x0, 0x2f00, 0x0, 0x4, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x4, 0x2f, 0x0, @empty, @multicast1}}}})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000004c0), 0x208e24b)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000ffc000/0x4000)=nil)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={{0x14}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x7}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_CT_DIRECTION={0x5, 0x3, 0x1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x80}}, 0x0)
brk(0x20001000)
socket(0x2, 0x80805, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000200), &(0x7f0000000280)=0xc)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
getrandom(&(0x7f0000000040)=""/133, 0xfffffffffffffdde, 0x2)

1.369986001s ago: executing program 2 (id=2193):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d00000085"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x0, 0x4, 0xffff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xd, 0x5a87, 0x4, 0x3, 0x8, r1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x2, r2}, 0x38)

1.310390432s ago: executing program 2 (id=2194):
socket$l2tp6(0xa, 0x2, 0x73)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="3c00000000010104000000efa10000000200000004001880240001801400018008000100e000000108000200e00000010c0002800500010000000000"], 0x3c}}, 0x20008820)
syz_io_uring_setup(0x7440, &(0x7f00000004c0)={0x0, 0xa6e9, 0x10100, 0x2, 0xfffffffb}, &(0x7f0000000140)=<r2=>0x0, &(0x7f0000000280))
unshare(0x22020600)
r3 = syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000400)='./file0\x00', 0x10, &(0x7f0000000380)=ANY=[], 0xfe, 0x2be, &(0x7f0000000440)="$eJzs3T2LY1UYAOD3ZpJMdIqZwkoFb7GFjcNmWwuzyAjiVEoKP0AXdxeWSViYQGBWMW7lL7Cw8H/Y2Qs2goWl4A+wc5GFIyff87HJ3pHsyPo8zRzOed973nPvYZLmnnz2av/o9v3B3Ydf/h6tVhG1TnTiURF7UYuZrwMAeJ48Sin+TBPVMuu1TdUEAGzW0ud/4wkh2+e73tp0WQDABn3w4Ufv3Tw8PHi/LFsR/W+G3SImfyPyF4Kbd+Ne9OJOXI/deByR5ibtd949PIh6me3Ftf5o2M2Z/U9/XoTGOL8du7F3cX67nFjKHw27jXgxoigi7nVyoTdiN146l5/HD27k5F+3T+VHtxmvt6aLzPPvx2788nncj17cjpy7mP+rdlm+nb7964uPo9WMnF+Mht3tcdxC2rqK5wMAAAAAAAAAAAAAAAAAAAAAwPNpv5zbi2v93DU9f2fr8Xh8/9T4+Hyd2nh8kl9ENMeNM+cDjVJ8Pztf53pZlqmYxC/O96nHy/WoX9nCAQAAAAAAAAAAAAAAAAAA4D9kcPLg6Favd+c4Nxq5UY+lnoqN8Uv+r/w2f63/stfpLPW8tqae7UpzxdY0PNd6Nqb90yf9eU9exGWKHzbKiFU1N871vJDrWX/lv1NKqSgiLnlXZ0/5aeZa09hZHZNv8I/f7bxxdKtYdw9bswf3w/JQM44HJ2eeaRRVKkyVtl9zRUxzumOe6jo7/+auDk4evPnHZLJpT1FhFY1pI560/VqV9vMz/TcEAAAAAAAAAAAAAAAAAACcev//gsGHK1NrGysKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJ6xxe//V2iMpskXx6SURvOeZhwPrniJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/A/8EwAA///aVmfz")
truncate(&(0x7f0000000080)='./file1\x00', 0x8)
ioctl$PTP_EXTTS_REQUEST2(0xffffffffffffffff, 0x40103d0b, &(0x7f00000003c0)={0x1, 0x4})
setns(0xffffffffffffffff, 0x0)
close_range(r3, 0xffffffffffffffff, 0x2)
syz_io_uring_submit(r2, 0x0, &(0x7f00000001c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x40, 0x0, 0x3, 0x1, 0x0, 0xce})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', <r5=>0x0})
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="44000067ef00040000007000ea844d783b94f80cc2841ca00000000208003b", @ANYRES32=r5, @ANYBLOB="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"], 0x44}, 0x1, 0x0, 0x0, 0xc004}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
splice(0xffffffffffffffff, 0x0, r7, 0x0, 0x10d00, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))

1.230422723s ago: executing program 2 (id=2198):
set_mempolicy(0x1, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000003c0)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='sched_switch\x00', r0}, 0x18)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x1, 0x800001, 0x0, 0x0, 0x0)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x80801c, &(0x7f0000000580), 0x1, 0x503, &(0x7f0000000880)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000001040)={'gre0\x00', &(0x7f0000000100)={'syztnl2\x00', 0x0, 0x2f00, 0x0, 0x4, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x4, 0x2f, 0x0, @empty, @multicast1}}}})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000004c0), 0x208e24b)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000ffc000/0x4000)=nil)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={{0x14}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x7}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_CT_DIRECTION={0x5, 0x3, 0x1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x80}}, 0x0)
brk(0x20001000)
socket(0x2, 0x80805, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000200), &(0x7f0000000280)=0xc)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
getrandom(&(0x7f0000000040)=""/133, 0xfffffffffffffdde, 0x2)

1.143647764s ago: executing program 3 (id=2202):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000840)={{r0}, &(0x7f0000000600), &(0x7f0000000800)='%+9llu \x00'}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50)
syz_io_uring_setup(0x3c0c, &(0x7f0000000400)={0x0, 0xc890, 0x4002}, 0x0, 0x0)

1.106891495s ago: executing program 0 (id=2204):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f0000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3ff, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
syz_usbip_server_init(0x4)

1.058144465s ago: executing program 3 (id=2206):
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000240)='./file0\x00', 0x18000, &(0x7f0000002f40)=ANY=[@ANYRES8=0x0, @ANYRES64, @ANYRES16=0x0, @ANYRESDEC, @ANYRES32, @ANYRES32], 0x1, 0x2ee, &(0x7f00000006c0)="$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")
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000280)={&(0x7f0000000b00)=@newtfilter={0x34, 0x2c, 0x100, 0x70bd26, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x5, 0x4}, {0xa, 0x6}, {0xfffc, 0x4}}, [@filter_kind_options=@f_route={{0xa}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
writev(r1, &(0x7f0000000040)=[{&(0x7f0000000100)="290000002000190f00003fffffffda060200000000e80001dd0000040d000600ea1100000005000000", 0x29}], 0x1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpu.stat\x00', 0x275a, 0x0)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r3, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000000), 0x0)
write$binfmt_script(r2, &(0x7f0000000040), 0x208e24b)

1.026697246s ago: executing program 4 (id=2207):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f0000000bc0)="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", 0x12d, 0x0)

960.943607ms ago: executing program 4 (id=2208):
r0 = socket$inet(0x2, 0x3, 0x4)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$MRT_ADD_MFC_PROXY(r0, 0x0, 0xd2, &(0x7f0000000000)={@local, @multicast1, 0x1, "da425f0b3e2cacdaa7ef5d05b8dc8994dec44956bbfa796e3b3d91ab7d3ead0e", 0x0, 0x5, 0xfffffffa, 0x101}, 0x3c)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'team_slave_0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@newqdisc={0x58, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0xa, 0x1}}, [@qdisc_kind_options=@q_mq={0x7}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4}}, {0x4}}]}, @TCA_RATE={0x6}]}, 0x58}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[], 0x50)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e850000000700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000180)="5c00000013006bcd9e3fe3dc4e48aa31086b8703410000004000000000000000040014000d000a00100000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb", 0x57}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a0ef010095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r4}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
fcntl$lock(r5, 0x5, &(0x7f0000002000)={0x1, 0x0, 0x200, 0x40000002})
r6 = socket$inet(0x2, 0x2, 0x1)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x14}, 0x4010)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0003007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002200b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="05000000030000008400000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x0, 0x20000000000000fe, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
sendmsg$inet(r6, &(0x7f0000000600)={&(0x7f0000000040)={0x2, 0xffff, @multicast2}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f00000004c0)="1ed8b7f9d457", 0x6}], 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000007000000890b040a0101027f00000100000000001c000000000000000000000008"], 0x40}, 0x20000000)

783.085749ms ago: executing program 2 (id=2209):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r2)

782.945179ms ago: executing program 4 (id=2210):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000400)={0x10000000, 0x0, &(0x7f0000000040)={&(0x7f0000000840)=ANY=[@ANYBLOB="020e0080150000000000000000000000030005000000000002004e24ac1e00010000000000000000030006003c000000020000fc34000000000000000000000001001800000000000800120000000200fcffffff000000000600330000000000000000000000eafffd8000000000000000000000000000aa000000000000000000000000000000000400"], 0xa8}}, 0x2)

763.650309ms ago: executing program 4 (id=2211):
r0 = socket(0x1e, 0x80004, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa54000085"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x7, 0x0, 0x1000004}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r3 = dup3(r1, r0, 0x0)
recvmmsg(r3, &(0x7f0000004580)=[{{0x0, 0x500, &(0x7f00000003c0)=[{&(0x7f0000000600)=""/179, 0x3514}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0)

715.96918ms ago: executing program 1 (id=2212):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)=r2}, 0x20)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000001040)={'gre0\x00', &(0x7f0000000100)={'syztnl2\x00', 0x0, 0x2f00, 0x0, 0x4, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x4, 0x2f, 0x0, @empty, @multicast1}}}})

693.96824ms ago: executing program 1 (id=2213):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, @void, @value}, 0x94)
getuid()
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0x80001, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x2, 0x9, 0x8, 0x0, 0xffffffffffffffff, 0x4, '\x00', 0x0, r1, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r2}, &(0x7f0000000200), &(0x7f0000000280)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000380)='kfree\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50)
syz_io_uring_setup(0x3c0c, &(0x7f0000000400)={0x0, 0xc890, 0x4002}, 0x0, 0x0)

676.66285ms ago: executing program 4 (id=2214):
set_mempolicy(0x1, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000003c0)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='sched_switch\x00', r0}, 0x18)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x1, 0x800001, 0x0, 0x0, 0x0)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x80801c, &(0x7f0000000580), 0x1, 0x503, &(0x7f0000000880)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000001040)={'gre0\x00', &(0x7f0000000100)={'syztnl2\x00', 0x0, 0x2f00, 0x0, 0x4, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x4, 0x2f, 0x0, @empty, @multicast1}}}})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000004c0), 0x208e24b)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000ffc000/0x4000)=nil)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={{0x14}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x7}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_CT_DIRECTION={0x5, 0x3, 0x1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x80}}, 0x0)
brk(0x20001000)
socket(0x2, 0x80805, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000200), &(0x7f0000000280)=0xc)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
getrandom(&(0x7f0000000040)=""/133, 0xfffffffffffffdde, 0x2)

656.826091ms ago: executing program 1 (id=2215):
r0 = socket$inet(0x2, 0x3, 0x4)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$MRT_ADD_MFC_PROXY(r0, 0x0, 0xd2, &(0x7f0000000000)={@local, @multicast1, 0x1, "da425f0b3e2cacdaa7ef5d05b8dc8994dec44956bbfa796e3b3d91ab7d3ead0e", 0x0, 0x5, 0xfffffffa, 0x101}, 0x3c)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'team_slave_0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@newqdisc={0x58, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0xa, 0x1}}, [@qdisc_kind_options=@q_mq={0x7}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4}}, {0x4}}]}, @TCA_RATE={0x6}]}, 0x58}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[], 0x50)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e8500000007"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r4, &(0x7f0000000140)={0x0, 0x2, &(0x7f0000000100)=[{&(0x7f0000000180)="5c00000013006bcd9e3fe3dc4e48aa31086b8703410000004000000000000000040014000d000a00100000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a0ef010095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r5}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
fcntl$lock(r6, 0x5, &(0x7f0000002000)={0x1, 0x0, 0x200, 0x40000002})
r7 = socket$inet(0x2, 0x2, 0x1)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x14}, 0x4010)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0003007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002200b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="05000000030000008400000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x0, 0x20000000000000fe, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
sendmsg$inet(r7, &(0x7f0000000600)={&(0x7f0000000040)={0x2, 0xffff, @multicast2}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f00000004c0)="1ed8b7f9d457", 0x6}], 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000007000000890b040a0101027f00000100000000001c000000000000000000000008"], 0x40}, 0x20000000)

597.877182ms ago: executing program 1 (id=2216):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff0000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r2}, &(0x7f0000000000), &(0x7f00000005c0)}, 0x20)

535.598382ms ago: executing program 1 (id=2217):
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000240)='./file0\x00', 0x18000, &(0x7f0000002f40)=ANY=[@ANYRES8=0x0, @ANYRES64, @ANYRES16=0x0, @ANYRESDEC, @ANYRES32, @ANYRES32], 0x1, 0x2ee, &(0x7f00000006c0)="$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")
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000280)={&(0x7f0000000b00)=@newtfilter={0x840, 0x2c, 0x100, 0x70bd26, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x5, 0x4}, {0xa, 0x6}, {0xfffc, 0x4}}, [@filter_kind_options=@f_route={{0xa}, {0x810, 0x2, [@TCA_ROUTE4_POLICE={0x80c, 0x5, [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x87, 0x4, 0x1, 0x4, 0x15b, 0x9, 0xc89cb79, 0x7, 0x4, 0x7e, 0x9f6, 0x0, 0x99, 0xe, 0x35, 0x7a, 0x100, 0x6, 0x3, 0x80000001, 0xa, 0x812b, 0x4, 0x1, 0xffffffff, 0xc7b, 0x80000000, 0x871f, 0x4c, 0x3, 0x7, 0x1, 0x5, 0x8, 0x1, 0x7a, 0x2, 0x6, 0x0, 0x4, 0x2, 0x91, 0x1, 0x0, 0x200, 0xfffffffb, 0x7, 0x7f, 0xe, 0x9, 0x2, 0x7ff, 0x58dd, 0xffffffff, 0x100, 0xe1, 0xd, 0x47, 0x7, 0x8, 0x3, 0x2249, 0x1, 0x8, 0x7, 0x9, 0x3, 0x2, 0xee, 0x3, 0x6, 0x800, 0x9, 0x5, 0x7, 0x2, 0x8, 0x4, 0x2, 0x6216, 0x13f9, 0xa, 0x6, 0xffffffb6, 0x5, 0x7ff, 0x0, 0x80000000, 0x9, 0xfff, 0xc57, 0x2, 0x7, 0x1, 0x10001, 0x6f9e, 0x76, 0x0, 0x3b, 0x101, 0x9, 0x9, 0x700000, 0x33141d97, 0x80000000, 0x9, 0x3, 0x4, 0xfffffffc, 0x0, 0x6, 0x991, 0x92a, 0x5, 0x7, 0x80000001, 0x46, 0x8001, 0x8, 0x398, 0x10001, 0x7, 0x9, 0x4, 0x7a0, 0x3, 0x24, 0x8c, 0x7, 0xc46, 0x80000000, 0x1, 0x6, 0xe, 0x0, 0x4, 0x400, 0x6, 0x101, 0xd, 0xc, 0x1ff, 0x10, 0x5, 0xffffffff, 0x9, 0x7, 0x0, 0x3, 0x7, 0x5, 0x6, 0x0, 0x3, 0x2, 0xfffffe00, 0xffffff7f, 0x5, 0x54, 0x80000000, 0x1de, 0x4, 0xd, 0x5, 0x4, 0x7, 0xa, 0x4, 0x9, 0xb, 0x9, 0x2f, 0x401, 0x9, 0x8001, 0x6, 0x7fffffff, 0x0, 0x10, 0xe800, 0x0, 0x6f6, 0x2640, 0x3, 0x3, 0xffffffff, 0x7, 0xffffffff, 0x7, 0xc9, 0xfffffffb, 0x0, 0xfffffff8, 0x0, 0x7, 0x7, 0xffffffff, 0x0, 0x1000, 0x5, 0x500000, 0x7, 0x5, 0x6, 0x6, 0x1, 0x0, 0x2, 0xa7, 0x8, 0x6, 0xe217, 0x5, 0x4, 0x3ff, 0x72, 0x6, 0x4, 0x381b, 0xffff, 0x2, 0x5, 0x4, 0x2, 0x400, 0x6, 0xfffffffe, 0x3, 0x40, 0x80, 0xfffffff9, 0x7, 0x0, 0x8, 0x9, 0x6, 0x0, 0x0, 0x8, 0x7563, 0x310d, 0x3, 0x3, 0xffff, 0x3, 0x3, 0x3, 0x6, 0x9, 0xd799, 0x0, 0x3, 0x1ff, 0x0, 0x4, 0x3ff]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x6, 0x6ae1, 0x0, 0xfffffff9, 0xfffffffa, 0xb6e4cd, 0xffff2f6c, 0x8, 0x2, 0x0, 0x3, 0x7fff, 0x20, 0x80000000, 0x2, 0x0, 0x2, 0x9, 0x4, 0xabff, 0x8001, 0xff, 0x2, 0xf, 0x1, 0x3, 0x2326, 0x8a, 0x2, 0xf, 0x7ff, 0x1ff, 0xb, 0x70b, 0x3, 0x3, 0x400, 0x1, 0x7, 0x6, 0x3, 0x9, 0x5, 0x7f, 0x7, 0x1000, 0x40a, 0x8, 0x4, 0xfffffffd, 0x5, 0x140, 0x7fff, 0x1d3, 0x0, 0x1, 0x8, 0x4, 0x3, 0xc, 0x5, 0xa9e, 0x7fff, 0x0, 0x5, 0x2, 0xf, 0xe6c7, 0x80000001, 0x7ff, 0x7, 0x1, 0x8, 0xdc, 0x1, 0x100, 0x220, 0x5, 0x462a4f6f, 0x5, 0x60b, 0x81, 0x1000, 0xb, 0x8, 0x8, 0x5, 0xfffffff9, 0xb, 0x7, 0x8, 0x8, 0x7, 0xfffffff0, 0x9, 0x100, 0x0, 0x3, 0x2, 0x401, 0xf, 0x9, 0x7, 0x6, 0x10001, 0x80, 0x2, 0x3f2, 0x5, 0x3, 0x77b9, 0x7, 0x6, 0x132, 0xffffffff, 0x6, 0x6, 0x8001, 0x5d22, 0x0, 0x9, 0x0, 0xfffeffff, 0xd5b4, 0xa8, 0x1, 0x5e, 0x3, 0x7, 0x1, 0x0, 0x8, 0x7ff, 0x1, 0xffffffff, 0x6, 0x5, 0x6, 0x2, 0x8000, 0xf218, 0x0, 0x0, 0x2, 0xfffffff8, 0x1, 0x2, 0x3, 0x0, 0x7, 0x33cc, 0x1, 0x7fffffff, 0x5, 0x7, 0x1, 0x81, 0x7, 0x3d7, 0x10001, 0x8, 0xc, 0x4, 0xbc3, 0x1, 0xfff, 0x8, 0x8, 0x4, 0x4, 0x5, 0xffffffe4, 0x6, 0x8f05, 0x3, 0x200, 0xfffffffb, 0xde, 0xc, 0x7fff, 0x9, 0xc3, 0xfffffbff, 0x40, 0x4, 0xff, 0x4, 0x0, 0x9, 0x5, 0x0, 0x7, 0x6, 0x79, 0x546e, 0x2, 0x9, 0xd, 0x5d, 0x2, 0x8, 0x3610, 0x0, 0x2, 0x3, 0x2, 0x9, 0x3ff, 0x4, 0x16, 0xde, 0x9, 0x8000, 0x6, 0x273e, 0x1, 0xff, 0x2, 0xb8a, 0x6cac, 0x73ba, 0x9, 0xc, 0x8, 0x7ff, 0x5, 0x8, 0xffff, 0x10001, 0x4, 0x1, 0xd7e, 0x8, 0x99a1, 0x2, 0x4, 0xffffffff, 0x1, 0x8, 0x6, 0xe, 0xd, 0x2, 0x3, 0x6, 0x2, 0x1706, 0x4, 0x6, 0x1, 0x8, 0x6, 0x3, 0x0, 0x2, 0x7ed]}]}]}}]}, 0x840}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
writev(r1, &(0x7f0000000040), 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpu.stat\x00', 0x275a, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r3, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000000), 0x0)
write$binfmt_script(r2, &(0x7f0000000040), 0x208e24b)

