last executing test programs:

8.527094548s ago: executing program 2 (id=5641):
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xb, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000040)={[{0x2d, 'rdma'}, {0x2d, 'net'}, {0x2b, 'perf_event'}, {0x0, 'rlimit'}, {0x0, 'rdma'}, {0x2b, 'cpuset'}, {0x2b, 'cpuacct'}]}, 0x36)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0xc8101339d8526c63}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = socket$inet6(0xa, 0x1, 0x8010000000000084)
sendmmsg$inet6(r2, 0x0, 0x0, 0x40)
shutdown(r2, 0x1)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r2, 0x84, 0x1b, &(0x7f0000000140), &(0x7f0000000180)=0x8)
syz_clone(0x41b08000, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = perf_event_open(&(0x7f00000002c0)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, r0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_clone(0x0, 0x0, 0x2d12f020, 0x0, 0x0, 0x0)
pipe2(&(0x7f0000000040), 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
epoll_create(0x8)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)

5.316006174s ago: executing program 2 (id=5654):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000002200)={0x0, 0x0, &(0x7f00000021c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="20000000690001000000000000000000000000000000000008"], 0x20}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000600)=@ipv6_newrule={0x24, 0x18, 0x409, 0x0, 0x0, {}, [@FIB_RULE_POLICY=@FRA_GOTO={0x8, 0x1e, 0x1}]}, 0x24}}, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x9}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xb, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff})
sendmsg$inet(r4, &(0x7f0000000d40)={0x0, 0x7000000, &(0x7f00000023c0)=[{&(0x7f0000000b40)='?', 0x1}, {0x0, 0x1}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, 0x0, 0x0, 0x1000000}, 0x20001)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r2, {0x9}}, './file0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000010000000000b70000000000e7057b8af8ff00000000bfa20000000000000008000000b70400000000000085000000016e8f7d0f3fe8816ef6d09b7517163e379508034bc27aee7bb7261af6934b241fdd8bf201b136a4bfc7a14f8bdb46391f8dac17f5e1069be8c450a4aab6b2f6ee0d8bc6496187efd2f57af7252f988b980625b88e764bc64f17ad263afd321ae8306eeb4d9526c91a235e7b26fa3110f94330cd075bd733760d4cda99dea7aad1a4f348029724260e2850f5dc77"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
listen(r3, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r6 = accept(r2, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={0x0, 0xfffffdef}}, 0x1)
recvfrom(r5, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x4100, 0x0, 0x0)

4.415998237s ago: executing program 0 (id=5665):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000080000000c"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0}, &(0x7f0000000200), &(0x7f0000000800)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
acct(&(0x7f0000000740)='./file0\x00')

4.415336367s ago: executing program 2 (id=5666):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="180500000000000000000000fdffffffb7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7020000080000001823", @ANYRES32, @ANYBLOB="00009a1ff13e000000ecffffff850000009500000095000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40e00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00'}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc0}, 0x0)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141b82, 0x0)
accept4$packet(r4, 0x0, &(0x7f0000000080), 0x80000)
poll(&(0x7f0000000200)=[{r0, 0x220}, {r0, 0x40}], 0x2, 0x7fffffff)
mlock2(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1)
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40400, 0x2, @perf_config_ext={0xf60, 0x40ffffffff}, 0x1100, 0x5, 0x3a65, 0x5, 0x0, 0x5, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000400)={[{@errors_remount}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@dioread_lock}, {@data_err_ignore}, {@mblk_io_submit}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@nojournal_checksum}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=ANY=[], 0x361, 0x0)

4.414646767s ago: executing program 3 (id=5667):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000004000000000000000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x3)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
r3 = memfd_secret(0x0)
fcntl$setlease(r3, 0x400, 0x0)
close(r3)
ioctl$KIOCSOUND(r1, 0x4b2f, 0x7)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x5, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0xfffffffffffffffd, 0x4}, 0xa000, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_open_dev$usbfs(&(0x7f0000000080), 0x76, 0x109301)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
r5 = syz_io_uring_setup(0x5769, 0x0, 0x0, &(0x7f0000000100)=<r6=>0x0)
syz_io_uring_submit(0x0, r6, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x0, 0x5, r5, 0x0, 0x0, 0x0, 0x80800})
io_uring_enter(r5, 0xe2e, 0x78bf, 0x20, 0x0, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x4, &(0x7f0000000080)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x10)
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r9}, 0x18)
r10 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x4000c00)

4.200773469s ago: executing program 0 (id=5668):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kmem_cache_free\x00', r0, 0x0, 0x9}, 0x18)
tkill(0x0, 0x12)

4.17787777s ago: executing program 0 (id=5669):
syz_clone(0x102311, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r1}, 0x18)
readv(r0, &(0x7f0000000000)=[{&(0x7f0000000240)=""/244, 0xf4}], 0x1)

3.779861396s ago: executing program 0 (id=5671):
io_setup(0x23, &(0x7f0000000280))
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000800)={r3, 0xe0, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000580)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000005c0), 0x0, 0x76, &(0x7f0000000600)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x40, 0x0, 0x0, 0x0, 0x0, 0x42, 0x8, 0x0, 0x0}}, 0x10)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x2010000, &(0x7f0000000180)=ANY=[@ANYBLOB="00b66b2ef9a8b7abf32a9b97571a5a240a0bc43f876a4550d3d61b65c530b8637e5c857356f7085ac1e6000000000000"], 0x2d, 0x35a, &(0x7f0000000600)="$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")

3.774600575s ago: executing program 3 (id=5672):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000080000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRES64], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x980004}, 0xc, &(0x7f0000000600)={&(0x7f00000003c0)={0x1c, 0x0, 0x8, 0x70bd29, 0x25dfdbfb, {}, [@GTPA_VERSION={0x8, 0x2, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'veth1_virt_wifi\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0xb}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)

3.634654238s ago: executing program 3 (id=5673):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_io_uring_setup(0xd3c, &(0x7f0000000740)={0x0, 0x576, 0x400, 0x2, 0x221}, &(0x7f0000000700)=<r2=>0x0, &(0x7f00000002c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_OPENAT2={0x1c, 0x1e, 0x0, 0xffffffffffffffff, 0x0, 0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000140)={'wlan1\x00', <r6=>0x0})
syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000001240)='./bus\x00', 0x0, &(0x7f0000002480)=ANY=[], 0x1, 0x11f4, &(0x7f0000001280)="$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")
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r7 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x140)
ftruncate(r7, 0x2007ffc)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000540)='./file1\x00', 0x105042, 0x1db)
writev(r8, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x64000}], 0x1)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000380)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000340)={&(0x7f0000002480)=ANY=[@ANYBLOB="75dd0000dff14ddc1fc7172d097ade34ac81a81ca920997cbcbeb6a2f9e94f24ab165a08ab593eec493978c830f629b853cb9e79a6225b75e607c061534534ff09648ea1e643ce186ec211cdaedf6c7067e8f58a5993e1990aade7e71112a8afad1ed2dc1a31202f29ecbc3f80f763aa498df087a7a2412d00d82ad8a613d8627a8b3a8fb505257196710c7bfe9c057ab493e1a76d3a675a500d919c971dd49d990b269558f3c31f8f01", @ANYRES16=r5, @ANYBLOB="000426bd7000fbdbdf253700000008000300", @ANYRES32=r6, @ANYBLOB="08002201b801000008002201b0000000050019010c0000000800570004000000"], 0x3c}}, 0x800)
r9 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0200000000002f2b1491176f1a45000000000000", @ANYRES32, @ANYBLOB="0300"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r9, <r10=>0xffffffffffffffff}, 0x4)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r10, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r11}, 0x10)
r12 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r12, &(0x7f00000005c0), 0x10)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000001800)={<r13=>0x0}, &(0x7f0000001840)=0xc)
r14 = gettid()
r15 = syz_clone(0x3021000, &(0x7f0000001880)="d67e62150c16c0c2935f0c2d60cf1b824d5f3c66e906", 0x16, 0x0, &(0x7f0000001900), &(0x7f0000001940)="f661df38d238f4b0869bb875984e61873529227dd5207e63a92f30b9cf5dfc8a3859518f64755a75be407233856b459eb78411a65bd2d7372c3796faa4562d2f886c9ca9e95f913036664235a87c5455a1f6704ae461b096917e5e52027c46")
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000019c0)=<r16=>0x0)
r17 = bpf$ITER_CREATE(0x21, &(0x7f0000001a80), 0x8)
syz_clone3(&(0x7f0000001ac0)={0x8000, &(0x7f0000000580), &(0x7f0000000600), &(0x7f0000000640), {0x20}, &(0x7f00000007c0)=""/5, 0x5, &(0x7f0000000800)=""/4096, &(0x7f0000001a40)=[r13, r14, r15, r16, 0x0], 0x5, {r17}}, 0x58)
recvmmsg(r12, &(0x7f00000081c0)=[{{0x0, 0x0, &(0x7f0000001a00)=[{&(0x7f0000000180)=""/157, 0x9d}, {0x0}], 0x2}, 0x9}], 0x1, 0x10002, 0x0)
sendmsg$can_bcm(r12, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="050000007f0000000000010000000000", @ANYRES64=0x0, @ANYRES64=0x2710], 0x48}}, 0x0)
io_uring_enter(r1, 0xce3, 0x0, 0x0, 0x0, 0x0)