525.758352ms ago: executing program 0 (id=2218):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x6, &(0x7f0000000000)=[{0x0, 0x1, 0xe, 0x2}, {0x6, 0x8, 0x53, 0x2}, {0xc39, 0x40, 0xc, 0xfffffffa}, {0xffff, 0x4, 0xa2, 0x544}, {0x8, 0x6, 0x1, 0x8}, {0x2, 0x4, 0x80, 0x6}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x408, 0xcd, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000bc0)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000f0cd000000000000044e690085000000a000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x0)

454.674214ms ago: executing program 0 (id=2219):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000280)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r1}, 0x10)
bpf$MAP_CREATE(0x700000000000000, &(0x7f0000000180)=@base={0x1d, 0x4, 0x2, 0x0, 0x201, 0xffffffffffffffff, 0x5, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

395.845684ms ago: executing program 0 (id=2220):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000840)={{r0}, &(0x7f0000000600), &(0x7f0000000800)='%+9llu \x00'}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
capset(&(0x7f0000000080)={0x20080522}, &(0x7f00000000c0)={0x200000, 0x200000, 0x4})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50)
syz_io_uring_setup(0x3c0c, &(0x7f0000000400)={0x0, 0xc890, 0x4002}, 0x0, 0x0)

371.454155ms ago: executing program 4 (id=2221):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$evdev(0x0, 0x0, 0x0)
syz_usb_disconnect(r2)

358.715215ms ago: executing program 0 (id=2222):
clock_getres(0x2, &(0x7f00000001c0))
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1000, 0x1)
read$watch_queue(0xffffffffffffffff, 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(0xffffffffffffffff, 0xc0406618, &(0x7f00000005c0)={@desc={0x1, 0x0, @auto="e07c447285d131f5"}})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x800000000003}, 0x1100, 0x5dd8, 0x0, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x458, 0x258, 0x4c, 0x232, 0x258, 0x0, 0x388, 0x2e8, 0x2e8, 0x388, 0x2e8, 0x3, 0x0, {[{{@ipv6={@mcast2, @mcast2, [], [], 'veth1_to_bond\x00', 'ip6gre0\x00', {}, {}, 0x6, 0x0, 0x3}, 0x0, 0x230, 0x258, 0x0, {}, [@common=@unspec=@cluster={{0x30}}, @common=@inet=@policy={{0x158}, {[{@ipv4=@dev, [], @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, {@ipv4, [], @ipv4=@broadcast}, {@ipv4=@multicast2, [], @ipv4=@dev}, {@ipv6=@loopback, [], @ipv6=@private2}], 0x1, 0x20}}]}, @common=@inet=@SYNPROXY={0x28}}, {{@ipv6={@ipv4={'\x00', '\xff\xff', @remote}, @private1, [], [], 'team_slave_0\x00', 'xfrm0\x00'}, 0x0, 0xf8, 0x130, 0x0, {}, [@inet=@rpfilter={{0x28}}, @inet=@rpfilter={{0x28}}]}, @common=@inet=@SET3={0x38}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4b8)

257.605316ms ago: executing program 0 (id=2223):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000faff0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0xd348}, 0x18)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$TCSETSW2(r0, 0x402c542c, &(0x7f0000000300)={0x7, 0xc, 0x6, 0x10000000, 0xff, "d957a2d52648ccc03ae4944c3298be81d8dd79", 0x6, 0x3})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f0000000200)={[{@max_batch_time={'max_batch_time', 0x3d, 0x358}}, {@resuid}, {@stripe={'stripe', 0x3d, 0x9}}]}, 0x3, 0x44b, &(0x7f00000004c0)="$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")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r4, &(0x7f0000004200)='t', 0x1)
sendfile(r4, r3, 0x0, 0x3ffff)
sendfile(r4, r3, 0x0, 0x7ffff000)
setsockopt$inet_msfilter(r3, 0x0, 0x29, 0x0, 0x0)
r5 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r5, 0x2007ffc)
sendfile(r5, r5, 0x0, 0x800000009)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[], 0x3c}, 0x1, 0xba01, 0x0, 0x20000000}, 0x0)

197.538177ms ago: executing program 3 (id=2224):
r0 = socket(0x1e, 0x80004, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa54000085"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x7, 0x0, 0x1000004}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r3 = dup3(r1, r0, 0x0)
recvmmsg(r3, &(0x7f0000004580)=[{{0x0, 0x500, &(0x7f00000003c0)=[{&(0x7f0000000600)=""/179, 0x3514}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0)

77.389099ms ago: executing program 3 (id=2225):
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000000000)={0xc, {"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", 0x1000}}, 0x1006)
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x88002, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000001a80)=@raw={'raw\x00', 0x8, 0x3, 0x2d0, 0x130, 0xa, 0xd0e0000, 0x130, 0x100, 0x238, 0x1d8, 0x1d8, 0x238, 0x1d8, 0x3, 0x0, {[{{@ip={@loopback, @multicast1, 0x0, 0x0, 'ip6tnl0\x00', 'rose0\x00', {}, {}, 0x11}, 0x0, 0xc8, 0x130, 0x0, {}, [@common=@inet=@l2tp={{0x30}, {0x0, 0x0, 0x3, 0x0, 0xc}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz1\x00'}}}, {{@uncond, 0x0, 0xc0, 0x108, 0x0, {}, [@inet=@rpfilter={{0x28}}, @inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x330)
preadv(r0, &(0x7f0000000080)=[{0x0}, {&(0x7f0000000240)=""/219, 0xdb}], 0x2, 0x9, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001900)="$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")
r2 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x18)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
close_range(r6, 0xffffffffffffffff, 0x0)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r8}, 0x10)
pipe2(&(0x7f0000001cc0)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff}, 0x800)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r9}, 0x2c, {'wfdno', 0x3d, r10}, 0x2c, {[{@uname={'uname', 0x3d, '\xd0\xae\xde\xc1\xaa \xff\xd8\x1d\x1b\xf8\x93)!|\xb0X\xa3\x96\xed\xa2\xab@\xa2m\x93\xdd\b<\x00t\xdc\xabl\xab!\xae\x16\xc4\xcd\xf9{\xdc5_;A\xd2{eC\x014\\\xb3\xc4\xce\xc3yS2-\x01\xbe\xaarW\x96O\xd3\x0f\xe2\xd7/\x17\x1d\xa7.8\x9f8-\xea<\x8d\x91\x90j\xea\xd5\xd5\xae\xcc\xc0\x97\xef\x10\x92\xea\x98|+\x00\x00\x00\x00\x00\x00\x00\x00'}}]}})
r11 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x28c82, 0x3)
r12 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./bus\x00', 0x1c5902, 0x2d)
write(r12, &(0x7f0000004200)='t', 0x1)
prctl$PR_SET_NAME(0xf, 0x0)
r13 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_free\x00', 0xffffffffffffffff, 0x0, 0xfffffffff7fffffe}, 0xe)
ioctl$BTRFS_IOC_BALANCE(r13, 0x5000940c, 0x0)
kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x3e00, 0x116094000, 0x41000000}], 0x0)
sendfile(r12, r11, 0x0, 0x7ffff000)
fallocate(r2, 0x0, 0x0, 0x1001f0)

0s ago: executing program 2 (id=2226):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r0}, &(0x7f0000000200), &(0x7f0000000280)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000380)='kfree\x00', r1}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50)
syz_io_uring_setup(0x3c0c, &(0x7f0000000400)={0x0, 0xc890, 0x4002}, 0x0, 0x0)

kernel console output (not intermixed with test programs):

 Directory bread(block 162) failed
[  118.634411][ T7464] FAT-fs (loop0): Directory bread(block 163) failed
[  118.641909][ T7464] bio_check_eod: 195 callbacks suppressed
[  118.641921][ T7464] syz.0.1312: attempt to access beyond end of device
[  118.641921][ T7464] loop0: rw=3, sector=226, nr_sectors = 6 limit=128
[  118.675285][ T7469] loop3: detected capacity change from 0 to 1024
[  118.685388][ T7464] syz.0.1312: attempt to access beyond end of device
[  118.685388][ T7464] loop0: rw=2051, sector=232, nr_sectors = 2 limit=128
[  118.719941][ T7469] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.1314: Failed to acquire dquot type 0
[  118.747596][ T7480] loop1: detected capacity change from 0 to 512
[  118.771540][ T7469] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  118.786363][ T7469] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #13: comm syz.3.1314: corrupted inode contents
[  118.798615][ T7469] EXT4-fs error (device loop3): ext4_dirty_inode:6103: inode #13: comm syz.3.1314: mark_inode_dirty error
[  118.810387][ T7469] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #13: comm syz.3.1314: corrupted inode contents
[  118.829843][ T7469] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #13: comm syz.3.1314: mark_inode_dirty error
[  118.842582][ T7484] loop0: detected capacity change from 0 to 128
[  118.854722][ T7480] EXT4-fs (loop1): orphan cleanup on readonly fs
[  118.861415][ T7480] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.1319: bad orphan inode 13
[  118.873253][ T7469] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #13: comm syz.3.1314: corrupted inode contents
[  118.886607][ T7480] ext4_test_bit(bit=12, block=18) = 1
[  118.886677][ T7469] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  118.892006][ T7480] is_bad_inode(inode)=0
[  118.900981][ T7484] FAT-fs (loop0): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  118.904693][ T7480] NEXT_ORPHAN(inode)=2130706432
[  118.904702][ T7480] max_ino=32
[  118.904707][ T7480] i_nlink=1
[  118.927366][ T7469] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #13: comm syz.3.1314: corrupted inode contents
[  118.939953][ T7469] EXT4-fs error (device loop3): ext4_truncate:4255: inode #13: comm syz.3.1314: mark_inode_dirty error
[  118.955320][ T7480] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  118.965993][ T7469] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  118.975424][ T7441] syz.4.1304: attempt to access beyond end of device
[  118.975424][ T7441] loop4: rw=2049, sector=129, nr_sectors = 8 limit=128
[  118.975925][ T7469] EXT4-fs (loop3): 1 truncate cleaned up
[  118.995115][ T7480] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  119.007185][ T7441] syz.4.1304: attempt to access beyond end of device
[  119.007185][ T7441] loop4: rw=2049, sector=145, nr_sectors = 8 limit=128
[  119.020794][ T7441] syz.4.1304: attempt to access beyond end of device
[  119.020794][ T7441] loop4: rw=2049, sector=161, nr_sectors = 8 limit=128
[  119.036070][ T7441] syz.4.1304: attempt to access beyond end of device
[  119.036070][ T7441] loop4: rw=2049, sector=177, nr_sectors = 16 limit=128
[  119.049640][ T7441] syz.4.1304: attempt to access beyond end of device
[  119.049640][ T7441] loop4: rw=2049, sector=201, nr_sectors = 8 limit=128
[  119.063470][ T7441] syz.4.1304: attempt to access beyond end of device
[  119.063470][ T7441] loop4: rw=2049, sector=217, nr_sectors = 8 limit=128
[  119.078054][ T7441] syz.4.1304: attempt to access beyond end of device
[  119.078054][ T7441] loop4: rw=2049, sector=233, nr_sectors = 8 limit=128
[  119.108608][ T7441] syz.4.1304: attempt to access beyond end of device
[  119.108608][ T7441] loop4: rw=2049, sector=249, nr_sectors = 8 limit=128
[  119.134493][ T3368] usb usb10-port8: unable to enumerate USB device
[  119.152333][ T7490] loop1: detected capacity change from 0 to 128
[  119.159261][   T41] FAT-fs (loop4): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  119.193998][ T7490] FAT-fs (loop1): Directory bread(block 162) failed
[  119.213805][ T7494] loop4: detected capacity change from 0 to 512
[  119.224239][ T7490] FAT-fs (loop1): Directory bread(block 163) failed
[  119.240326][ T7494] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  119.249466][ T7494] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  119.262942][ T7490] FAT-fs (loop1): Directory bread(block 164) failed
[  119.269785][ T7494] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  119.270899][ T7498] netlink: 'syz.2.1326': attribute type 10 has an invalid length.
[  119.279137][ T7490] FAT-fs (loop1): Directory bread(block 165) failed
[  119.279162][ T7490] FAT-fs (loop1): Directory bread(block 166) failed
[  119.279219][ T7490] FAT-fs (loop1): Directory bread(block 167) failed
[  119.279316][ T7490] FAT-fs (loop1): Directory bread(block 168) failed
[  119.279333][ T7490] FAT-fs (loop1): Directory bread(block 169) failed
[  119.281753][ T7490] FAT-fs (loop1): Directory bread(block 162) failed
[  119.287715][ T7498] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1326'.
[  119.294122][ T7494] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  119.332238][ T7490] FAT-fs (loop1): Directory bread(block 163) failed
[  119.379530][ T7494] System zones: 0-2, 18-18, 34-34
[  119.385610][ T7494] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  119.400655][ T7494] EXT4-fs (loop4): 1 truncate cleaned up
[  119.430644][ T7505] loop1: detected capacity change from 0 to 128
[  119.444398][ T7505] FAT-fs (loop1): Directory bread(block 162) failed
[  119.449506][ T7504] loop3: detected capacity change from 0 to 256
[  119.452381][ T7505] FAT-fs (loop1): Directory bread(block 163) failed
[  119.464285][ T7505] FAT-fs (loop1): Directory bread(block 164) failed
[  119.499311][ T7505] FAT-fs (loop1): Directory bread(block 165) failed
[  119.508927][ T7505] FAT-fs (loop1): Directory bread(block 166) failed
[  119.516972][ T7505] FAT-fs (loop1): Directory bread(block 167) failed
[  119.533138][ T7509] loop2: detected capacity change from 0 to 512
[  119.537856][ T7505] FAT-fs (loop1): Directory bread(block 168) failed
[  119.556176][ T7509] EXT4-fs (loop2): orphan cleanup on readonly fs
[  119.563741][ T7505] FAT-fs (loop1): Directory bread(block 169) failed
[  119.564564][ T7509] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.1331: bad orphan inode 13
[  119.584493][ T7509] ext4_test_bit(bit=12, block=18) = 1
[  119.589966][ T7509] is_bad_inode(inode)=0
[  119.593294][ T7505] FAT-fs (loop1): Directory bread(block 162) failed
[  119.594115][ T7509] NEXT_ORPHAN(inode)=2130706432
[  119.594124][ T7509] max_ino=32
[  119.594130][ T7509] i_nlink=1
[  119.600824][ T7505] FAT-fs (loop1): Directory bread(block 163) failed
[  119.613293][ T7515] sch_tbf: peakrate 4 is lower than or equals to rate 8 !
[  119.634973][ T7509] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  119.651286][   T12] FAT-fs (loop0): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  119.663534][ T7509] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  119.753665][ T7527] netlink: 'syz.2.1338': attribute type 10 has an invalid length.
[  119.762035][ T7527] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1338'.
[  119.830533][ T7533] loop1: detected capacity change from 0 to 128
[  120.014976][ T7543] loop0: detected capacity change from 0 to 128
[  120.026443][ T7543] FAT-fs (loop0): Directory bread(block 162) failed
[  120.026865][ T7545] loop1: detected capacity change from 0 to 512
[  120.033150][ T7543] FAT-fs (loop0): Directory bread(block 163) failed
[  120.047866][ T7545] EXT4-fs (loop1): orphan cleanup on readonly fs
[  120.049631][ T7543] FAT-fs (loop0): Directory bread(block 164) failed
[  120.058325][ T7545] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.1345: bad orphan inode 13
[  120.063660][ T7543] FAT-fs (loop0): Directory bread(block 165) failed
[  120.071406][ T7545] ext4_test_bit(bit=12, block=18) = 1
[  120.079281][ T7543] FAT-fs (loop0): Directory bread(block 166) failed
[  120.082843][ T7545] is_bad_inode(inode)=0
[  120.089701][ T7543] FAT-fs (loop0): Directory bread(block 167) failed
[  120.093647][ T7545] NEXT_ORPHAN(inode)=2130706432
[  120.093655][ T7545] max_ino=32
[  120.093660][ T7545] i_nlink=1
[  120.111666][ T7543] FAT-fs (loop0): Directory bread(block 168) failed
[  120.124421][ T7548] netlink: 'syz.1.1346': attribute type 10 has an invalid length.
[  120.127817][ T7543] FAT-fs (loop0): Directory bread(block 169) failed
[  120.144524][ T7543] FAT-fs (loop0): Directory bread(block 162) failed
[  120.151197][ T7543] FAT-fs (loop0): Directory bread(block 163) failed
[  120.183686][ T7552] loop0: detected capacity change from 0 to 512
[  120.193002][ T7552] EXT4-fs (loop0): orphan cleanup on readonly fs
[  120.200297][ T7552] EXT4-fs error (device loop0): ext4_orphan_get:1417: comm syz.0.1347: bad orphan inode 13
[  120.210731][ T7552] ext4_test_bit(bit=12, block=18) = 1
[  120.216221][ T7552] is_bad_inode(inode)=0
[  120.220400][ T7552] NEXT_ORPHAN(inode)=2130706432
[  120.225269][ T7552] max_ino=32
[  120.228451][ T7552] i_nlink=1
[  120.232789][ T7552] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  120.244638][ T7552] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  120.309599][ T7560] rdma_rxe: rxe_newlink: failed to add bond0
[  120.317952][ T7560] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  120.327219][ T7560] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  120.441853][ T7566] loop3: detected capacity change from 0 to 256
[  120.504156][ T7578] loop3: detected capacity change from 0 to 128
[  120.511837][ T7578] FAT-fs (loop3): Directory bread(block 162) failed
[  120.518605][ T7578] FAT-fs (loop3): Directory bread(block 163) failed
[  120.525613][ T7578] FAT-fs (loop3): Directory bread(block 164) failed
[  120.532638][ T7578] FAT-fs (loop3): Directory bread(block 165) failed
[  120.539272][ T7578] FAT-fs (loop3): Directory bread(block 166) failed
[  120.546292][ T7578] FAT-fs (loop3): Directory bread(block 167) failed
[  120.556040][ T7569] loop1: detected capacity change from 0 to 512
[  120.562985][ T7578] FAT-fs (loop3): Directory bread(block 168) failed
[  120.569770][ T7578] FAT-fs (loop3): Directory bread(block 169) failed
[  120.578621][ T7578] FAT-fs (loop3): Directory bread(block 162) failed
[  120.588247][ T7578] FAT-fs (loop3): Directory bread(block 163) failed
[  120.597391][ T7569] ext4 filesystem being mounted at /277/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  120.612307][   T29] kauditd_printk_skb: 75 callbacks suppressed
[  120.612321][   T29] audit: type=1326 audit(1746507645.222:2320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7568 comm="syz.1.1354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cabe6e969 code=0x7ffc0000
[  120.647101][   T29] audit: type=1326 audit(1746507645.222:2321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7568 comm="syz.1.1354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f4cabe6e969 code=0x7ffc0000
[  120.647232][ T7583] xt_CT: No such helper "pptp"
[  120.670722][   T29] audit: type=1326 audit(1746507645.222:2322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7568 comm="syz.1.1354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cabe6e969 code=0x7ffc0000
[  120.698930][   T29] audit: type=1326 audit(1746507645.222:2323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7568 comm="syz.1.1354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f4cabe6e969 code=0x7ffc0000
[  120.722609][   T29] audit: type=1326 audit(1746507645.222:2324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7568 comm="syz.1.1354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cabe6e969 code=0x7ffc0000
[  120.746316][   T29] audit: type=1326 audit(1746507645.222:2325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7568 comm="syz.1.1354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4cabe6e969 code=0x7ffc0000
[  120.750835][ T7587] loop2: detected capacity change from 0 to 2048
[  120.769741][   T29] audit: type=1326 audit(1746507645.222:2326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7568 comm="syz.1.1354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cabe6e969 code=0x7ffc0000
[  120.782517][ T7589] loop3: detected capacity change from 0 to 256
[  120.799570][   T29] audit: type=1326 audit(1746507645.222:2327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7568 comm="syz.1.1354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f4cabe6e969 code=0x7ffc0000
[  120.799597][   T29] audit: type=1326 audit(1746507645.222:2328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7568 comm="syz.1.1354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cabe6e969 code=0x7ffc0000
[  120.799617][   T29] audit: type=1326 audit(1746507645.222:2329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7568 comm="syz.1.1354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f4cabe6e969 code=0x7ffc0000
[  120.908647][ T7596] __nla_validate_parse: 2 callbacks suppressed
[  120.908703][ T7596] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1363'.
[  120.919273][ T7594] sg_write: data in/out 122/14 bytes for SCSI command 0x0-- guessing data in;
[  120.919273][ T7594]    program syz.0.1362 not setting count and/or reply_len properly
[  121.057587][ T7603] xt_policy: too many policy elements
[  121.120352][ T7606] xt_policy: too many policy elements
[  121.195333][ T7616] loop2: detected capacity change from 0 to 128
[  121.277843][ T7621] random: crng reseeded on system resumption
[  121.318833][ T7623] rdma_rxe: rxe_newlink: failed to add bond0
[  121.327706][ T7623] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1375'.
[  121.338217][ T7623] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  121.354662][ T7623] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  121.408654][ T7621] loop1: detected capacity change from 0 to 1024
[  121.420288][ T7621] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.1374: Failed to acquire dquot type 0
[  121.433193][ T7621] EXT4-fs error (device loop1): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  121.449461][ T7621] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #13: comm syz.1.1374: corrupted inode contents
[  121.449924][ T7631] loop4: detected capacity change from 0 to 128
[  121.461715][ T7621] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #13: comm syz.1.1374: mark_inode_dirty error
[  121.479877][ T7621] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #13: comm syz.1.1374: corrupted inode contents
[  121.480935][ T7631] FAT-fs (loop4): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  121.492452][ T7621] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #13: comm syz.1.1374: mark_inode_dirty error
[  121.513253][ T7621] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #13: comm syz.1.1374: corrupted inode contents
[  121.525550][ T7621] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  121.535386][ T7621] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #13: comm syz.1.1374: corrupted inode contents
[  121.547765][ T7621] EXT4-fs error (device loop1): ext4_truncate:4255: inode #13: comm syz.1.1374: mark_inode_dirty error
[  121.560409][ T7621] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  121.569805][ T7621] EXT4-fs (loop1): 1 truncate cleaned up
[  121.908862][ T7644] xt_time: invalid argument - start or stop time greater than 23:59:59
[  121.910867][ T7648] loop0: detected capacity change from 0 to 128
[  122.162174][ T7659] loop1: detected capacity change from 0 to 128
[  122.284161][   T12] FAT-fs (loop4): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  122.322369][ T7667] loop4: detected capacity change from 0 to 128
[  122.348143][ T7667] FAT-fs (loop4): Directory bread(block 162) failed
[  122.361371][ T7671] loop2: detected capacity change from 0 to 128
[  122.368708][ T7667] FAT-fs (loop4): Directory bread(block 163) failed
[  122.374716][ T7673] rdma_rxe: rxe_newlink: failed to add bond0
[  122.376919][ T7667] FAT-fs (loop4): Directory bread(block 164) failed
[  122.392118][ T7673] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1395'.
[  122.401277][ T7667] FAT-fs (loop4): Directory bread(block 165) failed
[  122.418505][ T7673] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  122.418819][ T7671] FAT-fs (loop2): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  122.428407][ T7673] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  122.433749][ T7667] FAT-fs (loop4): Directory bread(block 166) failed
[  122.439820][ T7676] sch_tbf: peakrate 4 is lower than or equals to rate 8 !
[  122.446725][ T7667] FAT-fs (loop4): Directory bread(block 167) failed
[  122.470436][ T7667] FAT-fs (loop4): Directory bread(block 168) failed
[  122.477404][ T7667] FAT-fs (loop4): Directory bread(block 169) failed
[  122.490446][ T7667] FAT-fs (loop4): Directory bread(block 162) failed
[  122.497148][ T7667] FAT-fs (loop4): Directory bread(block 163) failed
[  122.654030][ T7681] loop4: detected capacity change from 0 to 512
[  122.687292][ T7681] ext4 filesystem being mounted at /272/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.857080][ T7692] loop4: detected capacity change from 0 to 512
[  122.867251][ T7692] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  122.876347][ T7692] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  122.895717][ T7692] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  122.904726][ T7692] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  122.912869][ T7692] System zones: 0-2, 18-18, 34-34
[  122.918389][ T7692] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  122.934906][ T7692] EXT4-fs (loop4): 1 truncate cleaned up
[  122.960061][ T7695] loop3: detected capacity change from 0 to 128
[  122.987132][ T7695] FAT-fs (loop3): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  123.038497][ T7699] loop1: detected capacity change from 0 to 512
[  123.057516][ T7701] validate_nla: 1 callbacks suppressed
[  123.057529][ T7701] netlink: 'syz.4.1405': attribute type 10 has an invalid length.
[  123.070924][ T7701] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1405'.
[  123.082047][ T7699] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  123.091233][ T7699] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  123.117785][ T7699] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  123.148699][ T7699] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  123.157312][ T7699] System zones: 0-2, 18-18, 34-34
[  123.196479][ T7699] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  123.240194][ T7699] EXT4-fs (loop1): 1 truncate cleaned up
[  123.308328][ T7711] xt_time: invalid argument - start or stop time greater than 23:59:59
[  123.336800][   T31] FAT-fs (loop2): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  123.356043][ T7713] sg_write: data in/out 122/14 bytes for SCSI command 0x0-- guessing data in;
[  123.356043][ T7713]    program syz.0.1410 not setting count and/or reply_len properly
[  123.477276][ T7720] rdma_rxe: rxe_newlink: failed to add bond0
[  123.486493][ T7720] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1413'.
[  123.498157][ T7720] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  123.507178][ T7720] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  123.582656][ T7727] loop1: detected capacity change from 0 to 128
[  123.598380][ T7728] xt_CT: No such helper "pptp"
[  123.611635][ T7730] loop0: detected capacity change from 0 to 2048
[  123.798054][ T7695] bio_check_eod: 336 callbacks suppressed
[  123.798070][ T7695] syz.3.1402: attempt to access beyond end of device
[  123.798070][ T7695] loop3: rw=2049, sector=129, nr_sectors = 8 limit=128
[  123.825291][ T7741] sch_tbf: peakrate 4 is lower than or equals to rate 8 !
[  123.828536][ T7695] syz.3.1402: attempt to access beyond end of device
[  123.828536][ T7695] loop3: rw=2049, sector=145, nr_sectors = 8 limit=128
[  123.846137][ T7695] syz.3.1402: attempt to access beyond end of device