3.446639001s ago: executing program 2 (id=5674):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141b82, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r2 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
r3 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000280), 0x4)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
r5 = syz_open_pts(r4, 0x0)
ioctl$TCSBRK(r5, 0x5409, 0x80000000)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000880)={r2, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000580)=[0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, &(0x7f00000005c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000600), <r6=>0x0, 0x43, &(0x7f0000000600), 0x0, 0x10, &(0x7f0000000680), &(0x7f0000000700), 0x8, 0x11, 0x8, 0x8, &(0x7f0000000740)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000940)=ANY=[@ANYBLOB="180000000000000000000000000040001801000020646c210000000000206c07841b5189cadf2b4cc787b83120207b1af8ff00000000bfa1000000f9ffff060100e6f4ffffffb7020000000000a700b703000000000000181100", @ANYRES64=r5, @ANYRESDEC=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r8 = socket$inet6(0xa, 0x2, 0x0)
r9 = socket(0x10, 0x803, 0x0)
splice(r9, 0x0, r4, &(0x7f0000000600)=0x401, 0x100000000, 0xd)
sendmsg$SMC_PNETID_GET(r9, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r9, &(0x7f0000000180)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r0}, &(0x7f0000000080), &(0x7f0000000280)=r7}, 0x20)
sendmmsg$inet(r8, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r10, @empty, @multicast1}}}], 0x20}}], 0x1, 0x0)
getsockopt$inet_tcp_int(r0, 0x6, 0x15, &(0x7f0000000440), &(0x7f0000000480)=0x4)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB='-net'], 0x34)

3.305394232s ago: executing program 2 (id=5675):
r0 = gettid()
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ppoll(0x0, 0x0, 0x0, &(0x7f00000000c0)={[0x8001a0ffffffff]}, 0x8)
ioctl$int_in(r1, 0x5452, &(0x7f0000000180)=0xffffffffffffffff)
fcntl$setsig(r1, 0xa, 0x12)
ppoll(&(0x7f0000000100)=[{r2}], 0x1, 0x0, &(0x7f0000000080)={[0x8001a0efffffff]}, 0x8)
dup2(r1, r2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
tkill(r0, 0x13)

2.847934609s ago: executing program 3 (id=5676):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000002200)={0x0, 0x0, &(0x7f00000021c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="20000000690001000000000000000000000000000000000008"], 0x20}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000600)=@ipv6_newrule={0x24, 0x18, 0x409, 0x0, 0x0, {}, [@FIB_RULE_POLICY=@FRA_GOTO={0x8, 0x1e, 0x1}]}, 0x24}}, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x9}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xb, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff})
sendmsg$inet(r4, &(0x7f0000000d40)={0x0, 0x7000000, &(0x7f00000023c0)=[{&(0x7f0000000b40)='?', 0x1}, {0x0, 0x1}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, 0x0, 0x0, 0x1000000}, 0x20001)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r2, {0x9}}, './file0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000010000000000b70000000000e7057b8af8ff00000000bfa20000000000000008000000b70400000000000085000000016e8f7d0f3fe8816ef6d09b7517163e379508034bc27aee7bb7261af6934b241fdd8bf201b136a4bfc7a14f8bdb46391f8dac17f5e1069be8c450a4aab6b2f6ee0d8bc6496187efd2f57af7252f988b980625b88e764bc64f17ad263afd321ae8306eeb4d9526c91a235e7b26fa3110f94330cd075bd733760d4cda99dea7aad1a4f348029724260e2850f5dc77"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
listen(r3, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r6 = accept(r2, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={0x0, 0xfffffdef}}, 0x1)
recvfrom(r5, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x4100, 0x0, 0x0)

2.135425699s ago: executing program 1 (id=5680):
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0x14, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0, 0x0, 0x8000000}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a30000000006c000000160a01000000000000000000010000000900010073797a30000000000900020073797a3000000000400003800800014000000000080002400000fbff2b0003801400010067656e6576653000000000000000000014000100776732000000000000000000c6e49c0f5c000000180a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010067656e657665300000000000000000001400010076657468315f746f5f7465616d"], 0x110}}, 0x0)
openat$selinux_enforce(0xffffffffffffff9c, 0x0, 0x1, 0x0)
bpf$BPF_LINK_CREATE(0x8, &(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x19, 0x0, @val=@netfilter={0xa, 0x0, 0x299d, 0x1}}, 0x20)
r2 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r2, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
setsockopt$SO_RDS_TRANSPORT(r2, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYRES32=0x0, @ANYRES16], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="fffffeff00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\b\x00'/28], 0x50)
r5 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r5, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r5, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000006c0)}}, @rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, 0x0}}], 0x90}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES32=r4, @ANYBLOB="0000000000000000b702000002000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000e300bf91000000000000b7020000010000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000080050005000200000011000300686173683a69702c706f7274"], 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f0000000880)='ext2\x00', &(0x7f0000000000)='./file1\x00', 0x21000e, &(0x7f0000000380), 0xde, 0x52d, &(0x7f0000001500)="$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")

2.02876598s ago: executing program 1 (id=5681):
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xb, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000040)={[{0x2d, 'rdma'}, {0x2d, 'net'}, {0x2b, 'perf_event'}, {0x0, 'rlimit'}, {0x0, 'rdma'}, {0x2b, 'cpuset'}, {0x2b, 'cpuacct'}]}, 0x36)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0xc8101339d8526c63}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = socket$inet6(0xa, 0x1, 0x8010000000000084)
sendmmsg$inet6(r2, 0x0, 0x0, 0x40)
shutdown(r2, 0x1)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r2, 0x84, 0x1b, &(0x7f0000000140), &(0x7f0000000180)=0x8)
syz_clone(0x41b08000, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = perf_event_open(&(0x7f00000002c0)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, r0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_clone(0x0, 0x0, 0x2d12f020, 0x0, 0x0, 0x0)
pipe2(&(0x7f0000000040), 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
epoll_create(0x8)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)

1.846322893s ago: executing program 3 (id=5682):
syz_clone(0x102311, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r1}, 0x18)
readv(r0, &(0x7f0000000000)=[{&(0x7f0000000240)=""/244, 0xf4}], 0x1)

1.715936915s ago: executing program 4 (id=5684):
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
getsockopt$WPAN_WANTLQI(r0, 0x0, 0x3, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x2042, 0x0)
ioctl$AUTOFS_IOC_FAIL(r1, 0x4c80, 0x7000000)

1.654158346s ago: executing program 4 (id=5685):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x109000, 0x0)
fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0xe, 0x7fffffff}]})
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xff, 0x3, 0x0, 0x0, 0x0, 0x4000000003, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x2, @perf_bp={0x0, 0xd}, 0xc, 0x5, 0x800000, 0x0, 0xffff, 0x2, 0x0, 0x0, 0xfffffffc, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, r0, 0xa)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x4, 0x1000}, 0x4)
r2 = inotify_init()
r3 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, &(0x7f0000000000), &(0x7f0000000040)=r5}, 0xffffffffffffffde)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000004400)='./file0\x00', 0x0, &(0x7f0000000080)={[{@usrquota}, {@noblock_validity}, {@bh}, {@dioread_lock}, {@debug}, {@inlinecrypt}]}, 0x8, 0x5fc, &(0x7f0000000c00)="$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")
r7 = inotify_add_watch(r2, &(0x7f00000004c0)='./file0\x00', 0x8c7)
write$binfmt_elf32(r3, &(0x7f0000000040)=ANY=[@ANYRES64=r7], 0x69)
close(r3)
move_pages(0x0, 0x1, &(0x7f0000000000)=[&(0x7f0000ffc000/0x1000)=nil], 0x0, 0xfffffffffffffffe, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000640)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x2000000e149}, 0x18)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)

1.611800667s ago: executing program 3 (id=5686):
r0 = gettid()
socketpair$unix(0x1, 0x1, 0x0, 0x0)
ppoll(0x0, 0x0, 0x0, &(0x7f00000000c0)={[0x8001a0ffffffff]}, 0x8)
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000180)=0xffffffffffffffff)
fcntl$setsig(0xffffffffffffffff, 0xa, 0x12)
ppoll(&(0x7f0000000100)=[{}], 0x1, 0x0, &(0x7f0000000080)={[0x8001a0efffffff]}, 0x8)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
fcntl$setown(0xffffffffffffffff, 0x8, r0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x0, 0x0, 0x0, 0x4, 0x0)
tkill(r0, 0x13)

1.189466513s ago: executing program 1 (id=5687):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kmem_cache_free\x00', r0, 0x0, 0x9}, 0x18)
syz_emit_ethernet(0x65, &(0x7f0000000280)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x57, 0x0, 0x0, 0x0, 0x33, 0x0, @private, @broadcast}, {0x0, 0x0, 0x43, 0x0, @opaque="a698d801da82628e5d1ef2e940af30378c5c65107a70b3213ad8dba95ae9f0411fad91f2cfab0ed50798c5e823cb22825d6ce0d71762ec849000fd"}}}}}, 0x0)
tkill(0x0, 0x12)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000002000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)