[  123.846137][ T7695] loop3: rw=2049, sector=161, nr_sectors = 8 limit=128
[  123.859942][ T7695] syz.3.1402: attempt to access beyond end of device
[  123.859942][ T7695] loop3: rw=2049, sector=177, nr_sectors = 8 limit=128
[  123.878842][ T7695] syz.3.1402: attempt to access beyond end of device
[  123.878842][ T7695] loop3: rw=2049, sector=193, nr_sectors = 8 limit=128
[  123.892400][ T7695] syz.3.1402: attempt to access beyond end of device
[  123.892400][ T7695] loop3: rw=2049, sector=209, nr_sectors = 8 limit=128
[  123.906047][ T7695] syz.3.1402: attempt to access beyond end of device
[  123.906047][ T7695] loop3: rw=2049, sector=225, nr_sectors = 8 limit=128
[  123.919654][ T7695] syz.3.1402: attempt to access beyond end of device
[  123.919654][ T7695] loop3: rw=2049, sector=241, nr_sectors = 8 limit=128
[  123.934023][ T7695] syz.3.1402: attempt to access beyond end of device
[  123.934023][ T7695] loop3: rw=2049, sector=257, nr_sectors = 8 limit=128
[  123.947619][ T7695] syz.3.1402: attempt to access beyond end of device
[  123.947619][ T7695] loop3: rw=2049, sector=273, nr_sectors = 8 limit=128
[  123.971421][  T152] FAT-fs (loop3): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  123.998593][ T7747] loop0: detected capacity change from 0 to 128
[  124.049962][ T7750] loop2: detected capacity change from 0 to 128
[  124.098021][ T7754] loop0: detected capacity change from 0 to 128
[  124.109030][ T7748] loop3: detected capacity change from 0 to 512
[  124.126465][ T7748] ext4 filesystem being mounted at /260/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.196177][ T7763] loop2: detected capacity change from 0 to 128
[  124.315081][ T7774] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  124.324771][ T7774] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  124.335413][ T7774] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1432'.
[  124.344755][ T7774] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1432'.
[  124.360641][ T7774] team0: entered promiscuous mode
[  124.365753][ T7774] team_slave_0: entered promiscuous mode
[  124.371678][ T7774] team_slave_1: entered promiscuous mode
[  124.377751][ T7774] geneve1: entered promiscuous mode
[  124.385464][ T7774] bond0: entered promiscuous mode
[  124.390543][ T7774] bond_slave_0: entered promiscuous mode
[  124.396361][ T7774] bond_slave_1: entered promiscuous mode
[  124.412939][ T7780] rdma_rxe: rxe_newlink: failed to add bond0
[  124.421585][ T7780] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1434'.
[  124.425533][ T7774] 8021q: adding VLAN 0 to HW filter on device hsr1
[  124.434384][ T7778] loop4: detected capacity change from 0 to 128
[  124.455369][ T7780] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  124.467437][ T7780] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  124.475727][ T7778] FAT-fs (loop4): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  124.708902][ T7790] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  124.715587][ T7790] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  124.723075][ T7790] vhci_hcd vhci_hcd.0: Device attached
[  124.729488][ T7791] vhci_hcd: connection closed
[  124.729733][   T41] vhci_hcd: stop threads
[  124.738727][   T41] vhci_hcd: release socket
[  124.743140][   T41] vhci_hcd: disconnect device
[  124.769473][ T7794] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  124.776187][ T7794] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  124.783691][ T7794] vhci_hcd vhci_hcd.0: Device attached
[  124.791294][ T7795] vhci_hcd: connection closed
[  124.791658][   T41] vhci_hcd: stop threads
[  124.800874][   T41] vhci_hcd: release socket
[  124.805333][   T41] vhci_hcd: disconnect device
[  124.972568][ T7798] loop0: detected capacity change from 0 to 128
[  125.004629][ T7798] FAT-fs (loop0): Directory bread(block 162) failed
[  125.013319][ T7798] FAT-fs (loop0): Directory bread(block 163) failed
[  125.021901][ T7798] FAT-fs (loop0): Directory bread(block 164) failed
[  125.028805][ T7798] FAT-fs (loop0): Directory bread(block 165) failed
[  125.035805][ T7798] FAT-fs (loop0): Directory bread(block 166) failed
[  125.042610][ T7798] FAT-fs (loop0): Directory bread(block 167) failed
[  125.049509][ T7798] FAT-fs (loop0): Directory bread(block 168) failed
[  125.056344][ T7798] FAT-fs (loop0): Directory bread(block 169) failed
[  125.064691][ T7798] FAT-fs (loop0): Directory bread(block 162) failed
[  125.071408][ T7798] FAT-fs (loop0): Directory bread(block 163) failed
[  125.078201][ T1724] FAT-fs (loop4): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  125.107505][ T7803] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  125.135589][ T7808] loop4: detected capacity change from 0 to 128
[  125.269440][ T7817] sch_tbf: peakrate 4 is lower than or equals to rate 8 !
[  125.313119][ T7821] netlink: 'syz.2.1449': attribute type 32 has an invalid length.
[  125.326572][ T7821] random: crng reseeded on system resumption
[  125.358197][ T7826] rdma_rxe: rxe_newlink: failed to add bond0
[  125.371811][ T7829] xt_policy: too many policy elements
[  125.380086][ T7826] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1451'.
[  125.403285][ T7826] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  125.412894][ T7826] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  125.426112][ T7832] loop4: detected capacity change from 0 to 128
[  125.434873][ T7832] FAT-fs (loop4): Directory bread(block 162) failed
[  125.443988][ T7832] FAT-fs (loop4): Directory bread(block 163) failed
[  125.450906][ T7832] FAT-fs (loop4): Directory bread(block 164) failed
[  125.457645][ T7832] FAT-fs (loop4): Directory bread(block 165) failed
[  125.464467][ T7832] FAT-fs (loop4): Directory bread(block 166) failed
[  125.471098][ T7832] FAT-fs (loop4): Directory bread(block 167) failed
[  125.477746][ T7832] FAT-fs (loop4): Directory bread(block 168) failed
[  125.484370][ T7832] FAT-fs (loop4): Directory bread(block 169) failed
[  125.491940][ T7832] FAT-fs (loop4): Directory bread(block 162) failed
[  125.498593][ T7832] FAT-fs (loop4): Directory bread(block 163) failed
[  125.510772][ T7836] loop2: detected capacity change from 0 to 1024
[  125.525945][ T7836] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.1449: Failed to acquire dquot type 0
[  125.541358][ T7839] xt_policy: too many policy elements
[  125.544504][ T7836] EXT4-fs error (device loop2): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  125.568117][ T7842] loop4: detected capacity change from 0 to 128
[  125.568729][ T7836] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #13: comm syz.2.1449: corrupted inode contents
[  125.594568][ T7836] EXT4-fs error (device loop2): ext4_dirty_inode:6103: inode #13: comm syz.2.1449: mark_inode_dirty error
[  125.606173][ T7836] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #13: comm syz.2.1449: corrupted inode contents
[  125.620162][ T7836] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #13: comm syz.2.1449: mark_inode_dirty error
[  125.632577][ T7836] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #13: comm syz.2.1449: corrupted inode contents
[  125.645864][ T7836] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  125.654562][ T7836] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #13: comm syz.2.1449: corrupted inode contents
[  125.667045][ T7836] EXT4-fs error (device loop2): ext4_truncate:4255: inode #13: comm syz.2.1449: mark_inode_dirty error
[  125.682876][ T7836] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  125.695553][ T7846] loop4: detected capacity change from 0 to 512
[  125.702150][ T7836] EXT4-fs (loop2): 1 truncate cleaned up
[  125.713403][ T7846] EXT4-fs (loop4): orphan cleanup on readonly fs
[  125.725786][ T7846] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.1457: bad orphan inode 13
[  125.739493][ T7846] ext4_test_bit(bit=12, block=18) = 1
[  125.745053][ T7846] is_bad_inode(inode)=0
[  125.749226][ T7846] NEXT_ORPHAN(inode)=2130706432
[  125.754078][ T7846] max_ino=32
[  125.757333][ T7846] i_nlink=1
[  125.762794][ T7846] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  125.775106][ T7846] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  125.821850][ T7856] sg_write: data in/out 122/14 bytes for SCSI command 0x0-- guessing data in;
[  125.821850][ T7856]    program syz.2.1461 not setting count and/or reply_len properly
[  125.860962][   T29] kauditd_printk_skb: 86 callbacks suppressed
[  125.860977][   T29] audit: type=1326 audit(1746507650.472:2412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7860 comm="syz.4.1462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a38a6e969 code=0x7ffc0000
[  125.890886][   T29] audit: type=1326 audit(1746507650.472:2413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7860 comm="syz.4.1462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a38a6e969 code=0x7ffc0000
[  125.914418][   T29] audit: type=1326 audit(1746507650.482:2414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7860 comm="syz.4.1462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0a38a6e969 code=0x7ffc0000
[  125.926813][ T7864] netlink: 'syz.4.1463': attribute type 10 has an invalid length.
[  125.937799][   T29] audit: type=1326 audit(1746507650.482:2415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7860 comm="syz.4.1462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a38a6e969 code=0x7ffc0000
[  125.937828][   T29] audit: type=1326 audit(1746507650.482:2416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7860 comm="syz.4.1462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f0a38a6e969 code=0x7ffc0000
[  125.937867][   T29] audit: type=1326 audit(1746507650.482:2417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7860 comm="syz.4.1462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a38a6e969 code=0x7ffc0000
[  125.937997][   T29] audit: type=1326 audit(1746507650.482:2418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7860 comm="syz.4.1462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0a38a6e969 code=0x7ffc0000
[  125.945874][ T7864] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1463'.
[  125.969437][   T29] audit: type=1326 audit(1746507650.482:2419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7860 comm="syz.4.1462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a38a6e969 code=0x7ffc0000
[  125.969466][   T29] audit: type=1326 audit(1746507650.482:2420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7860 comm="syz.4.1462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0a38a6d2d0 code=0x7ffc0000
[  126.095989][   T29] audit: type=1326 audit(1746507650.482:2421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7860 comm="syz.4.1462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a38a6e969 code=0x7ffc0000
[  126.135320][ T7870] xt_policy: too many policy elements
[  126.188809][ T7879] netlink: 'syz.2.1470': attribute type 32 has an invalid length.
[  126.198700][ T7879] random: crng reseeded on system resumption
[  126.258883][ T7875] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=5135 sclass=netlink_audit_socket pid=7875 comm=syz.1.1467
[  126.279929][ T7875] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=7875 comm=syz.1.1467
[  126.324256][ T7887] xt_CT: No such helper "pptp"
[  126.344492][ T7875] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=5137 sclass=netlink_audit_socket pid=7875 comm=syz.1.1467
[  126.357953][ T7875] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=7875 comm=syz.1.1467
[  126.371762][ T7875] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=7875 comm=syz.1.1467
[  126.412821][ T7891] sg_write: data in/out 122/14 bytes for SCSI command 0x0-- guessing data in;
[  126.412821][ T7891]    program syz.4.1474 not setting count and/or reply_len properly
[  126.421313][ T7887] loop3: detected capacity change from 0 to 2048
[  126.463337][ T7897] loop2: detected capacity change from 0 to 1024
[  126.464525][ T7887] EXT4-fs mount: 88 callbacks suppressed
[  126.464538][ T7887] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  126.501231][ T7897] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.1470: Failed to acquire dquot type 0
[  126.513459][ T7897] EXT4-fs error (device loop2): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  126.528214][ T7897] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #13: comm syz.2.1470: corrupted inode contents
[  126.541551][ T7897] EXT4-fs error (device loop2): ext4_dirty_inode:6103: inode #13: comm syz.2.1470: mark_inode_dirty error
[  126.553163][ T7897] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #13: comm syz.2.1470: corrupted inode contents
[  126.566026][ T7897] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #13: comm syz.2.1470: mark_inode_dirty error
[  126.578768][ T7897] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #13: comm syz.2.1470: corrupted inode contents
[  126.590808][ T7897] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  126.602034][ T7897] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #13: comm syz.2.1470: corrupted inode contents
[  126.604947][ T7908] sch_tbf: peakrate 4 is lower than or equals to rate 8 !
[  126.617152][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.633251][ T7897] EXT4-fs error (device loop2): ext4_truncate:4255: inode #13: comm syz.2.1470: mark_inode_dirty error
[  126.645747][ T7897] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  126.661671][ T7897] EXT4-fs (loop2): 1 truncate cleaned up
[  126.679647][ T7897] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  126.737387][ T7921] loop3: detected capacity change from 0 to 128
[  126.791743][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.818562][ T7931] loop2: detected capacity change from 0 to 512
[  126.843034][ T7931] EXT4-fs: Ignoring removed mblk_io_submit option
[  126.851164][ T7936] FAULT_INJECTION: forcing a failure.
[  126.851164][ T7936] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  126.864365][ T7936] CPU: 1 UID: 0 PID: 7936 Comm: syz.1.1490 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  126.864452][ T7936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  126.864464][ T7936] Call Trace:
[  126.864470][ T7936]  <TASK>
[  126.864477][ T7936]  __dump_stack+0x1d/0x30
[  126.864498][ T7936]  dump_stack_lvl+0xe8/0x140
[  126.864516][ T7936]  dump_stack+0x15/0x1b
[  126.864531][ T7936]  should_fail_ex+0x265/0x280
[  126.864591][ T7936]  should_fail+0xb/0x20
[  126.864617][ T7936]  should_fail_usercopy+0x1a/0x20
[  126.864704][ T7936]  strncpy_from_user+0x25/0x230
[  126.864794][ T7936]  ? kmem_cache_alloc_noprof+0x186/0x310
[  126.864920][ T7936]  ? getname_flags+0x80/0x3b0
[  126.864948][ T7936]  getname_flags+0xae/0x3b0
[  126.864976][ T7936]  __x64_sys_symlinkat+0x40/0x70
[  126.865076][ T7936]  x64_sys_call+0x1558/0x2fb0
[  126.865097][ T7936]  do_syscall_64+0xd0/0x1a0
[  126.865118][ T7936]  ? clear_bhb_loop+0x25/0x80
[  126.865160][ T7936]  ? clear_bhb_loop+0x25/0x80
[  126.865180][ T7936]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.865313][ T7936] RIP: 0033:0x7f4cabe6e969
[  126.865328][ T7936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.865400][ T7936] RSP: 002b:00007f4caa4d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000010a
[  126.865418][ T7936] RAX: ffffffffffffffda RBX: 00007f4cac095fa0 RCX: 00007f4cabe6e969
[  126.865431][ T7936] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000000000000
[  126.865443][ T7936] RBP: 00007f4caa4d7090 R08: 0000000000000000 R09: 0000000000000000
[  126.865455][ T7936] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.865465][ T7936] R13: 0000000000000000 R14: 00007f4cac095fa0 R15: 00007ffd6e28eb78
[  126.865482][ T7936]  </TASK>
[  126.870371][ T7931] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  127.096534][ T7949] netlink: 'syz.1.1494': attribute type 10 has an invalid length.
[  127.106384][ T7949] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1494'.
[  127.229213][ T7960] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1499'.
[  127.238225][ T7960] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1499'.
[  127.260726][ T7962] loop1: detected capacity change from 0 to 256
[  127.282119][ T7960] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1499'.
[  127.301284][ T7960] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1499'.
[  127.310256][ T7960] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1499'.
[  127.323135][ T7960] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1499'.
[  127.368417][ T7960] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1499'.
[  127.377466][ T7960] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1499'.
[  127.398765][ T7976] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=5135 sclass=netlink_audit_socket pid=7976 comm=syz.0.1504
[  127.436550][ T7978] netlink: 'syz.3.1505': attribute type 10 has an invalid length.
[  127.455121][ T7976] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=7976 comm=syz.0.1504
[  127.527943][ T7976] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=5137 sclass=netlink_audit_socket pid=7976 comm=syz.0.1504
[  127.554797][ T7976] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=7976 comm=syz.0.1504
[  127.585681][ T7976] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=7976 comm=syz.0.1504
[  127.773811][ T7999] netlink: 'syz.0.1513': attribute type 10 has an invalid length.
[  127.826365][ T8004] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  127.843169][ T8006] netlink: 'syz.4.1517': attribute type 10 has an invalid length.
[  127.845076][ T8004] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  127.910296][ T8011] sch_tbf: peakrate 4 is lower than or equals to rate 8 !
[  127.933785][ T8010] xt_policy: too many policy elements
[  128.173792][ T8030] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[  128.180334][ T8030] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  128.187947][ T8030] vhci_hcd vhci_hcd.0: Device attached
[  128.196669][ T8031] vhci_hcd: connection closed
[  128.196934][ T1724] vhci_hcd: stop threads
[  128.197991][ T8034] netlink: 'syz.0.1528': attribute type 10 has an invalid length.
[  128.201632][ T1724] vhci_hcd: release socket
[  128.201641][ T1724] vhci_hcd: disconnect device
[  128.245649][ T8036] loop2: detected capacity change from 0 to 256
[  128.282561][ T8038] xt_policy: too many policy elements
[  128.293234][ T8040] loop2: detected capacity change from 0 to 128
[  128.304909][ T8040] FAT-fs (loop2): Directory bread(block 162) failed
[  128.314169][ T8040] FAT-fs (loop2): Directory bread(block 163) failed
[  128.322590][ T8040] FAT-fs (loop2): Directory bread(block 164) failed
[  128.325548][ T8042] xt_time: invalid argument - start or stop time greater than 23:59:59
[  128.329547][ T8040] FAT-fs (loop2): Directory bread(block 165) failed
[  128.345239][ T8040] FAT-fs (loop2): Directory bread(block 166) failed
[  128.351912][ T8040] FAT-fs (loop2): Directory bread(block 167) failed
[  128.358748][ T8040] FAT-fs (loop2): Directory bread(block 168) failed
[  128.365531][ T8040] FAT-fs (loop2): Directory bread(block 169) failed
[  128.378010][ T8040] FAT-fs (loop2): Directory bread(block 162) failed
[  128.384705][ T8040] FAT-fs (loop2): Directory bread(block 163) failed
[  128.516033][ T8050] loop0: detected capacity change from 0 to 128
[  128.533544][ T8048] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  128.534621][ T8050] FAT-fs (loop0): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  128.543343][ T8048] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  128.609111][ T8051] xt_CT: You must specify a L4 protocol and not use inversions on it
[  128.618659][ T8051] FAULT_INJECTION: forcing a failure.
[  128.618659][ T8051] name failslab, interval 1, probability 0, space 0, times 0
[  128.631288][ T8051] CPU: 1 UID: 0 PID: 8051 Comm: syz.2.1533 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  128.631310][ T8051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  128.631351][ T8051] Call Trace:
[  128.631358][ T8051]  <TASK>
[  128.631412][ T8051]  __dump_stack+0x1d/0x30
[  128.631430][ T8051]  dump_stack_lvl+0xe8/0x140
[  128.631444][ T8051]  dump_stack+0x15/0x1b
[  128.631461][ T8051]  should_fail_ex+0x265/0x280
[  128.631536][ T8051]  should_failslab+0x8c/0xb0
[  128.631559][ T8051]  kmem_cache_alloc_noprof+0x50/0x310
[  128.631590][ T8051]  ? alloc_empty_file+0x76/0x200
[  128.631707][ T8051]  alloc_empty_file+0x76/0x200
[  128.631781][ T8051]  path_openat+0x68/0x2170
[  128.631797][ T8051]  ? __rcu_read_unlock+0x34/0x70
[  128.631818][ T8051]  ? filemap_map_pages+0x9be/0xab0
[  128.631895][ T8051]  ? plist_check_list+0x1cf/0x210
[  128.631921][ T8051]  ? __rcu_read_unlock+0x4f/0x70
[  128.631941][ T8051]  ? __perf_event_task_sched_in+0xa37/0xaa0
[  128.632010][ T8051]  ? plist_check_list+0x1cf/0x210
[  128.632107][ T8051]  ? _raw_spin_unlock+0x26/0x50
[  128.632172][ T8051]  do_filp_open+0x109/0x230
[  128.632194][ T8051]  do_sys_openat2+0xa6/0x110
[  128.632212][ T8051]  __x64_sys_openat+0xf2/0x120
[  128.632232][ T8051]  x64_sys_call+0x1af/0x2fb0
[  128.632253][ T8051]  do_syscall_64+0xd0/0x1a0
[  128.632321][ T8051]  ? clear_bhb_loop+0x25/0x80
[  128.632341][ T8051]  ? clear_bhb_loop+0x25/0x80
[  128.632362][ T8051]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.632438][ T8051] RIP: 0033:0x7fbddcc6d2d0
[  128.632450][ T8051] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  128.632465][ T8051] RSP: 002b:00007fbddb294b70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  128.632484][ T8051] RAX: ffffffffffffffda RBX: 0000000000160341 RCX: 00007fbddcc6d2d0
[  128.632537][ T8051] RDX: 0000000000160341 RSI: 00007fbddb294c10 RDI: 00000000ffffff9c
[  128.632548][ T8051] RBP: 00007fbddb294c10 R08: 0000000000000000 R09: 0000000000000000
[  128.632558][ T8051] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  128.632578][ T8051] R13: 0000000000000000 R14: 00007fbddce96160 R15: 00007ffdb9445a38
[  128.632595][ T8051]  </TASK>
[  128.985283][ T8069] loop4: detected capacity change from 0 to 512
[  128.994609][ T8069] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  129.003683][ T8069] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  129.014354][ T8069] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  129.025884][ T8069] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  129.034456][ T8069] System zones: 0-2, 18-18, 34-34
[  129.040592][ T8069] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  129.056759][ T8069] EXT4-fs (loop4): 1 truncate cleaned up
[  129.062798][ T8069] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  129.110416][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.140194][ T8075] netlink: 'syz.4.1544': attribute type 10 has an invalid length.
[  129.188999][ T8078] loop4: detected capacity change from 0 to 128
[  129.210111][ T8078] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  129.222815][ T8078] ext4 filesystem being mounted at /308/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.296056][ T8084] sch_tbf: peakrate 4 is lower than or equals to rate 8 !
[  129.309081][ T8083] loop3: detected capacity change from 0 to 256
[  129.342690][ T8050] bio_check_eod: 203 callbacks suppressed
[  129.342757][ T8050] syz.0.1535: attempt to access beyond end of device
[  129.342757][ T8050] loop0: rw=2049, sector=129, nr_sectors = 8 limit=128
[  129.362178][ T8050] syz.0.1535: attempt to access beyond end of device
[  129.362178][ T8050] loop0: rw=2049, sector=145, nr_sectors = 8 limit=128
[  129.375854][ T8050] syz.0.1535: attempt to access beyond end of device
[  129.375854][ T8050] loop0: rw=2049, sector=161, nr_sectors = 8 limit=128
[  129.389453][ T8050] syz.0.1535: attempt to access beyond end of device
[  129.389453][ T8050] loop0: rw=2049, sector=177, nr_sectors = 16 limit=128
[  129.403084][ T8050] syz.0.1535: attempt to access beyond end of device
[  129.403084][ T8050] loop0: rw=2049, sector=201, nr_sectors = 8 limit=128
[  129.416526][ T8050] syz.0.1535: attempt to access beyond end of device
[  129.416526][ T8050] loop0: rw=2049, sector=217, nr_sectors = 8 limit=128
[  129.430083][ T8050] syz.0.1535: attempt to access beyond end of device
[  129.430083][ T8050] loop0: rw=2049, sector=233, nr_sectors = 8 limit=128
[  129.443503][ T8050] syz.0.1535: attempt to access beyond end of device
[  129.443503][ T8050] loop0: rw=2049, sector=249, nr_sectors = 8 limit=128
[  129.456927][ T8050] syz.0.1535: attempt to access beyond end of device
[  129.456927][ T8050] loop0: rw=2049, sector=265, nr_sectors = 8 limit=128
[  129.470366][ T8050] syz.0.1535: attempt to access beyond end of device
[  129.470366][ T8050] loop0: rw=2049, sector=281, nr_sectors = 8 limit=128
[  129.492482][   T31] FAT-fs (loop0): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  130.029512][ T3314] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  130.239798][ T8116] capability: warning: `syz.2.1558' uses 32-bit capabilities (legacy support in use)
[  130.252244][ T8116] syz.2.1558 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  130.297058][ T8123] loop2: detected capacity change from 0 to 1024
[  130.303870][ T8123] EXT4-fs: Ignoring removed orlov option
[  130.319408][ T8125] sg_write: data in/out 122/14 bytes for SCSI command 0x0-- guessing data in;
[  130.319408][ T8125]    program syz.0.1562 not setting count and/or reply_len properly
[  130.349074][ T8123] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.380130][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.533840][ T8153] sg_write: data in/out 122/14 bytes for SCSI command 0x0-- guessing data in;
[  130.533840][ T8153]    program syz.2.1574 not setting count and/or reply_len properly
[  130.651786][ T8164] loop0: detected capacity change from 0 to 512
[  130.660501][ T8164] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  130.669636][ T8164] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  130.684499][ T8164] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended
[  130.693616][ T8164] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  130.701725][ T8164] System zones: 0-2, 18-18, 34-34
[  130.707263][ T8164] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  130.721960][ T8164] EXT4-fs (loop0): 1 truncate cleaned up
[  130.728093][ T8164] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.978488][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.105608][ T8177] loop2: detected capacity change from 0 to 512
[  131.116129][ T8177] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  131.125395][ T8177] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  131.143053][ T8177] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[  131.152353][ T8183] loop4: detected capacity change from 0 to 512
[  131.160534][ T8183] EXT4-fs: Ignoring removed mblk_io_submit option
[  131.167475][ T8183] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  131.169921][ T8177] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  131.185553][ T8177] System zones: 0-2, 18-18, 34-34
[  131.203060][ T8177] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  131.218000][ T8177] EXT4-fs (loop2): 1 truncate cleaned up
[  131.228250][ T8177] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.277078][ T8189] netlink: 'syz.0.1588': attribute type 10 has an invalid length.
[  131.285486][ T8189] __nla_validate_parse: 15 callbacks suppressed
[  131.285515][ T8189] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1588'.
[  131.367511][ T8192] loop0: detected capacity change from 0 to 128
[  131.387011][ T8192] FAT-fs (loop0): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  131.399716][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.490985][ T8196] loop3: detected capacity change from 0 to 256
[  131.700102][ T8199] loop3: detected capacity change from 0 to 512
[  131.966871][ T8199] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.002067][ T8199] ext4 filesystem being mounted at /301/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.074847][ T8213] loop1: detected capacity change from 0 to 512
[  132.091354][   T29] kauditd_printk_skb: 127 callbacks suppressed
[  132.091370][   T29] audit: type=1326 audit(1746507656.702:2547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8198 comm="syz.3.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d955be969 code=0x7ffc0000
[  132.121092][   T29] audit: type=1326 audit(1746507656.702:2548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8198 comm="syz.3.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f4d955be969 code=0x7ffc0000
[  132.144530][   T29] audit: type=1326 audit(1746507656.702:2549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8198 comm="syz.3.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d955be969 code=0x7ffc0000
[  132.167914][ T8213] EXT4-fs (loop1): orphan cleanup on readonly fs
[  132.168178][ T8213] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.1596: bad orphan inode 13
[  132.174363][   T29] audit: type=1326 audit(1746507656.702:2550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8198 comm="syz.3.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f4d955be969 code=0x7ffc0000
[  132.186194][ T8213] ext4_test_bit(bit=12, block=18) = 1
[  132.207688][   T29] audit: type=1326 audit(1746507656.702:2551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8198 comm="syz.3.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d955be969 code=0x7ffc0000
[  132.207726][   T29] audit: type=1326 audit(1746507656.702:2552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8198 comm="syz.3.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4d955be969 code=0x7ffc0000
[  132.207824][   T29] audit: type=1326 audit(1746507656.702:2553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8198 comm="syz.3.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d955be969 code=0x7ffc0000
[  132.213160][ T8213] is_bad_inode(inode)=0
[  132.236468][   T29] audit: type=1326 audit(1746507656.702:2554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8198 comm="syz.3.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f4d955be969 code=0x7ffc0000
[  132.259711][ T8213] NEXT_ORPHAN(inode)=2130706432
[  132.283080][   T29] audit: type=1326 audit(1746507656.702:2555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8198 comm="syz.3.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d955be969 code=0x7ffc0000
[  132.287209][ T8213] max_ino=32
[  132.287217][ T8213] i_nlink=1
[  132.310459][   T29] audit: type=1326 audit(1746507656.702:2556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8198 comm="syz.3.1592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f4d955be969 code=0x7ffc0000
[  132.381298][ T8213] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  132.478467][   T51] FAT-fs (loop0): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  132.502870][ T8213] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  132.557005][ T8222] xt_time: invalid argument - start or stop time greater than 23:59:59
[  132.567094][ T8213] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  132.579618][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.607105][ T8230] loop4: detected capacity change from 0 to 128
[  132.607791][ T8231] sch_tbf: peakrate 4 is lower than or equals to rate 8 !
[  132.620914][ T8230] netlink: 'syz.4.1604': attribute type 6 has an invalid length.
[  132.641205][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.727750][ T8239] syz0: rxe_newlink: already configured on bond0
[  132.734989][ T8239] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1608'.
[  132.744825][ T8239] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  132.753401][ T8239] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  132.865522][ T8245] loop0: detected capacity change from 0 to 256
[  132.914144][ T8247] loop0: detected capacity change from 0 to 128
[  132.926392][ T8247] FAT-fs (loop0): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  133.315522][ T8249] loop3: detected capacity change from 0 to 512
[  133.323202][ T8249] EXT4-fs: Ignoring removed mblk_io_submit option
[  133.334852][ T8249] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  133.612826][ T8263] loop1: detected capacity change from 0 to 128
[  133.785852][   T41] FAT-fs (loop0): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  133.883250][ T8278] loop4: detected capacity change from 0 to 512
[  133.917707][ T8278] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  133.926914][ T8278] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  133.938098][ T8280] loop1: detected capacity change from 0 to 256
[  134.022184][ T8278] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  134.067316][ T8288] netlink: 'syz.0.1627': attribute type 10 has an invalid length.
[  134.075494][ T8288] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1627'.
[  134.096122][ T8278] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  134.122676][ T8292] loop1: detected capacity change from 0 to 128
[  134.130689][ T8278] System zones: 0-2, 18-18, 34-34
[  134.143287][ T8278] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  134.225076][ T8278] EXT4-fs (loop4): 1 truncate cleaned up
[  134.234663][ T8278] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  134.264013][ T8300] netlink: 'syz.0.1641': attribute type 10 has an invalid length.
[  134.272446][ T8300] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1641'.
[  134.283510][ T8301] loop2: detected capacity change from 0 to 256
[  134.369557][ T8303] loop1: detected capacity change from 0 to 128
[  134.376221][ T8309] loop2: detected capacity change from 0 to 128
[  134.406008][ T8303] FAT-fs (loop1): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  134.438184][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.538267][ T8317] loop2: detected capacity change from 0 to 256
[  134.547885][ T8320] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(4)
[  134.554431][ T8320] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  134.562006][ T8320] vhci_hcd vhci_hcd.0: Device attached
[  134.573017][ T8321] vhci_hcd: connection closed
[  134.587458][ T1724] vhci_hcd: stop threads
[  134.596690][ T1724] vhci_hcd: release socket
[  134.601115][ T1724] vhci_hcd: disconnect device
[  134.816118][ T8349] loop3: detected capacity change from 0 to 128
[  134.829520][ T8351] loop0: detected capacity change from 0 to 128
[  134.836164][ T8340] loop2: detected capacity change from 0 to 512
[  134.846877][ T8349] netlink: 'syz.3.1650': attribute type 6 has an invalid length.
[  134.857191][ T8351] netlink: 'syz.0.1651': attribute type 6 has an invalid length.
[  134.886487][ T8340] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.899141][ T8340] ext4 filesystem being mounted at /368/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  135.150241][ T8303] bio_check_eod: 374 callbacks suppressed
[  135.150264][ T8303] syz.1.1632: attempt to access beyond end of device
[  135.150264][ T8303] loop1: rw=2049, sector=129, nr_sectors = 8 limit=128
[  135.171248][ T8303] syz.1.1632: attempt to access beyond end of device
[  135.171248][ T8303] loop1: rw=2049, sector=145, nr_sectors = 8 limit=128
[  135.187282][ T8303] syz.1.1632: attempt to access beyond end of device
[  135.187282][ T8303] loop1: rw=2049, sector=161, nr_sectors = 8 limit=128
[  135.220012][ T8303] syz.1.1632: attempt to access beyond end of device
[  135.220012][ T8303] loop1: rw=2049, sector=177, nr_sectors = 16 limit=128
[  135.233794][ T8303] syz.1.1632: attempt to access beyond end of device
[  135.233794][ T8303] loop1: rw=2049, sector=201, nr_sectors = 8 limit=128
[  135.248029][ T8303] syz.1.1632: attempt to access beyond end of device
[  135.248029][ T8303] loop1: rw=2049, sector=217, nr_sectors = 8 limit=128
[  135.295222][ T8362] loop4: detected capacity change from 0 to 512
[  135.298945][ T8303] syz.1.1632: attempt to access beyond end of device
[  135.298945][ T8303] loop1: rw=2049, sector=233, nr_sectors = 8 limit=128
[  135.315610][ T8303] syz.1.1632: attempt to access beyond end of device
[  135.315610][ T8303] loop1: rw=2049, sector=249, nr_sectors = 8 limit=128
[  135.329950][ T8303] syz.1.1632: attempt to access beyond end of device
[  135.329950][ T8303] loop1: rw=2049, sector=265, nr_sectors = 8 limit=128
[  135.344925][ T8303] syz.1.1632: attempt to access beyond end of device
[  135.344925][ T8303] loop1: rw=2049, sector=281, nr_sectors = 8 limit=128
[  135.373927][ T8362] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  135.383080][ T8362] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  135.392281][   T12] FAT-fs (loop1): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  135.392531][ T8362] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  135.403454][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.421087][ T8362] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  135.429483][ T8362] System zones: 0-2, 18-18, 34-34
[  135.479318][ T8362] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  135.508314][ T8362] EXT4-fs (loop4): 1 truncate cleaned up
[  135.517316][ T8362] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  135.632889][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.716106][ T8384] netlink: 'syz.3.1665': attribute type 10 has an invalid length.
[  135.724609][ T8384] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1665'.
[  135.764171][ T8388] netlink: 'syz.4.1664': attribute type 32 has an invalid length.
[  135.817992][ T8393] netlink: 'syz.0.1668': attribute type 10 has an invalid length.
[  135.827178][ T8393] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1668'.
[  135.852573][ T8399] xt_time: invalid argument - start or stop time greater than 23:59:59
[  135.914910][ T8405] loop1: detected capacity change from 0 to 256
[  135.951301][ T8408] loop0: detected capacity change from 0 to 128
[  135.957895][ T8406] loop4: detected capacity change from 0 to 1024
[  135.985789][ T8406] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.1664: Failed to acquire dquot type 0
[  136.005417][ T8411] netlink: 'syz.2.1676': attribute type 10 has an invalid length.
[  136.013635][ T8411] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1676'.
[  136.028557][ T8408] netlink: 'syz.0.1675': attribute type 6 has an invalid length.
[  136.059352][ T8406] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  136.132161][ T8406] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.1664: corrupted inode contents
[  136.196032][ T8406] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #13: comm syz.4.1664: mark_inode_dirty error
[  136.209789][ T8418] loop2: detected capacity change from 0 to 1024
[  136.216545][ T8406] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.1664: corrupted inode contents
[  136.234651][ T8406] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #13: comm syz.4.1664: mark_inode_dirty error
[  136.268598][ T8406] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.1664: corrupted inode contents
[  136.283442][ T8420] loop1: detected capacity change from 0 to 512
[  136.290749][ T8406] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  136.308553][ T8420] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  136.328525][ T8406] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.1664: corrupted inode contents
[  136.344121][ T8418] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  136.354135][ T8406] EXT4-fs error (device loop4): ext4_truncate:4255: inode #13: comm syz.4.1664: mark_inode_dirty error
[  136.367023][ T8420] EXT4-fs (loop1): 1 truncate cleaned up
[  136.373213][ T8420] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.406236][ T8418] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  136.434132][ T8406] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  136.459777][ T8418] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  136.479456][ T8406] EXT4-fs (loop4): 1 truncate cleaned up
[  136.490252][ T8418] EXT4-fs (loop2): orphan cleanup on readonly fs