1.153304423s ago: executing program 1 (id=5688):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001dc0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x8000, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000480)=ANY=[], 0xd2)

1.091413334s ago: executing program 4 (id=5689):
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/locks\x00', 0x0, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
syz_io_uring_setup(0x9c, 0x0, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000003c0)={[{@resgid={'resgid', 0x3d, 0xee00}}, {}, {@grpquota}, {@nobarrier}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@auto_da_alloc}, {@stripe={'stripe', 0x3d, 0x2}}]}, 0x3, 0x572, &(0x7f00000006c0)="$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")
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', &(0x7f00000000c0)=@FILEID_UDF_WITH_PARENT={0x14, 0x52, {{0x3, 0x6, 0x7}, 0x9, 0x9}}, &(0x7f0000000180), 0x0)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x0)

1.007583055s ago: executing program 1 (id=5690):
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/locks\x00', 0x0, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
syz_io_uring_setup(0x9c, 0x0, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000003c0)={[{@resgid={'resgid', 0x3d, 0xee00}}, {}, {@grpquota}, {@nobarrier}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@auto_da_alloc}, {@stripe={'stripe', 0x3d, 0x2}}]}, 0x3, 0x572, &(0x7f00000006c0)="$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")
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', &(0x7f00000000c0)=@FILEID_UDF_WITH_PARENT={0x14, 0x52, {{0x3, 0x6, 0x7}, 0x9, 0x9}}, &(0x7f0000000180), 0x0)

995.807225ms ago: executing program 0 (id=5691):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_io_uring_setup(0xd3c, &(0x7f0000000740)={0x0, 0x576, 0x400, 0x2, 0x221}, &(0x7f0000000700)=<r2=>0x0, &(0x7f00000002c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_OPENAT2={0x1c, 0x1e, 0x0, 0xffffffffffffffff, 0x0, 0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000140)={'wlan1\x00', <r6=>0x0})
syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000001240)='./bus\x00', 0x0, &(0x7f0000002480)=ANY=[], 0x1, 0x11f4, &(0x7f0000001280)="$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")
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r7 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x140)
ftruncate(r7, 0x2007ffc)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000540)='./file1\x00', 0x105042, 0x1db)
writev(r8, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x64000}], 0x1)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000380)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000340)={&(0x7f0000002480)=ANY=[@ANYBLOB="75dd0000dff14ddc1fc7172d097ade34ac81a81ca920997cbcbeb6a2f9e94f24ab165a08ab593eec493978c830f629b853cb9e79a6225b75e607c061534534ff09648ea1e643ce186ec211cdaedf6c7067e8f58a5993e1990aade7e71112a8afad1ed2dc1a31202f29ecbc3f80f763aa498df087a7a2412d00d82ad8a613d8627a8b3a8fb505257196710c7bfe9c057ab493e1a76d3a675a500d919c971dd49d990b269558f3c31f8f01", @ANYRES16=r5, @ANYBLOB="000426bd7000fbdbdf253700000008000300", @ANYRES32=r6, @ANYBLOB="08002201b801000008002201b0000000050019010c0000000800570004000000"], 0x3c}}, 0x800)
r9 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0200000000002f2b1491176f1a45000000000000", @ANYRES32, @ANYBLOB="0300"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r9, <r10=>0xffffffffffffffff}, 0x4)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r10, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r11}, 0x10)
r12 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r12, &(0x7f00000005c0), 0x10)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000001800)={<r13=>0x0}, &(0x7f0000001840)=0xc)
r14 = gettid()
r15 = syz_clone(0x3021000, &(0x7f0000001880)="d67e62150c16c0c2935f0c2d60cf1b824d5f3c66e906", 0x16, &(0x7f00000018c0), 0x0, &(0x7f0000001940)="f661df38d238f4b0869bb875984e61873529227dd5207e63a92f30b9cf5dfc8a3859518f64755a75be407233856b459eb78411a65bd2d7372c3796faa4562d2f886c9ca9e95f913036664235a87c5455a1f6704ae461b096917e5e52027c46")
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000019c0)=<r16=>0x0)
r17 = bpf$ITER_CREATE(0x21, &(0x7f0000001a80), 0x8)
syz_clone3(&(0x7f0000001ac0)={0x8000, &(0x7f0000000580), &(0x7f0000000600), &(0x7f0000000640), {0x20}, &(0x7f00000007c0)=""/5, 0x5, &(0x7f0000000800)=""/4096, &(0x7f0000001a40)=[r13, r14, r15, r16, 0x0], 0x5, {r17}}, 0x58)
recvmmsg(r12, &(0x7f00000081c0)=[{{0x0, 0x0, &(0x7f0000001a00)=[{&(0x7f0000000180)=""/157, 0x9d}, {0x0}], 0x2}, 0x9}], 0x1, 0x10002, 0x0)
sendmsg$can_bcm(r12, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="050000007f0000000000010000000000", @ANYRES64=0x0, @ANYRES64=0x2710], 0x48}}, 0x0)
io_uring_enter(r1, 0xce3, 0x0, 0x0, 0x0, 0x0)

970.833856ms ago: executing program 4 (id=5692):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
tkill(0x0, 0x12)

904.423257ms ago: executing program 4 (id=5693):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000002200)={0x0, 0x0, &(0x7f00000021c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="20000000690001000000000000000000000000000000000008"], 0x20}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000600)=@ipv6_newrule={0x24, 0x18, 0x409, 0x0, 0x0, {}, [@FIB_RULE_POLICY=@FRA_GOTO={0x8, 0x1e, 0x1}]}, 0x24}}, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x9}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xb, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff})
sendmsg$inet(r4, &(0x7f0000000d40)={0x0, 0x7000000, &(0x7f00000023c0)=[{&(0x7f0000000b40)='?', 0x1}, {0x0, 0x1}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, 0x0, 0x0, 0x1000000}, 0x20001)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r2, {0x9}}, './file0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000010000000000b70000000000e7057b8af8ff00000000bfa20000000000000008000000b70400000000000085000000016e8f7d0f3fe8816ef6d09b7517163e379508034bc27aee7bb7261af6934b241fdd8bf201b136a4bfc7a14f8bdb46391f8dac17f5e1069be8c450a4aab6b2f6ee0d8bc6496187efd2f57af7252f988b980625b88e764bc64f17ad263afd321ae8306eeb4d9526c91a235e7b26fa3110f94330cd075bd733760d4cda99dea7aad1a4f348029724260e2850f5dc77"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
listen(r3, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r6 = accept(r2, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[], 0xfffffdef}}, 0x1)
recvfrom(r5, 0x0, 0x0, 0x4100, 0x0, 0x0)

772.293268ms ago: executing program 1 (id=5694):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="180500000000000000000000fdffffffb7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7020000080000001823", @ANYRES32, @ANYBLOB="00009a1ff13e000000ecffffff850000009500000095000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40e00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00'}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc0}, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141b82, 0x0)
accept4$packet(r3, 0x0, &(0x7f0000000080), 0x80000)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40400, 0x2, @perf_config_ext={0xf60, 0x40ffffffff}, 0x1100, 0x5, 0x3a65, 0x5, 0x0, 0x5, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000400)={[{@errors_remount}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@dioread_lock}, {@data_err_ignore}, {@mblk_io_submit}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@nojournal_checksum}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=ANY=[], 0x361, 0x0)

114.242248ms ago: executing program 2 (id=5695):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x109000, 0x0)
fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0xe, 0x7fffffff}]})
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xff, 0x3, 0x0, 0x0, 0x0, 0x4000000003, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x2, @perf_bp={0x0, 0xd}, 0xc, 0x5, 0x800000, 0x0, 0xffff, 0x2, 0x0, 0x0, 0xfffffffc, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, r0, 0xa)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x4, 0x1000}, 0x4)
r2 = inotify_init()
r3 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000004400)='./file0\x00', 0x0, &(0x7f0000000080)={[{@usrquota}, {@noblock_validity}, {@bh}, {@dioread_lock}, {@debug}, {@inlinecrypt}]}, 0x8, 0x5fc, &(0x7f0000000c00)="$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")
r5 = inotify_add_watch(r2, &(0x7f00000004c0)='./file0\x00', 0x8c7)
write$binfmt_elf32(r3, &(0x7f0000000040)=ANY=[@ANYRES64=r5], 0x69)
close(r3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f0000000500)=@security={'security\x00', 0xe, 0x4, 0x378, 0xffffffff, 0x0, 0xf8, 0x1c8, 0xffffffff, 0xffffffff, 0x2e0, 0x2e0, 0x2e0, 0xffffffff, 0x4, &(0x7f0000000080), {[{{@ip={@local, @dev={0xac, 0x14, 0x14, 0x37}, 0xff000000, 0xffffff00, 'vxcan1\x00', 'ipvlan0\x00', {}, {0xff}, 0x29, 0x2, 0x40}, 0x0, 0x98, 0xf8, 0x0, {}, [@common=@ttl={{0x28}, {0x2, 0x5}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x0, [0x6, 0x0, 0x2, 0x1, 0x2, 0x4], 0x2, 0x5}, {0x1, [0x3, 0x2, 0x8, 0x2, 0x5, 0x4], 0x6, 0x6}}}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @empty, 0xff, 0xff000000, 'bond0\x00', 'ipvlan0\x00', {0xff}, {}, 0x11, 0x3, 0x88}, 0x0, 0x70, 0xd0}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x1, [0x0, 0x1, 0x2, 0x4, 0x5, 0x5], 0x3, 0x2}, {0x1, [0x5, 0x3, 0x7, 0x7, 0x7, 0x6], 0x1, 0x7}}}}, {{@uncond, 0x0, 0xb8, 0x118, 0x0, {}, [@common=@inet=@socket2={{0x28}, 0x3}, @common=@socket0={{0x20}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0xffffffffffffffff, [0x3, 0x1, 0x6, 0x5, 0x2], 0x5, 0x6}, {0x1, [0x4, 0x3, 0x4, 0x6, 0x2, 0x5], 0x2, 0x3}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x3d8)
clock_getres(0x2, &(0x7f00000001c0))
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000001c0)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB, @ANYRES32=0x0, @ANYRES64=0x0], 0x20)