[  136.498473][ T8406] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.521764][ T8418] EXT4-fs warning (device loop2): ext4_enable_quotas:7170: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[  136.536446][ T8418] EXT4-fs (loop2): Cannot turn on quotas: error -22
[  136.545136][ T8418] EXT4-fs error (device loop2): ext4_free_blocks:6587: comm syz.2.1678: Freeing blocks not in datazone - block = 0, count = 4096
[  136.559844][ T8418] EXT4-fs (loop2): 1 orphan inode deleted
[  136.572681][ T8418] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  136.599058][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.643975][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.723212][ T8442] loop2: detected capacity change from 0 to 512
[  136.730677][ T8442] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  136.739818][ T8442] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  136.753517][ T8442] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[  136.765915][ T8442] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  136.776287][ T8442] System zones: 0-2, 18-18, 34-34
[  136.781787][ T8442] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  136.797924][ T8442] EXT4-fs (loop2): 1 truncate cleaned up
[  136.803880][ T8437] loop3: detected capacity change from 0 to 512
[  136.804287][ T8442] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.849956][ T8437] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.869709][ T8437] ext4 filesystem being mounted at /314/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.896884][ T8457] xt_time: invalid argument - start or stop time greater than 23:59:59
[  136.910567][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.988459][ T8461] loop0: detected capacity change from 0 to 512
[  137.001059][ T8461] EXT4-fs: Ignoring removed mblk_io_submit option
[  137.014632][ T8461] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  137.052286][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.175309][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.298077][ T8484] loop2: detected capacity change from 0 to 512
[  137.324958][ T8484] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  137.334125][ T8484] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  137.367438][ T8487] netlink: 'syz.1.1704': attribute type 32 has an invalid length.
[  137.373352][ T8488] loop3: detected capacity change from 0 to 128
[  137.383617][ T8484] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[  137.393167][ T8484] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  137.402065][ T8487] random: crng reseeded on system resumption
[  137.414225][ T8484] System zones: 0-2, 18-18, 34-34
[  137.485651][ T8488] FAT-fs (loop3): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  137.495774][ T8484] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  137.542675][ T8497] loop1: detected capacity change from 0 to 1024
[  137.559477][ T8484] EXT4-fs (loop2): 1 truncate cleaned up
[  137.586693][ T8484] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  137.618345][ T8497] __quota_error: 71 callbacks suppressed
[  137.618358][ T8497] Quota error (device loop1): do_check_range: Getting block 64 out of range 1-5
[  137.633114][ T8497] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  137.642513][ T8497] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.1704: Failed to acquire dquot type 0
[  137.809765][ T8502] xt_CT: No such helper "pptp"
[  137.825429][ T8497] EXT4-fs error (device loop1): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  137.882645][ T8497] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #13: comm syz.1.1704: corrupted inode contents
[  137.904584][ T8497] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #13: comm syz.1.1704: mark_inode_dirty error
[  137.918355][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.937535][ T8497] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #13: comm syz.1.1704: corrupted inode contents
[  137.945424][ T8502] loop4: detected capacity change from 0 to 2048
[  137.986500][ T8505] loop2: detected capacity change from 0 to 128
[  137.998130][ T8497] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #13: comm syz.1.1704: mark_inode_dirty error
[  138.035771][ T8502] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.043873][ T8497] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #13: comm syz.1.1704: corrupted inode contents
[  138.082297][ T8497] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  138.119949][ T8497] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #13: comm syz.1.1704: corrupted inode contents
[  138.132291][ T8497] EXT4-fs error (device loop1): ext4_truncate:4255: inode #13: comm syz.1.1704: mark_inode_dirty error
[  138.143768][ T8497] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  138.153560][ T8497] EXT4-fs (loop1): 1 truncate cleaned up
[  138.161378][ T8497] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.176909][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.250020][   T51] FAT-fs (loop3): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  138.281214][ T8516] xt_time: invalid argument - start or stop time greater than 23:59:59
[  138.320104][ T8519] xt_policy: too many policy elements
[  138.378524][ T8522] loop2: detected capacity change from 0 to 256
[  138.380747][ T8523] xt_CT: No such helper "pptp"
[  138.431130][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.485504][ T8531] loop2: detected capacity change from 0 to 128
[  138.505092][ T8532] loop1: detected capacity change from 0 to 512
[  138.523876][ T8532] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  138.532981][ T8532] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  138.551477][ T8523] loop4: detected capacity change from 0 to 2048
[  138.562382][ T8532] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  138.572939][ T8532] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  138.578354][ T8534] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1720'.
[  138.606572][ T8523] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.619814][ T8532] System zones: 0-2, 18-18, 34-34
[  138.628892][ T8532] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  138.647752][ T8532] EXT4-fs (loop1): 1 truncate cleaned up
[  138.653925][ T8532] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.673987][ T8542] loop0: detected capacity change from 0 to 128
[  138.710788][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.766138][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.811761][ T8549] loop1: detected capacity change from 0 to 128
[  138.828959][ T8549] FAT-fs (loop1): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  138.833323][ T8553] xt_time: invalid argument - start or stop time greater than 23:59:59
[  138.916659][ T8559] random: crng reseeded on system resumption
[  138.999963][ T8559] loop4: detected capacity change from 0 to 1024
[  139.011327][ T8559] Quota error (device loop4): do_check_range: Getting block 64 out of range 1-5
[  139.020548][ T8559] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  139.029988][ T8559] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.1729: Failed to acquire dquot type 0
[  139.046095][ T8559] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  139.062233][ T8559] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.1729: corrupted inode contents
[  139.075880][ T8559] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #13: comm syz.4.1729: mark_inode_dirty error
[  139.087518][ T8559] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.1729: corrupted inode contents
[  139.100115][ T8559] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #13: comm syz.4.1729: mark_inode_dirty error
[  139.113093][ T8559] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.1729: corrupted inode contents
[  139.127157][ T8559] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  139.136189][ T8559] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.1729: corrupted inode contents
[  139.149801][ T8559] EXT4-fs error (device loop4): ext4_truncate:4255: inode #13: comm syz.4.1729: mark_inode_dirty error
[  139.166704][ T8559] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  139.178858][ T8559] EXT4-fs (loop4): 1 truncate cleaned up
[  139.194572][ T8559] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.398166][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.538875][ T8578] xt_time: invalid argument - start or stop time greater than 23:59:59
[  139.559470][ T8580] validate_nla: 3 callbacks suppressed
[  139.559497][ T8580] netlink: 'syz.4.1737': attribute type 10 has an invalid length.
[  139.573204][ T8580] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1737'.
[  139.638345][   T12] FAT-fs (loop1): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  139.661451][ T8588] xt_CT: No such helper "pptp"
[  139.703177][ T8591] rdma_rxe: rxe_newlink: failed to add bond0
[  139.721857][ T8591] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1744'.
[  139.739176][ T8588] loop3: detected capacity change from 0 to 2048
[  139.745410][ T8591] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  139.761597][ T8591] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  139.772556][ T8588] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.788078][ T8594] loop1: detected capacity change from 0 to 512
[  139.799386][ T8588] 9pnet_fd: Insufficient options for proto=fd
[  139.825832][ T8594] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.844584][ T8594] ext4 filesystem being mounted at /345/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  139.881832][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.918373][ T8613] xt_time: invalid argument - start or stop time greater than 23:59:59
[  139.929543][   T29] audit: type=1326 audit(1746507664.542:2626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8593 comm="syz.1.1743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cabe6e969 code=0x7ffc0000
[  139.953662][   T29] audit: type=1326 audit(1746507664.562:2627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8593 comm="syz.1.1743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f4cabe6e969 code=0x7ffc0000
[  139.977050][   T29] audit: type=1326 audit(1746507664.562:2628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8593 comm="syz.1.1743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cabe6e969 code=0x7ffc0000
[  140.000645][   T29] audit: type=1326 audit(1746507664.562:2629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8593 comm="syz.1.1743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f4cabe6e969 code=0x7ffc0000
[  140.024778][   T29] audit: type=1326 audit(1746507664.562:2630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8593 comm="syz.1.1743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cabe6e969 code=0x7ffc0000
[  140.048248][   T29] audit: type=1326 audit(1746507664.562:2631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8593 comm="syz.1.1743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4cabe6e969 code=0x7ffc0000
[  140.086836][ T8617] loop2: detected capacity change from 0 to 128
[  140.102141][ T8617] netlink: 'syz.2.1751': attribute type 6 has an invalid length.
[  140.128849][ T8621] loop3: detected capacity change from 0 to 128
[  140.155514][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.180237][ T8624] netlink: 'syz.1.1754': attribute type 10 has an invalid length.
[  140.188325][ T8624] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1754'.
[  140.272605][ T8629] loop3: detected capacity change from 0 to 128
[  140.284595][ T8629] FAT-fs (loop3): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  140.403415][ T8643] xt_policy: too many policy elements
[  140.505367][ T8647] xt_time: invalid argument - start or stop time greater than 23:59:59
[  140.682138][ T8655] netlink: 'syz.0.1766': attribute type 10 has an invalid length.
[  140.690468][ T8655] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1766'.
[  140.980794][ T1724] bio_check_eod: 627 callbacks suppressed
[  140.980810][ T1724] kworker/u8:6: attempt to access beyond end of device
[  140.980810][ T1724] loop2: rw=1, sector=145, nr_sectors = 8 limit=128
[  141.000306][ T1724] kworker/u8:6: attempt to access beyond end of device
[  141.000306][ T1724] loop2: rw=1, sector=161, nr_sectors = 8 limit=128
[  141.013967][ T1724] kworker/u8:6: attempt to access beyond end of device
[  141.013967][ T1724] loop2: rw=1, sector=177, nr_sectors = 8 limit=128
[  141.041023][ T1724] kworker/u8:6: attempt to access beyond end of device
[  141.041023][ T1724] loop2: rw=1, sector=193, nr_sectors = 8 limit=128
[  141.066320][ T1724] kworker/u8:6: attempt to access beyond end of device
[  141.066320][ T1724] loop2: rw=1, sector=209, nr_sectors = 8 limit=128
[  141.080960][ T1724] kworker/u8:6: attempt to access beyond end of device
[  141.080960][ T1724] loop2: rw=1, sector=225, nr_sectors = 8 limit=128
[  141.095248][ T1724] kworker/u8:6: attempt to access beyond end of device
[  141.095248][ T1724] loop2: rw=1, sector=241, nr_sectors = 8 limit=128
[  141.108801][ T8629] syz.3.1756: attempt to access beyond end of device
[  141.108801][ T8629] loop3: rw=2049, sector=137, nr_sectors = 8 limit=128
[  141.109033][ T1724] kworker/u8:6: attempt to access beyond end of device
[  141.109033][ T1724] loop2: rw=1, sector=257, nr_sectors = 8 limit=128
[  141.123709][ T8629] syz.3.1756: attempt to access beyond end of device
[  141.123709][ T8629] loop3: rw=2049, sector=153, nr_sectors = 8 limit=128
[  141.160522][   T12] FAT-fs (loop3): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  141.236686][ T8678] xt_policy: too many policy elements
[  141.241980][ T8684] netlink: 'syz.0.1779': attribute type 10 has an invalid length.
[  141.251800][ T8684] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1779'.
[  141.307612][ T8690] loop0: detected capacity change from 0 to 512
[  141.324690][ T8693] loop1: detected capacity change from 0 to 128
[  141.331901][ T8690] EXT4-fs (loop0): orphan cleanup on readonly fs
[  141.344571][ T8690] EXT4-fs error (device loop0): ext4_orphan_get:1417: comm syz.0.1781: bad orphan inode 13
[  141.356565][ T8690] ext4_test_bit(bit=12, block=18) = 1
[  141.358636][ T8698] loop3: detected capacity change from 0 to 128
[  141.361951][ T8690] is_bad_inode(inode)=0
[  141.361959][ T8690] NEXT_ORPHAN(inode)=2130706432
[  141.361965][ T8690] max_ino=32
[  141.361970][ T8690] i_nlink=1
[  141.362492][ T8690] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  141.371528][ T8697] tc_dump_action: action bad kind
[  141.397833][ T8693] FAT-fs (loop1): Directory bread(block 162) failed
[  141.406745][ T8698] netlink: 'syz.3.1784': attribute type 6 has an invalid length.
[  141.408121][ T8690] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  141.417326][ T8693] FAT-fs (loop1): Directory bread(block 163) failed
[  141.432600][ T8693] FAT-fs (loop1): Directory bread(block 164) failed
[  141.440466][ T8693] FAT-fs (loop1): Directory bread(block 165) failed
[  141.440522][ T8690] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  141.472666][ T8693] FAT-fs (loop1): Directory bread(block 166) failed
[  141.479635][ T8693] FAT-fs (loop1): Directory bread(block 167) failed
[  141.486428][ T8693] FAT-fs (loop1): Directory bread(block 168) failed
[  141.507188][ T8693] FAT-fs (loop1): Directory bread(block 169) failed
[  141.517558][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.524471][ T8693] FAT-fs (loop1): Directory bread(block 162) failed
[  141.548604][ T8693] FAT-fs (loop1): Directory bread(block 163) failed
[  141.623493][ T8718] netlink: 'syz.2.1792': attribute type 10 has an invalid length.
[  141.632050][ T8718] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1792'.
[  141.675579][ T8722] loop1: detected capacity change from 0 to 256
[  141.685860][ T8711] loop0: detected capacity change from 0 to 128
[  141.745111][ T8711] FAT-fs (loop0): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  141.890669][ T8736] loop1: detected capacity change from 0 to 128
[  141.977509][ T8736] FAT-fs (loop1): Directory bread(block 162) failed
[  141.984801][ T8736] FAT-fs (loop1): Directory bread(block 163) failed
[  141.995248][ T8736] FAT-fs (loop1): Directory bread(block 164) failed
[  142.002235][ T8736] FAT-fs (loop1): Directory bread(block 165) failed
[  142.009423][ T8736] FAT-fs (loop1): Directory bread(block 166) failed
[  142.016599][ T8736] FAT-fs (loop1): Directory bread(block 167) failed
[  142.023416][ T8736] FAT-fs (loop1): Directory bread(block 168) failed
[  142.030601][ T8736] FAT-fs (loop1): Directory bread(block 169) failed
[  142.038304][ T8736] FAT-fs (loop1): Directory bread(block 162) failed
[  142.056401][ T8736] FAT-fs (loop1): Directory bread(block 163) failed
[  142.172213][ T8750] netlink: 'syz.4.1807': attribute type 10 has an invalid length.
[  142.180530][ T8750] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1807'.
[  142.191032][ T8748] loop1: detected capacity change from 0 to 256
[  142.254858][ T8752] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1809'.
[  142.263886][ T8752] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1809'.
[  142.415414][ T8770] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[  142.421978][ T8770] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  142.429364][ T8774] loop4: detected capacity change from 0 to 512
[  142.435675][ T8770] vhci_hcd vhci_hcd.0: Device attached
[  142.446815][ T8774] EXT4-fs (loop4): orphan cleanup on readonly fs
[  142.455375][ T8774] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.1816: bad orphan inode 13
[  142.488426][ T8774] ext4_test_bit(bit=12, block=18) = 1
[  142.489848][ T8771] vhci_hcd: connection closed
[  142.493892][ T8774] is_bad_inode(inode)=0
[  142.502934][ T8774] NEXT_ORPHAN(inode)=2130706432
[  142.504740][ T3405] vhci_hcd: stop threads
[  142.507795][ T8774] max_ino=32
[  142.512006][ T3405] vhci_hcd: release socket
[  142.515220][ T8774] i_nlink=1
[  142.515678][ T8774] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  142.519664][ T3405] vhci_hcd: disconnect device
[  142.536136][ T1724] FAT-fs (loop0): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  142.550763][ T8774] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  142.564770][ T8774] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  142.578271][ T8785] netlink: 'syz.0.1819': attribute type 10 has an invalid length.
[  142.629041][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.691511][ T8796] loop4: detected capacity change from 0 to 256
[  142.880393][ T8810] loop3: detected capacity change from 0 to 128
[  142.891154][ T8810] FAT-fs (loop3): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  142.903182][ T8814] netlink: 'syz.2.1832': attribute type 10 has an invalid length.
[  142.948620][ T8816] loop2: detected capacity change from 0 to 512
[  142.959289][ T8816] EXT4-fs (loop2): orphan cleanup on readonly fs
[  142.972518][ T8816] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.1833: bad orphan inode 13
[  142.985585][ T8816] ext4_test_bit(bit=12, block=18) = 1
[  142.991243][ T8816] is_bad_inode(inode)=0
[  142.995471][ T8816] NEXT_ORPHAN(inode)=2130706432
[  143.000310][ T8816] max_ino=32
[  143.003634][ T8816] i_nlink=1
[  143.007382][ T8816] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  143.020883][ T8816] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  143.036239][ T8816] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  143.071333][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.090780][ T8824] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[  143.097381][ T8824] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  143.104947][ T8824] vhci_hcd vhci_hcd.0: Device attached
[  143.124653][ T8825] vhci_hcd: connection closed
[  143.125092][   T41] vhci_hcd: stop threads
[  143.134037][   T41] vhci_hcd: release socket
[  143.138483][   T41] vhci_hcd: disconnect device
[  143.161685][ T8830] xt_policy: too many policy elements
[  143.197337][ T8832] loop2: detected capacity change from 0 to 128
[  143.444655][ T8845] xt_CT: No such helper "pptp"
[  143.480154][ T8845] loop2: detected capacity change from 0 to 2048
[  143.498320][ T8850] rdma_rxe: rxe_newlink: failed to add bond0
[  143.507718][ T8850] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  143.517209][ T8850] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  143.527136][ T8845] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.581455][ T8857] xt_policy: too many policy elements
[  143.641598][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.688657][ T8865] __nla_validate_parse: 20 callbacks suppressed
[  143.688671][ T8865] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1850'.
[  143.704065][ T8865] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1850'.
[  143.711750][ T8866] loop1: detected capacity change from 0 to 128
[  143.724454][ T8865] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1850'.
[  143.737784][ T8868] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1854'.
[  143.768640][   T41] FAT-fs (loop3): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  143.781584][ T8865] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1850'.
[  143.790500][ T8865] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1850'.
[  143.849015][ T8865] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1850'.
[  143.889449][ T8865] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1850'.
[  143.898397][ T8865] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1850'.
[  143.917116][ T8865] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1850'.
[  143.920745][ T8883] loop4: detected capacity change from 0 to 128
[  143.932357][ T8881] loop3: detected capacity change from 0 to 256
[  143.977455][ T8885] random: crng reseeded on system resumption
[  144.047401][ T8887] loop2: detected capacity change from 0 to 1024
[  144.075765][ T8887] __quota_error: 84 callbacks suppressed
[  144.075789][ T8887] Quota error (device loop2): do_check_range: Getting block 64 out of range 1-5
[  144.090605][ T8887] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  144.091238][ T8890] xt_CT: No such helper "pptp"
[  144.099982][ T8887] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.1860: Failed to acquire dquot type 0
[  144.102480][ T8887] EXT4-fs error (device loop2): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  144.119017][ T8890] loop0: detected capacity change from 0 to 2048
[  144.133357][ T8887] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #13: comm syz.2.1860: corrupted inode contents
[  144.149335][ T8887] EXT4-fs error (device loop2): ext4_dirty_inode:6103: inode #13: comm syz.2.1860: mark_inode_dirty error
[  144.161451][ T8887] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #13: comm syz.2.1860: corrupted inode contents
[  144.175488][ T8887] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #13: comm syz.2.1860: mark_inode_dirty error
[  144.188794][ T8890] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.202182][ T8887] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #13: comm syz.2.1860: corrupted inode contents
[  144.245641][ T8887] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  144.255665][ T8887] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #13: comm syz.2.1860: corrupted inode contents
[  144.268623][ T8887] EXT4-fs error (device loop2): ext4_truncate:4255: inode #13: comm syz.2.1860: mark_inode_dirty error
[  144.284128][ T8887] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  144.293921][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.323092][ T8887] EXT4-fs (loop2): 1 truncate cleaned up
[  144.337152][ T8887] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.360254][ T8898] xt_policy: too many policy elements
[  144.594430][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.645980][ T8914] loop2: detected capacity change from 0 to 128
[  144.667417][ T8914] validate_nla: 5 callbacks suppressed
[  144.667432][ T8914] netlink: 'syz.2.1869': attribute type 6 has an invalid length.
[  144.722251][ T8921] loop1: detected capacity change from 0 to 128
[  144.745138][ T8921] FAT-fs (loop1): Directory bread(block 162) failed
[  144.752021][ T8921] FAT-fs (loop1): Directory bread(block 163) failed
[  144.767532][ T8921] FAT-fs (loop1): Directory bread(block 164) failed
[  144.779879][ T8924] loop3: detected capacity change from 0 to 512
[  144.788901][ T8921] FAT-fs (loop1): Directory bread(block 165) failed
[  144.840501][ T8921] FAT-fs (loop1): Directory bread(block 166) failed
[  144.847639][ T8921] FAT-fs (loop1): Directory bread(block 167) failed
[  144.855878][ T8921] FAT-fs (loop1): Directory bread(block 168) failed
[  144.862534][ T8921] FAT-fs (loop1): Directory bread(block 169) failed
[  144.870809][ T8921] FAT-fs (loop1): Directory bread(block 162) failed
[  144.879445][ T8921] FAT-fs (loop1): Directory bread(block 163) failed
[  144.894925][ T8924] EXT4-fs (loop3): orphan cleanup on readonly fs
[  144.903697][ T8924] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.1875: bad orphan inode 13
[  144.917144][ T8924] ext4_test_bit(bit=12, block=18) = 1
[  144.922852][ T8924] is_bad_inode(inode)=0
[  144.927055][ T8924] NEXT_ORPHAN(inode)=2130706432
[  144.931906][ T8924] max_ino=32
[  144.935136][ T8924] i_nlink=1
[  144.942524][ T8931] loop0: detected capacity change from 0 to 128
[  144.945044][ T8924] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  144.969201][ T8924] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  144.999303][ T8931] netlink: 'syz.0.1879': attribute type 6 has an invalid length.
[  145.007859][ T8937] netlink: 'syz.4.1880': attribute type 32 has an invalid length.
[  145.016635][ T8937] random: crng reseeded on system resumption
[  145.086952][ T8942] loop4: detected capacity change from 0 to 1024
[  145.114740][ T8924] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  145.140412][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.152744][ T8942] Quota error (device loop4): do_check_range: Getting block 64 out of range 1-5
[  145.161830][ T8942] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  145.171251][ T8942] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.1880: Failed to acquire dquot type 0
[  145.214084][ T8942] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  145.260134][ T8951] loop3: detected capacity change from 0 to 128
[  145.260972][ T8942] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.1880: corrupted inode contents
[  145.279405][ T8942] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #13: comm syz.4.1880: mark_inode_dirty error
[  145.293851][ T8942] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.1880: corrupted inode contents
[  145.306252][ T8942] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #13: comm syz.4.1880: mark_inode_dirty error
[  145.319881][ T8942] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.1880: corrupted inode contents
[  145.332126][ T8942] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  145.342047][ T8942] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.1880: corrupted inode contents
[  145.375308][ T8942] EXT4-fs error (device loop4): ext4_truncate:4255: inode #13: comm syz.4.1880: mark_inode_dirty error
[  145.390262][ T8942] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  145.412098][ T8942] EXT4-fs (loop4): 1 truncate cleaned up
[  145.467240][ T8960] loop3: detected capacity change from 0 to 128
[  145.499830][ T8960] FAT-fs (loop3): Directory bread(block 162) failed
[  145.531876][ T8960] FAT-fs (loop3): Directory bread(block 163) failed
[  145.550298][ T8960] FAT-fs (loop3): Directory bread(block 164) failed
[  145.564263][ T8960] FAT-fs (loop3): Directory bread(block 165) failed
[  145.571030][ T8960] FAT-fs (loop3): Directory bread(block 166) failed
[  145.594350][ T8960] FAT-fs (loop3): Directory bread(block 167) failed
[  145.609647][ T8960] FAT-fs (loop3): Directory bread(block 168) failed
[  145.624353][ T8967] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  145.630923][ T8967] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  145.638443][ T8967] vhci_hcd vhci_hcd.0: Device attached
[  145.646312][ T8960] FAT-fs (loop3): Directory bread(block 169) failed
[  145.665061][ T8960] FAT-fs (loop3): Directory bread(block 162) failed
[  145.671757][ T8960] FAT-fs (loop3): Directory bread(block 163) failed
[  145.679922][ T8968] vhci_hcd: connection closed
[  145.685405][ T3405] vhci_hcd: stop threads
[  145.694469][ T3405] vhci_hcd: release socket
[  145.698884][ T3405] vhci_hcd: disconnect device
[  145.858436][ T8982] loop0: detected capacity change from 0 to 128
[  145.921183][ T8987] loop1: detected capacity change from 0 to 512
[  145.933186][ T8987] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  145.942298][ T8987] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  145.953269][ T8977] loop4: detected capacity change from 0 to 512
[  145.957001][ T8987] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  145.979430][ T8990] loop3: detected capacity change from 0 to 128
[  145.981781][ T8987] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  145.994034][ T8987] System zones: 0-2, 18-18, 34-34
[  146.004937][ T8987] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  146.006383][ T8990] netlink: 'syz.3.1902': attribute type 6 has an invalid length.
[  146.029139][ T8977] ext4 filesystem being mounted at /381/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  146.037813][ T8987] EXT4-fs (loop1): 1 truncate cleaned up
[  146.222052][ T9003] loop1: detected capacity change from 0 to 256
[  146.341209][ T9012] xt_CT: No such helper "pptp"
[  146.350259][ T9015] loop4: detected capacity change from 0 to 512
[  146.358653][ T9015] EXT4-fs: Ignoring removed mblk_io_submit option
[  146.378082][ T9012] loop1: detected capacity change from 0 to 2048
[  146.386376][ T9015] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  146.812945][   T12] bio_check_eod: 780 callbacks suppressed
[  146.812959][   T12] kworker/u8:0: attempt to access beyond end of device
[  146.812959][   T12] loop3: rw=1, sector=153, nr_sectors = 8 limit=128
[  146.835852][   T12] kworker/u8:0: attempt to access beyond end of device
[  146.835852][   T12] loop3: rw=1, sector=169, nr_sectors = 8 limit=128
[  146.849869][   T12] kworker/u8:0: attempt to access beyond end of device
[  146.849869][   T12] loop3: rw=1, sector=185, nr_sectors = 8 limit=128
[  146.866693][   T12] kworker/u8:0: attempt to access beyond end of device
[  146.866693][   T12] loop3: rw=1, sector=201, nr_sectors = 8 limit=128
[  146.882813][ T9042] loop0: detected capacity change from 0 to 512
[  146.899930][ T9042] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  146.901101][   T12] kworker/u8:0: attempt to access beyond end of device
[  146.901101][   T12] loop3: rw=1, sector=217, nr_sectors = 8 limit=128
[  146.909070][ T9042] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  146.922786][   T12] kworker/u8:0: attempt to access beyond end of device
[  146.922786][   T12] loop3: rw=1, sector=233, nr_sectors = 8 limit=128
[  146.958504][   T12] kworker/u8:0: attempt to access beyond end of device
[  146.958504][   T12] loop3: rw=1, sector=249, nr_sectors = 8 limit=128
[  146.977817][   T12] kworker/u8:0: attempt to access beyond end of device
[  146.977817][   T12] loop3: rw=1, sector=265, nr_sectors = 8 limit=128
[  146.992994][ T9042] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended
[  147.002412][   T12] kworker/u8:0: attempt to access beyond end of device
[  147.002412][   T12] loop3: rw=1, sector=281, nr_sectors = 8 limit=128
[  147.024788][ T9042] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  147.033172][   T12] kworker/u8:0: attempt to access beyond end of device
[  147.033172][   T12] loop3: rw=1, sector=297, nr_sectors = 8 limit=128
[  147.046889][ T9042] System zones: 0-2, 18-18, 34-34
[  147.052624][ T9042] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  147.077635][ T9042] EXT4-fs (loop0): 1 truncate cleaned up
[  147.110159][ T9055] loop3: detected capacity change from 0 to 128
[  147.349693][ T9083] loop4: detected capacity change from 0 to 512
[  147.358364][ T9083] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  147.367453][ T9083] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  147.381193][ T9073] loop1: detected capacity change from 0 to 512
[  147.399254][ T9083] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  147.412659][ T9083] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  147.421980][ T9083] System zones: 0-2, 18-18, 34-34
[  147.427711][ T9083] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  147.444810][ T9083] EXT4-fs (loop4): 1 truncate cleaned up
[  147.456009][ T9073] ext4 filesystem being mounted at /398/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  147.613356][ T9098] xt_policy: too many policy elements
[  147.963366][ T9114] loop1: detected capacity change from 0 to 512
[  147.973546][ T9114] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  147.982715][ T9114] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  148.002454][ T9114] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  148.011795][ T9114] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  148.021844][ T9114] System zones: 0-2, 18-18, 34-34
[  148.027612][ T9114] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  148.043128][ T9114] EXT4-fs (loop1): 1 truncate cleaned up
[  148.117324][ T9125] xt_policy: too many policy elements
[  148.142059][ T9127] loop1: detected capacity change from 0 to 256
[  148.153421][ T9129] xt_CT: No such helper "pptp"
[  148.186106][ T9129] loop0: detected capacity change from 0 to 2048
[  148.194280][ T9123] loop2: detected capacity change from 0 to 512
[  148.227651][ T9123] ext4 filesystem being mounted at /431/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  148.396410][ T9156] loop0: detected capacity change from 0 to 512
[  148.403416][ T9156] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  148.412538][ T9156] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  148.422666][ T9156] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended
[  148.441914][ T9161] rdma_rxe: rxe_newlink: failed to add bond0
[  148.450319][ T9161] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  148.455875][ T9156] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  148.459638][ T9161] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  148.477768][ T9156] System zones: 0-2, 18-18, 34-34
[  148.497643][ T9156] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  148.498473][ T9164] xt_policy: too many policy elements
[  148.514066][ T9156] EXT4-fs (loop0): 1 truncate cleaned up
[  148.519413][ T9166] sch_tbf: peakrate 4 is lower than or equals to rate 8 !
[  148.653474][ T9179] xt_CT: No such helper "pptp"
[  148.674967][ T9179] loop0: detected capacity change from 0 to 2048
[  148.786420][ T9194] xt_policy: too many policy elements
[  148.819404][ T9198] loop3: detected capacity change from 0 to 512
[  148.826425][ T9198] EXT4-fs: Ignoring removed mblk_io_submit option
[  148.833244][ T9198] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  148.930401][ T9204] 8021q: adding VLAN 0 to HW filter on device batadv2
[  148.937842][ T9204] batadv2: entered promiscuous mode
[  148.943395][ T9204] team0: Port device batadv2 added
[  149.088737][ T9215] loop1: detected capacity change from 0 to 128
[  149.111001][ T9221] xt_CT: No such helper "pptp"
[  149.113771][ T9215] FAT-fs (loop1): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  149.130049][ T9221] loop2: detected capacity change from 0 to 2048
[  149.232650][ T9229] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  149.239242][ T9229] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  149.246714][ T9229] vhci_hcd vhci_hcd.0: Device attached
[  149.252839][ T9230] vhci_hcd: connection closed
[  149.254272][   T51] vhci_hcd: stop threads
[  149.263344][   T51] vhci_hcd: release socket
[  149.267795][   T51] vhci_hcd: disconnect device
[  149.331197][ T9238] 8021q: adding VLAN 0 to HW filter on device batadv2
[  149.345604][ T9238] team0: Port device batadv2 added
[  149.447065][ T9246] rdma_rxe: rxe_newlink: failed to add bond0
[  149.453992][ T9246] __nla_validate_parse: 1 callbacks suppressed
[  149.454004][ T9246] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2004'.
[  149.470781][ T9246] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  149.480850][ T9246] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  149.816232][ T9256] loop0: detected capacity change from 0 to 512
[  149.822807][  T152] FAT-fs (loop1): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  149.832796][ T9256] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  149.842028][ T9256] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  149.857023][ T9256] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended
[  149.866163][ T9256] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  149.874664][ T9256] System zones: 0-2, 18-18, 34-34
[  149.879943][ T9252] loop3: detected capacity change from 0 to 512
[  149.887408][ T9256] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  149.902342][ T9256] EXT4-fs (loop0): 1 truncate cleaned up
[  149.916277][ T9252] ext4 filesystem being mounted at /371/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.009769][ T9269] 8021q: adding VLAN 0 to HW filter on device batadv1
[  150.017818][ T9269] team0: Port device batadv1 added
[  150.046388][ T9271] netlink: 'syz.0.2013': attribute type 10 has an invalid length.
[  150.054865][ T9271] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2013'.
[  150.123753][ T9284] loop3: detected capacity change from 0 to 128
[  150.137761][ T9288] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  150.144313][ T9288] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  150.151756][ T9288] vhci_hcd vhci_hcd.0: Device attached
[  150.204897][ T9295] xt_CT: No such helper "pptp"
[  150.209724][ T9289] vhci_hcd: connection closed
[  150.211006][ T9299] loop3: detected capacity change from 0 to 256
[  150.211601][ T3405] vhci_hcd: stop threads
[  150.226365][ T3405] vhci_hcd: release socket
[  150.230778][ T3405] vhci_hcd: disconnect device
[  150.258815][ T9295] loop2: detected capacity change from 0 to 2048
[  150.345377][ T9317] loop1: detected capacity change from 0 to 128
[  150.351782][ T9315] loop4: detected capacity change from 0 to 128
[  150.355174][ T9317] netlink: 'syz.1.2033': attribute type 6 has an invalid length.
[  150.386036][ T9315] netlink: 'syz.4.2031': attribute type 6 has an invalid length.
[  150.398874][ T9307] loop3: detected capacity change from 0 to 512
[  150.419213][ T9307] ext4 filesystem being mounted at /375/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.655504][ T9334] loop4: detected capacity change from 0 to 128
[  150.698359][ T9337] xt_policy: too many policy elements
[  150.861890][ T9352] loop3: detected capacity change from 0 to 128
[  151.008247][ T9355] loop3: detected capacity change from 0 to 512
[  151.026206][ T9355] ext4 filesystem being mounted at /381/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  151.067711][ T9368] xt_policy: too many policy elements
[  151.133221][ T9370] xt_CT: No such helper "pptp"
[  151.169949][ T9370] loop2: detected capacity change from 0 to 2048
[  151.193185][ T9375] loop0: detected capacity change from 0 to 128
[  151.209664][ T9375] netlink: 'syz.0.2054': attribute type 6 has an invalid length.
[  151.361154][ T9386] loop3: detected capacity change from 0 to 128
[  151.423576][ T9392] loop1: detected capacity change from 0 to 128
[  151.438484][ T9392] netlink: 'syz.1.2059': attribute type 6 has an invalid length.
[  151.580653][ T9398] loop4: detected capacity change from 0 to 128
[  151.601610][ T9398] FAT-fs (loop4): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  151.802056][ T9420] xt_policy: too many policy elements