64.410079ms ago: executing program 0 (id=5696):
syz_clone(0x102311, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r1}, 0x18)
readv(r0, &(0x7f0000000000)=[{&(0x7f0000000240)=""/244, 0xf4}], 0x1)

0s ago: executing program 4 (id=5697):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socket(0x23, 0x6, 0x3)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB="200000001000010700000200000000000a0000000c0002006e6c3830323131"], 0x20}}, 0x0)

kernel console output (not intermixed with test programs):

 34-34
[  574.029042][T20373] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  574.044198][T20373] EXT4-fs (loop3): 1 truncate cleaned up
[  574.050334][T20373] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  574.188541][   T29] audit: type=1326 audit(1747153951.276:14438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20387 comm="syz.0.5309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb28ce969 code=0x7ffc0000
[  574.217904][T12165] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  574.256510][T20391] SELinux: failed to load policy
[  574.282426][T20396] loop4: detected capacity change from 0 to 512
[  574.305338][T20396] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  574.357422][T20396] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5314'.
[  574.370397][T20401] loop0: detected capacity change from 0 to 1024
[  574.381837][T20403] serio: Serial port ptm0
[  574.398850][T20401] EXT4-fs: Ignoring removed orlov option
[  574.398973][T20396] Cannot find del_set index 3 as target
[  574.411747][T20401] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  574.458127][T20415] bridge0: port 1(gretap0) entered blocking state
[  574.464666][T20415] bridge0: port 1(gretap0) entered disabled state
[  574.471727][ T3309] udevd[3309]: symlink '../../loop4' '/dev/disk/by-diskseq/2557.tmp-b7:4' failed: Read-only file system
[  574.492163][T20401] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  574.494655][ T3510] udevd[3510]: symlink '../../loop3' '/dev/disk/by-diskseq/2555.tmp-b7:3' failed: Read-only file system
[  574.511131][T20415] gretap0: entered allmulticast mode
[  574.522299][T20421] loop1: detected capacity change from 0 to 1024
[  574.530889][T20421] EXT4-fs: Ignoring removed mblk_io_submit option
[  574.537377][T20421] EXT4-fs: Ignoring removed nobh option
[  574.543004][T20421] EXT4-fs: Ignoring removed bh option
[  574.549323][T20415] gretap0: entered promiscuous mode
[  574.555715][T20415] bridge0: port 1(gretap0) entered blocking state
[  574.562214][T20415] bridge0: port 1(gretap0) entered forwarding state
[  574.570271][T20422] gretap0: left allmulticast mode
[  574.575386][T20422] gretap0: left promiscuous mode
[  574.580483][T20422] bridge0: port 1(gretap0) entered disabled state
[  574.611718][ T3510] udevd[3510]: symlink '../../loop4' '/dev/disk/by-diskseq/2557.tmp-b7:4' failed: Read-only file system
[  574.654963][ T3510] udevd[3510]: symlink '../../loop4' '/dev/disk/by-diskseq/2557.tmp-b7:4' failed: Read-only file system
[  574.669091][T13248] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  574.682820][ T3309] udevd[3309]: symlink '../../loop1' '/dev/disk/by-diskseq/2560.tmp-b7:1' failed: Read-only file system
[  574.703096][ T3510] udevd[3510]: symlink '../../loop0' '/dev/disk/by-diskseq/2559.tmp-b7:0' failed: Read-only file system
[  574.714832][T20421] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  574.719280][ T3309] udevd[3309]: symlink '../../loop0' '/dev/disk/by-diskseq/2559.tmp-b7:0' failed: Read-only file system
[  574.746878][ T3309] udevd[3309]: symlink '../../loop0' '/dev/disk/by-diskseq/2561.tmp-b7:0' failed: Read-only file system
[  574.814875][T20434] loop4: detected capacity change from 0 to 512
[  574.822231][T20434] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  574.843160][T20430] loop0: detected capacity change from 0 to 8192
[  574.853778][T20434] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5323'.
[  574.880822][ T3309] udevd[3309]: symlink '../../loop4' '/dev/disk/by-diskseq/2562.tmp-b7:4' failed: Read-only file system
[  574.910153][T20434] Cannot find del_set index 3 as target
[  574.940912][ T3309] udevd[3309]: symlink '../../loop4' '/dev/disk/by-diskseq/2562.tmp-b7:4' failed: Read-only file system
[  575.167172][T20447] loop4: detected capacity change from 0 to 512
[  575.179946][T20447] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  575.204148][T20447] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5328'.
[  575.273107][T20447] Cannot find del_set index 3 as target
[  575.279558][T13552] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  575.352879][T20458] siw: device registration error -23
[  575.372112][T20457] loop2: detected capacity change from 0 to 512
[  575.391677][T20458] netlink: 40 bytes leftover after parsing attributes in process `syz.1.5331'.
[  575.402551][T20462] bridge0: port 3(gretap0) entered blocking state
[  575.409104][T20462] bridge0: port 3(gretap0) entered disabled state
[  575.430719][T20457] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  575.439902][T20457] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  575.450670][T20462] gretap0: entered allmulticast mode
[  575.453272][T20464] loop4: detected capacity change from 0 to 512
[  575.456716][T20462] gretap0: entered promiscuous mode
[  575.485542][T20457] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[  575.500919][T20464] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  575.510022][T20464] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  575.529620][T20462] gretap0: left allmulticast mode
[  575.531398][T20470] loop0: detected capacity change from 0 to 1024
[  575.534940][T20462] gretap0: left promiscuous mode
[  575.546355][T20462] bridge0: port 3(gretap0) entered disabled state
[  575.551083][T20470] EXT4-fs: Ignoring removed bh option
[  575.558329][T20470] EXT4-fs: inline encryption not supported
[  575.564241][T20457] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  575.573058][T20464] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  575.584887][T20457] System zones: 0-2, 18-18, 34-34
[  575.596009][T20464] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  575.604769][T20470] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  575.615369][T20457] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  575.629939][T20464] System zones: 0-2, 18-18, 34-34
[  575.630666][T20470] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  575.644162][T20464] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  575.644724][T20470] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 2: comm syz.0.5335: lblock 2 mapped to illegal pblock 2 (length 1)
[  575.660973][T20457] EXT4-fs (loop2): 1 truncate cleaned up
[  575.678793][T20470] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 48: comm syz.0.5335: lblock 0 mapped to illegal pblock 48 (length 1)
[  575.684835][T20464] EXT4-fs (loop4): 1 truncate cleaned up
[  575.693611][T20470] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.5335: Failed to acquire dquot type 0
[  575.710704][T20470] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  575.711107][T20464] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  575.720210][T20470] EXT4-fs error (device loop0): ext4_evict_inode:259: inode #11: comm syz.0.5335: mark_inode_dirty error
[  575.736659][T20457] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  575.756371][T20470] EXT4-fs warning (device loop0): ext4_evict_inode:262: couldn't mark inode dirty (err -117)
[  575.787702][T20470] EXT4-fs (loop0): 1 orphan inode deleted
[  575.797076][T20470] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  575.813705][ T5615] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:43: lblock 1 mapped to illegal pblock 1 (length 1)
[  575.835383][ T5615] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:43: Failed to release dquot type 0
[  575.848352][T12580] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  575.848478][T13726] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  575.858934][T20470] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  575.880727][T20470] EXT4-fs error (device loop0): __ext4_get_inode_loc:4450: comm syz.0.5335: Invalid inode table block 1 in block_group 0
[  575.912815][T20487] loop4: detected capacity change from 0 to 512
[  575.914496][T20470] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  575.929327][T20470] EXT4-fs error (device loop0): ext4_quota_off:7219: inode #3: comm syz.0.5335: mark_inode_dirty error
[  575.942044][T20487] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  575.972580][T20492] loop2: detected capacity change from 0 to 512
[  575.981168][T20492] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  575.990272][T20492] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  576.017009][T20487] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5344'.
[  576.021750][T20492] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[  576.035785][T20495] siw: device registration error -23
[  576.042434][T20495] netlink: 40 bytes leftover after parsing attributes in process `syz.3.5347'.
[  576.089618][T20492] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  576.098054][T20487] Cannot find del_set index 3 as target
[  576.105710][T20492] System zones: 0-2, 18-18, 34-34
[  576.111742][T20492] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  576.133426][T20500] loop1: detected capacity change from 0 to 8192
[  576.178873][T20504] loop0: detected capacity change from 0 to 512
[  576.216379][T20492] EXT4-fs (loop2): 1 truncate cleaned up
[  576.222198][T20510] loop3: detected capacity change from 0 to 1024
[  576.237132][T20510] EXT4-fs: Ignoring removed orlov option
[  576.246929][T20492] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  576.259731][T20510] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  576.273194][T20508] netlink: 'syz.4.5351': attribute type 11 has an invalid length.
[  576.281947][T20508] netlink: 44 bytes leftover after parsing attributes in process `syz.4.5351'.
[  576.294408][T20508] loop4: detected capacity change from 0 to 512
[  576.312250][T20510] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  576.333584][T12580] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  576.343747][T20508] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a846c118, mo2=0002]
[  576.375845][T20519] loop0: detected capacity change from 0 to 764
[  576.398321][T20519] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  576.437731][T20508] System zones: 1-12
[  576.447160][T20508] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #2: comm syz.4.5351: corrupted xattr block 255: invalid header
[  576.472663][T12165] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  576.492734][T20508] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  576.539383][T20508] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  576.560771][T20508] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #2: comm syz.4.5351: corrupted xattr block 255: invalid header
[  576.580982][T20508] SELinux: (dev loop4, type ext4) getxattr errno 117
[  576.597513][T20508] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  576.702222][T20529] netlink: 'syz.0.5356': attribute type 13 has an invalid length.
[  576.751713][T20529] 8021q: adding VLAN 0 to HW filter on device bond0
[  576.762964][T20529] 8021q: adding VLAN 0 to HW filter on device team0
[  576.776115][T20529] bridge0: port 4(dummy0) entered blocking state
[  576.782581][T20529] bridge0: port 4(dummy0) entered forwarding state
[  576.793030][T20529] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  576.903204][T20551] netlink: 'syz.0.5364': attribute type 13 has an invalid length.
[  576.924890][T20549] loop2: detected capacity change from 0 to 1024
[  576.934524][T20549] EXT4-fs: Ignoring removed bh option
[  576.940027][T20549] EXT4-fs: inline encryption not supported
[  576.957888][T20551] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  576.995667][T20555] loop1: detected capacity change from 0 to 1024
[  577.002822][T20549] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  577.005816][T20555] EXT4-fs: Ignoring removed orlov option
[  577.022396][T20549] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  577.048674][T20549] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #3: block 2: comm syz.2.5362: lblock 2 mapped to illegal pblock 2 (length 1)
[  577.070363][T20555] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  577.080344][T20549] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #3: block 48: comm syz.2.5362: lblock 0 mapped to illegal pblock 48 (length 1)
[  577.095789][T20549] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.5362: Failed to acquire dquot type 0
[  577.107463][T20549] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  577.118442][T20555] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  577.141263][T20549] EXT4-fs error (device loop2): ext4_evict_inode:259: inode #11: comm syz.2.5362: mark_inode_dirty error
[  577.181558][T20549] EXT4-fs warning (device loop2): ext4_evict_inode:262: couldn't mark inode dirty (err -117)
[  577.202654][T13552] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  577.223330][T20549] EXT4-fs (loop2): 1 orphan inode deleted
[  577.229637][T20549] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  577.242642][ T5612] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:40: lblock 1 mapped to illegal pblock 1 (length 1)
[  577.279757][ T5612] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:40: Failed to release dquot type 0
[  577.453984][T20577] loop4: detected capacity change from 0 to 8192
[  577.502703][T20549] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  577.530785][T20549] EXT4-fs error (device loop2): __ext4_get_inode_loc:4450: comm syz.2.5362: Invalid inode table block 1 in block_group 0
[  577.548219][T20579] serio: Serial port ptm1
[  577.572762][T20549] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  577.620705][T20549] EXT4-fs error (device loop2): ext4_quota_off:7219: inode #3: comm syz.2.5362: mark_inode_dirty error
[  577.747255][T20590] netlink: 'syz.1.5375': attribute type 13 has an invalid length.
[  577.856559][T20590] 8021q: adding VLAN 0 to HW filter on device bond0
[  577.865227][T20590] 8021q: adding VLAN 0 to HW filter on device team0
[  577.878777][T20590] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  577.959943][   T29] kauditd_printk_skb: 83 callbacks suppressed
[  577.959960][   T29] audit: type=1326 audit(1747153955.046:14516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20598 comm="syz.3.5377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4650b9e969 code=0x7ffc0000
[  577.989793][   T29] audit: type=1326 audit(1747153955.046:14517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20598 comm="syz.3.5377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4650b9e969 code=0x7ffc0000
[  578.408101][T20605] netlink: 36 bytes leftover after parsing attributes in process `syz.1.5378'.
[  578.424577][   T29] audit: type=1326 audit(1747153955.046:14518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20598 comm="syz.3.5377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7f4650b9e969 code=0x7ffc0000
[  578.448286][   T29] audit: type=1326 audit(1747153955.046:14519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20598 comm="syz.3.5377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4650b9e969 code=0x7ffc0000
[  578.471985][   T29] audit: type=1326 audit(1747153955.046:14520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20598 comm="syz.3.5377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4650b9e969 code=0x7ffc0000
[  578.495781][   T29] audit: type=1326 audit(1747153955.046:14521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20598 comm="syz.3.5377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4650b9d2d0 code=0x7ffc0000
[  578.519400][   T29] audit: type=1326 audit(1747153955.056:14522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20598 comm="syz.3.5377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4650b9e969 code=0x7ffc0000
[  578.543345][   T29] audit: type=1326 audit(1747153955.056:14523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20598 comm="syz.3.5377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4650b9e969 code=0x7ffc0000
[  578.567034][   T29] audit: type=1326 audit(1747153955.056:14524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20598 comm="syz.3.5377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4650b9e969 code=0x7ffc0000
[  578.591025][   T29] audit: type=1326 audit(1747153955.056:14525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20598 comm="syz.3.5377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4650b9e969 code=0x7ffc0000
[  578.712543][T20611] SELinux: failed to load policy
[  578.798341][T20616] loop1: detected capacity change from 0 to 1024
[  578.832118][T20622] netlink: 'syz.4.5380': attribute type 13 has an invalid length.
[  578.867699][T20622] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  578.874353][T20626] SELinux:  unknown common r
[  578.888399][T20616] EXT4-fs: Ignoring removed orlov option
[  578.895519][T20621] serio: Serial port ptm0
[  578.900417][T20626] SELinux: failed to load policy
[  578.905868][T20616] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  578.907016][T20624] loop0: detected capacity change from 0 to 1024
[  578.946950][T20616] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  578.959909][T20624] EXT4-fs: Ignoring removed bh option
[  578.965466][T20624] EXT4-fs: inline encryption not supported
[  579.051110][T20624] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  579.097675][T20641] loop4: detected capacity change from 0 to 1024
[  579.104643][T20641] EXT4-fs: Ignoring removed mblk_io_submit option
[  579.136162][T20641] EXT4-fs: Ignoring removed nobh option
[  579.141835][T20641] EXT4-fs: Ignoring removed bh option
[  579.147794][T20624] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  579.157310][T20624] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 2: comm syz.0.5387: lblock 2 mapped to illegal pblock 2 (length 1)
[  579.172228][T20624] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 48: comm syz.0.5387: lblock 0 mapped to illegal pblock 48 (length 1)
[  579.186729][T20624] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.5387: Failed to acquire dquot type 0
[  579.198388][T20624] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  579.209286][T20624] EXT4-fs error (device loop0): ext4_evict_inode:259: inode #11: comm syz.0.5387: mark_inode_dirty error
[  579.221354][T20624] EXT4-fs warning (device loop0): ext4_evict_inode:262: couldn't mark inode dirty (err -117)
[  579.232146][T20624] EXT4-fs (loop0): 1 orphan inode deleted
[  579.238235][T20624] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  579.337829][T20642] loop3: detected capacity change from 0 to 512
[  579.354675][T20643] loop2: detected capacity change from 0 to 512
[  579.385113][T20642] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  579.409596][ T5586] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:14: lblock 1 mapped to illegal pblock 1 (length 1)