[  151.852259][ T9423] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2074'.
[  151.861334][ T9423] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2074'.
[  151.877621][ T9423] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2074'.
[  151.899033][ T9423] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2074'.
[  151.908016][ T9423] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2074'.
[  151.917263][ T9423] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2074'.
[  151.944232][ T9423] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2074'.
[  151.953141][ T9423] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2074'.
[  152.194157][ T9457] loop0: detected capacity change from 0 to 512
[  152.209028][ T9457] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  152.218157][ T9457] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  152.260799][ T9465] netlink: 'syz.2.2092': attribute type 10 has an invalid length.
[  152.275262][ T9457] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended
[  152.299920][ T9457] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  152.320285][ T9457] System zones: 0-2, 18-18, 34-34
[  152.339428][ T9457] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  152.369140][ T9457] EXT4-fs (loop0): 1 truncate cleaned up
[  152.404709][ T9398] bio_check_eod: 610 callbacks suppressed
[  152.404726][ T9398] syz.4.2063: attempt to access beyond end of device
[  152.404726][ T9398] loop4: rw=2049, sector=129, nr_sectors = 8 limit=128
[  152.424409][ T9398] syz.4.2063: attempt to access beyond end of device
[  152.424409][ T9398] loop4: rw=2049, sector=145, nr_sectors = 8 limit=128
[  152.443175][ T9398] syz.4.2063: attempt to access beyond end of device
[  152.443175][ T9398] loop4: rw=2049, sector=161, nr_sectors = 8 limit=128
[  152.478373][ T9398] syz.4.2063: attempt to access beyond end of device
[  152.478373][ T9398] loop4: rw=2049, sector=177, nr_sectors = 16 limit=128
[  152.493167][ T9398] syz.4.2063: attempt to access beyond end of device
[  152.493167][ T9398] loop4: rw=2049, sector=201, nr_sectors = 8 limit=128
[  152.537311][ T9489] netlink: 'syz.2.2105': attribute type 10 has an invalid length.
[  152.543572][ T9398] syz.4.2063: attempt to access beyond end of device
[  152.543572][ T9398] loop4: rw=2049, sector=217, nr_sectors = 8 limit=128
[  152.580054][ T9494] xt_CT: No such helper "pptp"
[  152.585763][ T9398] syz.4.2063: attempt to access beyond end of device
[  152.585763][ T9398] loop4: rw=2049, sector=233, nr_sectors = 8 limit=128
[  152.617452][ T9494] loop0: detected capacity change from 0 to 2048
[  152.625839][ T9398] syz.4.2063: attempt to access beyond end of device
[  152.625839][ T9398] loop4: rw=2049, sector=249, nr_sectors = 8 limit=128
[  152.639322][ T9398] syz.4.2063: attempt to access beyond end of device
[  152.639322][ T9398] loop4: rw=2049, sector=265, nr_sectors = 8 limit=128
[  152.653071][ T9398] syz.4.2063: attempt to access beyond end of device
[  152.653071][ T9398] loop4: rw=2049, sector=281, nr_sectors = 8 limit=128
[  152.697036][  T152] FAT-fs (loop4): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  152.697247][ T9503] loop2: detected capacity change from 0 to 512
[  152.713300][ T9503] EXT4-fs: Ignoring removed mblk_io_submit option
[  152.720352][ T9503] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  152.898332][ T9524] netlink: 'syz.0.2115': attribute type 32 has an invalid length.
[  152.909636][   T29] audit: type=1326 audit(1746507677.522:2716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9522 comm="syz.0.2115" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd94430e969 code=0x0
[  152.943137][ T9528] loop3: detected capacity change from 0 to 128
[  152.955749][ T9528] FAT-fs (loop3): Directory bread(block 162) failed
[  152.962396][ T9528] FAT-fs (loop3): Directory bread(block 163) failed
[  152.967022][ T9530] loop4: detected capacity change from 0 to 128
[  152.976482][ T9528] FAT-fs (loop3): Directory bread(block 164) failed
[  152.980634][ T9530] netlink: 'syz.4.2119': attribute type 6 has an invalid length.
[  152.990951][ T9531] loop0: detected capacity change from 0 to 1024
[  152.991477][ T9528] FAT-fs (loop3): Directory bread(block 165) failed
[  153.004019][ T9528] FAT-fs (loop3): Directory bread(block 166) failed
[  153.012023][ T9528] FAT-fs (loop3): Directory bread(block 167) failed
[  153.018926][ T9528] FAT-fs (loop3): Directory bread(block 168) failed
[  153.026205][ T9528] FAT-fs (loop3): Directory bread(block 169) failed
[  153.036600][ T9531] Quota error (device loop0): do_check_range: Getting block 64 out of range 1-5
[  153.037014][ T9535] loop1: detected capacity change from 0 to 128
[  153.045689][ T9531] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[  153.045710][ T9531] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.2115: Failed to acquire dquot type 0
[  153.081098][ T9531] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  153.096845][ T9537] loop3: detected capacity change from 0 to 128
[  153.150100][ T9531] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #13: comm syz.0.2115: corrupted inode contents
[  153.180102][ T9535] netlink: 'syz.1.2120': attribute type 6 has an invalid length.
[  153.190313][ T9531] EXT4-fs error (device loop0): ext4_dirty_inode:6103: inode #13: comm syz.0.2115: mark_inode_dirty error
[  153.232374][ T9531] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #13: comm syz.0.2115: corrupted inode contents
[  153.244437][ T9540] loop4: detected capacity change from 0 to 256
[  153.259263][ T9531] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #13: comm syz.0.2115: mark_inode_dirty error
[  153.280940][ T9531] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #13: comm syz.0.2115: corrupted inode contents
[  153.304393][ T9531] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  153.317284][ T9543] xt_CT: No such helper "pptp"
[  153.330121][ T9531] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #13: comm syz.0.2115: corrupted inode contents
[  153.353482][ T9543] loop4: detected capacity change from 0 to 2048
[  153.359990][ T9531] EXT4-fs error (device loop0): ext4_truncate:4255: inode #13: comm syz.0.2115: mark_inode_dirty error
[  153.376896][ T9531] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  153.394804][ T9531] EXT4-fs (loop0): 1 truncate cleaned up
[  153.676691][ T9567] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  153.683272][ T9567] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  153.690916][ T9567] vhci_hcd vhci_hcd.0: Device attached
[  153.697763][ T9568] vhci_hcd: connection closed
[  153.698896][  T152] vhci_hcd: stop threads
[  153.707968][  T152] vhci_hcd: release socket
[  153.712585][  T152] vhci_hcd: disconnect device
[  153.742430][ T9571] xt_CT: No such helper "pptp"
[  153.761931][ T9571] loop4: detected capacity change from 0 to 2048
[  153.947156][ T9583] loop1: detected capacity change from 0 to 128
[  153.954344][ T9583] FAT-fs (loop1): Directory bread(block 162) failed
[  153.960965][ T9583] FAT-fs (loop1): Directory bread(block 163) failed
[  153.970544][ T9576] loop4: detected capacity change from 0 to 512
[  153.974307][ T9583] FAT-fs (loop1): Directory bread(block 164) failed
[  153.994971][ T9583] FAT-fs (loop1): Directory bread(block 165) failed
[  154.002499][ T9583] FAT-fs (loop1): Directory bread(block 166) failed
[  154.011356][ T9583] FAT-fs (loop1): Directory bread(block 167) failed
[  154.012306][ T9576] ext4 filesystem being mounted at /422/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  154.018171][ T9583] FAT-fs (loop1): Directory bread(block 168) failed
[  154.035591][ T9583] FAT-fs (loop1): Directory bread(block 169) failed
[  154.113165][ T9595] xt_policy: too many policy elements
[  154.120321][   T29] audit: type=1326 audit(1746507678.732:2717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9575 comm="syz.4.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a38a6e969 code=0x7ffc0000
[  154.143792][   T29] audit: type=1326 audit(1746507678.732:2718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9575 comm="syz.4.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a38a6e969 code=0x7ffc0000
[  154.167199][   T29] audit: type=1326 audit(1746507678.732:2719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9575 comm="syz.4.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f0a38a6e969 code=0x7ffc0000
[  154.190592][   T29] audit: type=1326 audit(1746507678.732:2720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9575 comm="syz.4.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a38a6e969 code=0x7ffc0000
[  154.213991][   T29] audit: type=1326 audit(1746507678.732:2721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9575 comm="syz.4.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f0a38a6e969 code=0x7ffc0000
[  154.237494][   T29] audit: type=1326 audit(1746507678.732:2722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9575 comm="syz.4.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a38a6e969 code=0x7ffc0000
[  154.260888][   T29] audit: type=1326 audit(1746507678.732:2723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9575 comm="syz.4.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0a38a6e969 code=0x7ffc0000
[  154.370249][ T9604] xt_CT: No such helper "pptp"
[  154.400945][ T9613] loop2: detected capacity change from 0 to 2048
[  154.475940][ T9617] loop0: detected capacity change from 0 to 128
[  154.492658][ T9627] random: crng reseeded on system resumption
[  154.505627][ T9617] FAT-fs (loop0): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  154.573308][ T9632] __nla_validate_parse: 13 callbacks suppressed
[  154.573417][ T9632] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2158'.
[  154.633843][ T9627] loop1: detected capacity change from 0 to 1024
[  154.657992][ T9627] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.2155: Failed to acquire dquot type 0
[  154.725967][ T9627] EXT4-fs error (device loop1): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  154.768121][ T9646] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  154.774778][ T9646] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  154.782359][ T9646] vhci_hcd vhci_hcd.0: Device attached
[  154.830057][ T9627] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #13: comm syz.1.2155: corrupted inode contents
[  154.848286][ T9647] vhci_hcd: connection closed
[  154.848647][   T51] vhci_hcd: stop threads
[  154.857777][   T51] vhci_hcd: release socket
[  154.862348][   T51] vhci_hcd: disconnect device
[  154.887200][ T9627] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #13: comm syz.1.2155: mark_inode_dirty error
[  154.898768][ T9627] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #13: comm syz.1.2155: corrupted inode contents
[  154.911587][ T9627] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #13: comm syz.1.2155: mark_inode_dirty error
[  154.922480][ T9657] xt_CT: No such helper "pptp"
[  154.931182][ T9627] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #13: comm syz.1.2155: corrupted inode contents
[  154.963705][ T9657] loop3: detected capacity change from 0 to 2048
[  154.971954][ T9627] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  154.982221][ T9627] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #13: comm syz.1.2155: corrupted inode contents
[  154.986398][ T9660] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2169'.
[  154.995739][ T9627] EXT4-fs error (device loop1): ext4_truncate:4255: inode #13: comm syz.1.2155: mark_inode_dirty error
[  155.038315][ T9627] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  155.047736][ T9627] EXT4-fs (loop1): 1 truncate cleaned up
[  155.107806][ T9666] loop3: detected capacity change from 0 to 128
[  155.126366][ T9666] validate_nla: 4 callbacks suppressed
[  155.126386][ T9666] netlink: 'syz.3.2171': attribute type 6 has an invalid length.
[  155.309614][   T51] FAT-fs (loop0): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  155.360237][ T9679] xt_CT: No such helper "pptp"
[  155.380535][ T9682] rdma_rxe: rxe_newlink: failed to add bond0
[  155.388180][ T9682] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2178'.
[  155.398504][ T9682] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  155.407543][ T9682] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  155.422834][ T9679] loop1: detected capacity change from 0 to 2048
[  155.575628][ T9688] loop1: detected capacity change from 0 to 128
[  155.669586][ T9694] xt_CT: No such helper "pptp"
[  155.688818][ T9694] loop1: detected capacity change from 0 to 2048
[  155.859778][ T9705] loop1: detected capacity change from 0 to 128
[  155.874057][ T9705] netlink: 'syz.1.2186': attribute type 6 has an invalid length.
[  156.064464][ T9719] 8021q: adding VLAN 0 to HW filter on device batadv4
[  156.082821][ T9719] team0: Port device batadv4 added
[  156.107847][ T9723] loop3: detected capacity change from 0 to 512
[  156.135455][ T9724] loop2: detected capacity change from 0 to 256
[  156.143231][ T9723] ext4 filesystem being mounted at /417/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.237646][ T9737] netlink: 'syz.0.2199': attribute type 10 has an invalid length.
[  156.245739][ T9737] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2199'.
[  156.328063][ T9733] loop2: detected capacity change from 0 to 512
[  156.345990][ T9749] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  156.352522][ T9749] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  156.360155][ T9749] vhci_hcd vhci_hcd.0: Device attached
[  156.376044][ T9756] loop3: detected capacity change from 0 to 128
[  156.392854][ T9733] ext4 filesystem being mounted at /472/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.403515][ T9750] vhci_hcd: connection closed
[  156.406228][   T51] vhci_hcd: stop threads
[  156.415322][   T51] vhci_hcd: release socket
[  156.419748][   T51] vhci_hcd: disconnect device
[  156.435727][ T9756] netlink: 'syz.3.2206': attribute type 6 has an invalid length.
[  156.651617][ T3307] EXT4-fs unmount: 63 callbacks suppressed
[  156.651631][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.787388][ T9778] netlink: 'syz.1.2215': attribute type 10 has an invalid length.
[  156.795691][ T9778] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2215'.
[  156.855218][ T9783] loop1: detected capacity change from 0 to 128
[  156.867728][ T9776] loop4: detected capacity change from 0 to 512
[  156.913770][ T9776] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  156.934997][ T9776] ext4 filesystem being mounted at /446/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.061532][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.097501][ T9795] xt_policy: too many policy elements
[  157.182042][ T9799] loop0: detected capacity change from 0 to 512
[  157.189105][ T9799] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  157.200621][ T9799] EXT4-fs (loop0): 1 truncate cleaned up
[  157.219252][ T9799] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  157.377505][ T9807] xt_CT: No such helper "pptp"
[  157.419418][ T9807] loop3: detected capacity change from 0 to 2048
[  157.437321][ T9807] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  157.559396][ T9803] ==================================================================
[  157.567530][ T9803] BUG: KCSAN: data-race in __writeback_single_inode / xas_set_mark
[  157.575452][ T9803] 
[  157.577773][ T9803] write to 0xffff888106794714 of 4 bytes by task 9799 on cpu 0:
[  157.585407][ T9803]  xas_set_mark+0x12b/0x140
[  157.589918][ T9803]  __folio_start_writeback+0x1dd/0x430
[  157.595395][ T9803]  ext4_bio_write_folio+0x590/0x9d0
[  157.600607][ T9803]  mpage_process_page_bufs+0x46c/0x5b0
[  157.606175][ T9803]  mpage_prepare_extent_to_map+0x775/0xb80
[  157.612007][ T9803]  ext4_do_writepages+0xa25/0x2270
[  157.617129][ T9803]  ext4_writepages+0x176/0x300
[  157.621923][ T9803]  do_writepages+0x1d2/0x480
[  157.626552][ T9803]  file_write_and_wait_range+0x156/0x2c0
[  157.632187][ T9803]  generic_buffers_fsync_noflush+0x45/0x120
[  157.638099][ T9803]  ext4_sync_file+0x1ab/0x690
[  157.642795][ T9803]  vfs_fsync_range+0x10a/0x130
[  157.647571][ T9803]  ext4_buffered_write_iter+0x34f/0x3c0
[  157.653126][ T9803]  ext4_file_write_iter+0x383/0xf00
[  157.658343][ T9803]  iter_file_splice_write+0x5ef/0x970
[  157.663724][ T9803]  direct_splice_actor+0x153/0x2a0
[  157.668859][ T9803]  splice_direct_to_actor+0x30f/0x680
[  157.674252][ T9803]  do_splice_direct+0xda/0x150
[  157.679029][ T9803]  do_sendfile+0x380/0x640
[  157.683457][ T9803]  __x64_sys_sendfile64+0x105/0x150
[  157.688669][ T9803]  x64_sys_call+0xb39/0x2fb0
[  157.693281][ T9803]  do_syscall_64+0xd0/0x1a0
[  157.697800][ T9803]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.703702][ T9803] 
[  157.706024][ T9803] read to 0xffff888106794714 of 4 bytes by task 9803 on cpu 1:
[  157.713570][ T9803]  __writeback_single_inode+0x1f9/0x7c0
[  157.719142][ T9803]  writeback_single_inode+0x167/0x3e0
[  157.724616][ T9803]  sync_inode_metadata+0x5b/0x90
[  157.729575][ T9803]  generic_buffers_fsync_noflush+0xd9/0x120
[  157.735481][ T9803]  ext4_sync_file+0x1ab/0x690
[  157.740180][ T9803]  vfs_fsync_range+0x10a/0x130
[  157.744962][ T9803]  ext4_buffered_write_iter+0x34f/0x3c0
[  157.750525][ T9803]  ext4_file_write_iter+0x383/0xf00
[  157.755736][ T9803]  iter_file_splice_write+0x5ef/0x970
[  157.761130][ T9803]  direct_splice_actor+0x153/0x2a0
[  157.766249][ T9803]  splice_direct_to_actor+0x30f/0x680
[  157.771631][ T9803]  do_splice_direct+0xda/0x150
[  157.776400][ T9803]  do_sendfile+0x380/0x640
[  157.780828][ T9803]  __x64_sys_sendfile64+0x105/0x150
[  157.786047][ T9803]  x64_sys_call+0xb39/0x2fb0
[  157.790662][ T9803]  do_syscall_64+0xd0/0x1a0
[  157.795176][ T9803]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.801093][ T9803] 
[  157.803423][ T9803] value changed: 0x0a000021 -> 0x04000021
[  157.809148][ T9803] 
[  157.811467][ T9803] Reported by Kernel Concurrency Sanitizer on:
[  157.817617][ T9803] CPU: 1 UID: 0 PID: 9803 Comm: syz.0.2223 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  157.830034][ T9803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  157.840099][ T9803] ==================================================================
[  157.861734][   T51] bio_check_eod: 620 callbacks suppressed
[  157.861748][   T51] kworker/u8:3: attempt to access beyond end of device
[  157.861748][   T51] loop1: rw=1, sector=153, nr_sectors = 8 limit=128
[  157.881172][   T51] kworker/u8:3: attempt to access beyond end of device
[  157.881172][   T51] loop1: rw=1, sector=169, nr_sectors = 8 limit=128
[  157.895519][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.906534][   T51] kworker/u8:3: attempt to access beyond end of device
[  157.906534][   T51] loop1: rw=1, sector=185, nr_sectors = 8 limit=128
[  157.928851][   T51] kworker/u8:3: attempt to access beyond end of device
[  157.928851][   T51] loop1: rw=1, sector=201, nr_sectors = 8 limit=128
[  157.942890][   T51] kworker/u8:3: attempt to access beyond end of device
[  157.942890][   T51] loop1: rw=1, sector=217, nr_sectors = 8 limit=128
[  157.956571][   T51] kworker/u8:3: attempt to access beyond end of device
[  157.956571][   T51] loop1: rw=1, sector=233, nr_sectors = 8 limit=128
[  157.957649][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.970208][   T51] kworker/u8:3: attempt to access beyond end of device
[  157.970208][   T51] loop1: rw=1, sector=249, nr_sectors = 8 limit=128
[  157.992376][   T51] kworker/u8:3: attempt to access beyond end of device
[  157.992376][   T51] loop1: rw=1, sector=265, nr_sectors = 8 limit=128
[  158.006054][   T51] kworker/u8:3: attempt to access beyond end of device
[  158.006054][   T51] loop1: rw=1, sector=281, nr_sectors = 8 limit=128
[  158.019492][   T51] kworker/u8:3: attempt to access beyond end of device
[  158.019492][   T51] loop1: rw=1, sector=297, nr_sectors = 8 limit=128