[  579.410175][T20641] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  579.438645][ T5586] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:14: Failed to release dquot type 0
[  579.438950][T20643] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  579.459405][T20643] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  579.471232][T13552] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  579.480725][ T3309] udevd[3309]: symlink '../../loop3' '/dev/disk/by-diskseq/2598.tmp-b7:3' failed: Read-only file system
[  579.493463][T20624] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  579.505279][ T3309] udevd[3309]: symlink '../../loop3' '/dev/disk/by-label/syzkaller.tmp-b7:3' failed: Read-only file system
[  579.505800][T20642] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5392'.
[  579.517741][T20624] EXT4-fs error (device loop0): __ext4_get_inode_loc:4450: comm syz.0.5387: Invalid inode table block 1 in block_group 0
[  579.544576][ T3309] udevd[3309]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:3' failed: Read-only file system
[  579.569464][ T3510] udevd[3510]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:1' failed: Read-only file system
[  579.582541][ T3510] udevd[3510]: symlink '../../loop1' '/dev/disk/by-diskseq/2595.tmp-b7:1' failed: Read-only file system
[  579.595085][ T3309] udevd[3309]: symlink '../../loop3' '/dev/disk/by-diskseq/2598.tmp-b7:3' failed: Read-only file system
[  579.610439][ T3510] udevd[3510]: symlink '../../loop1' '/dev/disk/by-diskseq/2595.tmp-b7:1' failed: Read-only file system
[  579.624813][ T3309] udevd[3309]: symlink '../../loop3' '/dev/disk/by-diskseq/2598.tmp-b7:3' failed: Read-only file system
[  579.640127][ T3510] udevd[3510]: symlink '../../loop1' '/dev/disk/by-diskseq/2601.tmp-b7:1' failed: Read-only file system
[  579.654885][T20624] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  579.664993][T20624] EXT4-fs error (device loop0): ext4_quota_off:7219: inode #3: comm syz.0.5387: mark_inode_dirty error
[  579.696337][T20642] Cannot find del_set index 3 as target
[  579.719762][ T3309] udevd[3309]: symlink '../../loop3' '/dev/disk/by-diskseq/2600.tmp-b7:3' failed: Read-only file system
[  579.742351][T20653] loop3: detected capacity change from 0 to 1024
[  579.749975][T20653] EXT4-fs: Ignoring removed bh option
[  579.755518][T20653] EXT4-fs: inline encryption not supported
[  579.786100][T20653] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  579.807505][T20643] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[  579.842778][T20643] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  579.863663][T20643] System zones: 0-2, 18-18, 34-34
[  579.887548][T20643] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  579.889591][T20653] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  579.928272][T20660] loop1: detected capacity change from 0 to 512
[  579.939255][T20643] EXT4-fs (loop2): 1 truncate cleaned up
[  579.954792][T20643] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  579.955436][T13726] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  579.976704][T20660] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[  579.991154][T20653] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 2: comm syz.3.5396: lblock 2 mapped to illegal pblock 2 (length 1)
[  580.006284][T20660] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.5398: invalid indirect mapped block 2683928664 (level 1)
[  580.017141][T12580] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  580.020555][T20653] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 48: comm syz.3.5396: lblock 0 mapped to illegal pblock 48 (length 1)
[  580.032474][T20660] EXT4-fs (loop1): Remounting filesystem read-only
[  580.048752][T20665] netlink: 'syz.0.5402': attribute type 2 has an invalid length.
[  580.050298][T20660] EXT4-fs (loop1): 1 truncate cleaned up
[  580.057692][T20665] netlink: 'syz.0.5402': attribute type 1 has an invalid length.
[  580.064076][T20653] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.5396: Failed to acquire dquot type 0
[  580.071160][T20665] netlink: 199820 bytes leftover after parsing attributes in process `syz.0.5402'.
[  580.117068][T20653] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  580.132574][T20653] EXT4-fs error (device loop3): ext4_evict_inode:259: inode #11: comm syz.3.5396: mark_inode_dirty error
[  580.145245][T20667] SELinux:  unknown common r
[  580.150021][T20667] SELinux: failed to load policy
[  580.150410][T20660] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  580.176897][T20653] EXT4-fs warning (device loop3): ext4_evict_inode:262: couldn't mark inode dirty (err -117)
[  580.190778][T20653] EXT4-fs (loop3): 1 orphan inode deleted
[  580.196913][T20653] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  580.210679][ T5618] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:46: lblock 1 mapped to illegal pblock 1 (length 1)
[  580.235663][T20665] netlink: 'syz.0.5402': attribute type 13 has an invalid length.
[  580.249533][ T5618] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:46: Failed to release dquot type 0
[  580.279353][T20665] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  580.298616][T20682] loop2: detected capacity change from 0 to 512
[  580.301146][T20653] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  580.319522][T20680] loop4: detected capacity change from 0 to 512
[  580.321174][T20653] EXT4-fs error (device loop3): __ext4_get_inode_loc:4450: comm syz.3.5396: Invalid inode table block 1 in block_group 0
[  580.338569][T20683] 9pnet_fd: Insufficient options for proto=fd
[  580.366553][T20682] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  580.366724][T20680] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  580.384793][T20680] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  580.397361][T20653] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  580.409587][T20653] EXT4-fs error (device loop3): ext4_quota_off:7219: inode #3: comm syz.3.5396: mark_inode_dirty error
[  580.418712][T20680] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  580.434043][T20682] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5407'.
[  580.448076][T20682] Cannot find del_set index 3 as target
[  580.484668][T20680] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  580.522200][T20680] System zones: 0-2, 18-18, 34-34
[  580.540479][T20693] loop2: detected capacity change from 0 to 1024
[  580.547346][T20693] EXT4-fs: Ignoring removed bh option
[  580.552861][T20693] EXT4-fs: inline encryption not supported
[  580.563631][T20689] SELinux: failed to load policy
[  580.572070][T20680] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  580.611534][T20693] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  580.622862][T20680] EXT4-fs (loop4): 1 truncate cleaned up
[  580.634336][T20699] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  580.634617][T20693] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  580.645789][T20680] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  580.653383][T20693] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #3: block 2: comm syz.2.5411: lblock 2 mapped to illegal pblock 2 (length 1)
[  580.674724][T20699] SELinux: failed to load policy
[  580.680469][T20693] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #3: block 48: comm syz.2.5411: lblock 0 mapped to illegal pblock 48 (length 1)
[  580.698078][T20693] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.5411: Failed to acquire dquot type 0
[  580.718231][T20693] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  580.718519][T20697] SELinux:  unknown common r
[  580.742355][T20693] EXT4-fs error (device loop2): ext4_evict_inode:259: inode #11: comm syz.2.5411: mark_inode_dirty error
[  580.755442][T20697] SELinux: failed to load policy
[  580.761352][T20693] EXT4-fs warning (device loop2): ext4_evict_inode:262: couldn't mark inode dirty (err -117)
[  580.787109][T13552] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  580.797225][T20693] EXT4-fs (loop2): 1 orphan inode deleted
[  580.803266][ T5618] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:46: lblock 1 mapped to illegal pblock 1 (length 1)
[  580.805972][T20693] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  580.839752][T20704] netlink: 'syz.3.5418': attribute type 2 has an invalid length.
[  580.847634][T20704] netlink: 'syz.3.5418': attribute type 1 has an invalid length.
[  580.855205][ T5618] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:46: Failed to release dquot type 0
[  580.855415][T20704] netlink: 199820 bytes leftover after parsing attributes in process `syz.3.5418'.
[  580.881376][T13726] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  580.898788][T20693] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  580.917057][T20693] EXT4-fs error (device loop2): __ext4_get_inode_loc:4450: comm syz.2.5411: Invalid inode table block 1 in block_group 0
[  580.934987][T20712] loop1: detected capacity change from 0 to 512
[  580.941743][T20693] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  580.944811][T20712] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  580.960417][T20712] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  580.975537][T20693] EXT4-fs error (device loop2): ext4_quota_off:7219: inode #3: comm syz.2.5411: mark_inode_dirty error
[  580.998326][T20712] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  581.007933][T20712] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  581.016173][T20712] System zones: 0-2, 18-18, 34-34
[  581.024727][T20704] 8021q: adding VLAN 0 to HW filter on device bond0
[  581.031506][T20712] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  581.033449][T20704] 8021q: adding VLAN 0 to HW filter on device team0
[  581.065837][T20712] EXT4-fs (loop1): 1 truncate cleaned up
[  581.074498][T20704] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  581.148340][T20722] loop3: detected capacity change from 0 to 1024
[  581.161037][T20722] EXT4-fs: Ignoring removed bh option
[  581.166642][T20722] EXT4-fs: inline encryption not supported
[  581.195220][T20722] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  581.228419][T20724] SELinux: failed to load policy
[  581.276373][T20722] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  581.291341][T20722] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 2: comm syz.3.5423: lblock 2 mapped to illegal pblock 2 (length 1)
[  581.314825][T20722] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 48: comm syz.3.5423: lblock 0 mapped to illegal pblock 48 (length 1)
[  581.330989][T20735] loop2: detected capacity change from 0 to 1024
[  581.369257][T20737] loop1: detected capacity change from 0 to 1024
[  581.377103][T20737] EXT4-fs: Ignoring removed orlov option
[  581.402472][T20722] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.5423: Failed to acquire dquot type 0
[  581.416341][T20737] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  581.467541][T20722] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  581.478429][T20722] EXT4-fs error (device loop3): ext4_evict_inode:259: inode #11: comm syz.3.5423: mark_inode_dirty error
[  581.491808][T20735] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (52289!=20869)
[  581.513467][T20735] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  581.585735][T20722] EXT4-fs warning (device loop3): ext4_evict_inode:262: couldn't mark inode dirty (err -117)
[  581.613477][T20735] EXT4-fs (loop2): invalid journal inode
[  581.686018][T20722] EXT4-fs (loop3): 1 orphan inode deleted
[  581.701037][ T5618] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:46: lblock 1 mapped to illegal pblock 1 (length 1)
[  581.728269][ T5618] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:46: Failed to release dquot type 0
[  581.744183][T20722] EXT4-fs error (device loop3): __ext4_get_inode_loc:4450: comm syz.3.5423: Invalid inode table block 1 in block_group 0
[  581.758273][T20722] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  581.768228][T20722] EXT4-fs error (device loop3): ext4_quota_off:7219: inode #3: comm syz.3.5423: mark_inode_dirty error
[  581.780914][T20746] FAULT_INJECTION: forcing a failure.
[  581.780914][T20746] name failslab, interval 1, probability 0, space 0, times 0
[  581.793707][T20746] CPU: 1 UID: 0 PID: 20746 Comm: syz.1.5431 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(voluntary) 
[  581.793739][T20746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  581.793803][T20746] Call Trace:
[  581.793809][T20746]  <TASK>
[  581.793818][T20746]  __dump_stack+0x1d/0x30
[  581.793896][T20746]  dump_stack_lvl+0xe8/0x140
[  581.793920][T20746]  dump_stack+0x15/0x1b
[  581.793939][T20746]  should_fail_ex+0x265/0x280
[  581.793973][T20746]  should_failslab+0x8c/0xb0
[  581.794056][T20746]  kmem_cache_alloc_noprof+0x50/0x310
[  581.794075][T20746]  ? getname_flags+0x80/0x3b0
[  581.794105][T20746]  getname_flags+0x80/0x3b0
[  581.794134][T20746]  user_path_at+0x28/0x130
[  581.794152][T20746]  __se_sys_mount+0x25b/0x2e0
[  581.794211][T20746]  ? fput+0x8f/0xc0
[  581.794230][T20746]  __x64_sys_mount+0x67/0x80
[  581.794262][T20746]  x64_sys_call+0xd36/0x2fb0
[  581.794345][T20746]  do_syscall_64+0xd0/0x1a0
[  581.794366][T20746]  ? clear_bhb_loop+0x40/0x90
[  581.794385][T20746]  ? clear_bhb_loop+0x40/0x90
[  581.794404][T20746]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  581.794459][T20746] RIP: 0033:0x7ff724a2e969
[  581.794472][T20746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  581.794487][T20746] RSP: 002b:00007ff723097038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  581.794579][T20746] RAX: ffffffffffffffda RBX: 00007ff724c55fa0 RCX: 00007ff724a2e969
[  581.794658][T20746] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  581.794672][T20746] RBP: 00007ff723097090 R08: 0000000000000000 R09: 0000000000000000
[  581.794687][T20746] R10: 0000000000800000 R11: 0000000000000246 R12: 0000000000000001
[  581.794703][T20746] R13: 0000000000000000 R14: 00007ff724c55fa0 R15: 00007ffc850b4a18
[  581.794726][T20746]  </TASK>
[  582.043736][T20750] serio: Serial port ptm0
[  582.063351][T20753] loop3: detected capacity change from 0 to 512
[  582.070516][T20753] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  582.079670][T20753] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  582.089481][T20753] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended
[  582.105969][T20753] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  582.114337][T20753] System zones: 0-2, 18-18, 34-34
[  582.123020][T20753] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  582.145457][T20753] EXT4-fs (loop3): 1 truncate cleaned up
[  582.217944][T20767] SELinux:  unknown common r
[  582.237435][T20771] loop1: detected capacity change from 0 to 2048
[  582.252880][T20776] loop0: detected capacity change from 0 to 512
[  582.263327][T20767] SELinux: failed to load policy
[  582.288632][T20776] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  582.307212][T20782] FAULT_INJECTION: forcing a failure.
[  582.307212][T20782] name failslab, interval 1, probability 0, space 0, times 0
[  582.320030][T20782] CPU: 1 UID: 0 PID: 20782 Comm: syz.3.5445 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(voluntary) 
[  582.320132][T20782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  582.320149][T20782] Call Trace:
[  582.320157][T20782]  <TASK>
[  582.320167][T20782]  __dump_stack+0x1d/0x30
[  582.320195][T20782]  dump_stack_lvl+0xe8/0x140
[  582.320216][T20782]  dump_stack+0x15/0x1b
[  582.320246][T20782]  should_fail_ex+0x265/0x280
[  582.320288][T20782]  should_failslab+0x8c/0xb0
[  582.320329][T20782]  __kmalloc_noprof+0xa5/0x3e0
[  582.320468][T20782]  ? fib_create_info+0xbb1/0x1980
[  582.320513][T20782]  fib_create_info+0xbb1/0x1980
[  582.320557][T20782]  fib_table_insert+0x60/0xeb0
[  582.320582][T20782]  ? fib_trie_table+0xd0/0xf0
[  582.320681][T20782]  ? fib_new_table+0x1ac/0x1c0
[  582.320709][T20782]  inet_rtm_newroute+0xab/0x140
[  582.320808][T20782]  ? __pfx_inet_rtm_newroute+0x10/0x10
[  582.320839][T20782]  rtnetlink_rcv_msg+0x5fb/0x6d0
[  582.320875][T20782]  netlink_rcv_skb+0x120/0x220
[  582.320918][T20782]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  582.320950][T20782]  rtnetlink_rcv+0x1c/0x30
[  582.321006][T20782]  netlink_unicast+0x5a1/0x670
[  582.321039][T20782]  netlink_sendmsg+0x58b/0x6b0
[  582.321161][T20782]  ? __pfx_netlink_sendmsg+0x10/0x10
[  582.321182][T20782]  __sock_sendmsg+0x142/0x180
[  582.321213][T20782]  __sys_sendto+0x268/0x330
[  582.321319][T20782]  __x64_sys_sendto+0x76/0x90
[  582.321400][T20782]  x64_sys_call+0x2eb6/0x2fb0
[  582.321421][T20782]  do_syscall_64+0xd0/0x1a0
[  582.321515][T20782]  ? clear_bhb_loop+0x40/0x90
[  582.321537][T20782]  ? clear_bhb_loop+0x40/0x90
[  582.321559][T20782]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  582.321580][T20782] RIP: 0033:0x7f4650b9e969
[  582.321595][T20782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  582.321613][T20782] RSP: 002b:00007f464f207038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  582.321707][T20782] RAX: ffffffffffffffda RBX: 00007f4650dc5fa0 RCX: 00007f4650b9e969
[  582.321719][T20782] RDX: 0000000000000078 RSI: 0000200000000180 RDI: 0000000000000005
[  582.321732][T20782] RBP: 00007f464f207090 R08: 0000000000000000 R09: 0000000000000000
[  582.321744][T20782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  582.321756][T20782] R13: 0000000000000000 R14: 00007f4650dc5fa0 R15: 00007ffe65e48638
[  582.321844][T20782]  </TASK>
[  582.339460][T20771] EXT4-fs (loop1): failed to initialize system zone (-117)
[  582.368806][T20776] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5443'.
[  582.373536][T20771] EXT4-fs (loop1): mount failed
[  582.582738][T20776] Cannot find del_set index 3 as target
[  582.710309][T20795] loop1: detected capacity change from 0 to 1024
[  582.741131][T20795] EXT4-fs: Ignoring removed mblk_io_submit option
[  582.751887][T20795] EXT4-fs: Ignoring removed nobh option
[  582.757590][T20795] EXT4-fs: Ignoring removed bh option
[  582.815205][T20803] serio: Serial port ptm1
[  582.909362][T20811] loop1: detected capacity change from 0 to 512
[  582.916618][T20810] loop0: detected capacity change from 0 to 512
[  582.932507][T20811] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  582.941729][T20811] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  582.955138][T20810] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  582.964314][T20810] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  582.976601][T20811] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  583.003642][T20811] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  583.015365][T20810] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended
[  583.030721][T20811] System zones: 0-2, 18-18, 34-34
[  583.036581][T20811] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  583.051800][T20810] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  583.060044][T20810] System zones: 0-2, 18-18, 34-34
[  583.068007][T20815] SELinux:  unknown common r
[  583.072833][T20815] SELinux: failed to load policy
[  583.083826][T20811] EXT4-fs (loop1): 1 truncate cleaned up
[  583.095858][T20810] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  583.113826][T20810] EXT4-fs (loop0): 1 truncate cleaned up
[  583.214702][T20820] loop1: detected capacity change from 0 to 1024
[  583.241006][T20820] EXT4-fs: Ignoring removed bh option
[  583.246594][T20820] EXT4-fs: inline encryption not supported
[  583.273112][T20824] loop0: detected capacity change from 0 to 512
[  583.334194][T20820] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  583.350359][T20824] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  583.428393][T20820] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  583.458592][T20820] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 2: comm syz.1.5457: lblock 2 mapped to illegal pblock 2 (length 1)
[  583.473011][T20824] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5458'.
[  583.507037][T20820] __quota_error: 60 callbacks suppressed
[  583.507057][T20820] Quota error (device loop1): qtree_write_dquot: dquota write failed
[  583.530828][T20820] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 48: comm syz.1.5457: lblock 0 mapped to illegal pblock 48 (length 1)
[  583.559871][T20827] Cannot find del_set index 3 as target
[  583.605650][T20820] Quota error (device loop1): v2_write_file_info: Can't write info structure
[  583.614637][T20820] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.5457: Failed to acquire dquot type 0
[  583.641317][T20820] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  583.661826][T20820] EXT4-fs error (device loop1): ext4_evict_inode:259: inode #11: comm syz.1.5457: mark_inode_dirty error
[  583.673309][T20820] EXT4-fs warning (device loop1): ext4_evict_inode:262: couldn't mark inode dirty (err -117)
[  583.690759][T20820] EXT4-fs (loop1): 1 orphan inode deleted
[  583.701894][ T5618] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:46: lblock 1 mapped to illegal pblock 1 (length 1)
[  583.730643][ T5618] Quota error (device loop1): remove_tree: Can't read quota data block 1
[  583.739220][ T5618] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:46: Failed to release dquot type 0
[  583.772708][T20820] EXT4-fs error (device loop1): __ext4_get_inode_loc:4450: comm syz.1.5457: Invalid inode table block 1 in block_group 0
[  583.785779][T20820] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  583.805745][T20820] EXT4-fs error (device loop1): ext4_quota_off:7219: inode #3: comm syz.1.5457: mark_inode_dirty error
[  584.187566][T20844] loop4: detected capacity change from 0 to 256
[  584.288077][T20844] FAT-fs (loop4): Directory bread(block 64) failed
[  584.294706][T20844] FAT-fs (loop4): Directory bread(block 65) failed
[  584.301316][T20844] FAT-fs (loop4): Directory bread(block 66) failed
[  584.307867][T20844] FAT-fs (loop4): Directory bread(block 67) failed
[  584.314426][T20844] FAT-fs (loop4): Directory bread(block 68) failed
[  584.321028][T20844] FAT-fs (loop4): Directory bread(block 69) failed
[  584.327572][T20844] FAT-fs (loop4): Directory bread(block 70) failed
[  584.334269][T20844] FAT-fs (loop4): Directory bread(block 71) failed
[  584.340862][T20844] FAT-fs (loop4): Directory bread(block 72) failed
[  584.347376][T20844] FAT-fs (loop4): Directory bread(block 73) failed
[  584.685931][ T3309] udevd[3309]: symlink '../../loop4' '/dev/disk/by-diskseq/2639.tmp-b7:4' failed: Read-only file system
[  584.722387][ T3309] udevd[3309]: symlink '../../loop4' '/dev/disk/by-diskseq/2639.tmp-b7:4' failed: Read-only file system
[  584.960901][ T3309] udevd[3309]: symlink '../../loop2' '/dev/disk/by-diskseq/2621.tmp-b7:2' failed: Read-only file system
[  585.012850][ T3309] udevd[3309]: symlink '../../loop1' '/dev/disk/by-diskseq/2638.tmp-b7:1' failed: Read-only file system
[  585.026823][T20848] loop2: detected capacity change from 0 to 512
[  585.061518][T20850] loop1: detected capacity change from 0 to 512
[  585.077643][ T3309] udevd[3309]: symlink '../../loop2' '/dev/disk/by-diskseq/2640.tmp-b7:2' failed: Read-only file system
[  585.105769][T20850] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  585.115062][T20850] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  585.135789][ T3510] udevd[3510]: symlink '../../loop1' '/dev/disk/by-diskseq/2641.tmp-b7:1' failed: Read-only file system
[  585.163997][ T3309] udevd[3309]: symlink '../../loop2' '/dev/disk/by-diskseq/2640.tmp-b7:2' failed: Read-only file system
[  585.198450][T20850] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  585.212807][ T3510] udevd[3510]: symlink '../../loop1' '/dev/disk/by-diskseq/2641.tmp-b7:1' failed: Read-only file system
[  585.226402][   T29] audit: type=1400 audit(1747153962.316:14574): avc:  denied  { validate_trans } for  pid=20847 comm="syz.2.5464" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  585.251733][T20848] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5464'.
[  585.265889][ T3309] udevd[3309]: symlink '../../loop2' '/dev/disk/by-diskseq/2640.tmp-b7:2' failed: Read-only file system
[  585.287567][T20850] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  585.320856][T20850] System zones: 0-2, 18-18, 34-34
[  585.330039][ T3309] udevd[3309]: symlink '../../loop2' '/dev/disk/by-diskseq/2642.tmp-b7:2' failed: Read-only file system
[  585.351073][T20850] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  585.387174][T20850] EXT4-fs (loop1): 1 truncate cleaned up
[  585.531338][T20857] loop1: detected capacity change from 0 to 512
[  585.545288][T20855] loop2: detected capacity change from 0 to 8192
[  585.565514][T20855] vfat: Unknown parameter '01777777777777777777777ÿ'
[  585.572718][T20857] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  585.581827][T20857] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  585.608997][   T29] audit: type=1400 audit(1747153962.696:14575): avc:  denied  { getopt } for  pid=20854 comm="syz.2.5466" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  585.630059][T20857] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  585.639636][T20857] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  585.663369][T20857] System zones: 0-2, 18-18, 34-34
[  585.685586][T20857] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  585.752871][T20857] EXT4-fs (loop1): 1 truncate cleaned up
[  585.819591][T20870] loop0: detected capacity change from 0 to 1024
[  585.844283][T20870] EXT4-fs: Ignoring removed bh option
[  585.849761][T20870] EXT4-fs: inline encryption not supported
[  585.876326][T20870] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  585.925929][T20870] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  585.935460][T20870] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 2: comm syz.0.5471: lblock 2 mapped to illegal pblock 2 (length 1)
[  585.950441][T20870] Quota error (device loop0): qtree_write_dquot: dquota write failed
[  585.959028][T20870] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 48: comm syz.0.5471: lblock 0 mapped to illegal pblock 48 (length 1)
[  585.973980][T20870] Quota error (device loop0): v2_write_file_info: Can't write info structure
[  585.982861][T20870] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.5471: Failed to acquire dquot type 0
[  586.028884][T20870] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  586.058127][T20870] EXT4-fs error (device loop0): ext4_evict_inode:259: inode #11: comm syz.0.5471: mark_inode_dirty error
[  586.089841][T20870] EXT4-fs warning (device loop0): ext4_evict_inode:262: couldn't mark inode dirty (err -117)
[  586.132550][T20870] EXT4-fs (loop0): 1 orphan inode deleted
[  586.149763][ T5583] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:11: lblock 1 mapped to illegal pblock 1 (length 1)
[  586.221536][T20884] loop1: detected capacity change from 0 to 256
[  586.352582][T20884] FAT-fs (loop1): Directory bread(block 64) failed
[  586.359234][T20884] FAT-fs (loop1): Directory bread(block 65) failed
[  586.366423][T20884] FAT-fs (loop1): Directory bread(block 66) failed
[  586.373082][T20884] FAT-fs (loop1): Directory bread(block 67) failed
[  586.379908][T20884] FAT-fs (loop1): Directory bread(block 68) failed
[  586.386480][T20884] FAT-fs (loop1): Directory bread(block 69) failed
[  586.393042][T20884] FAT-fs (loop1): Directory bread(block 70) failed
[  586.399588][T20884] FAT-fs (loop1): Directory bread(block 71) failed
[  586.406233][T20884] FAT-fs (loop1): Directory bread(block 72) failed
[  586.413062][T20884] FAT-fs (loop1): Directory bread(block 73) failed
[  587.008423][   T29] audit: type=1400 audit(1747153964.096:14576): avc:  denied  { mounton } for  pid=20893 comm="syz.2.5478" path=2F3534352FE91F7189591E9233614B dev="tmpfs" ino=3043 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=sock_file permissive=1
[  587.118112][ T5583] Quota error (device loop0): remove_tree: Can't read quota data block 1
[  587.126835][ T5583] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:11: Failed to release dquot type 0
[  587.142150][T20895] 9pnet: Could not find request transport: 0xffffffffffffffff
[  587.191634][   T29] audit: type=1400 audit(1747153964.286:14577): avc:  denied  { create } for  pid=20893 comm="syz.2.5478" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  587.284415][T20870] EXT4-fs error (device loop0): __ext4_get_inode_loc:4450: comm syz.0.5471: Invalid inode table block 1 in block_group 0
[  587.297308][T20870] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  587.320726][T20870] EXT4-fs error (device loop0): ext4_quota_off:7219: inode #3: comm syz.0.5471: mark_inode_dirty error
[  587.352896][T20898] validate_nla: 1 callbacks suppressed
[  587.352916][T20898] netlink: 'syz.2.5479': attribute type 13 has an invalid length.
[  587.550962][T20900] FAULT_INJECTION: forcing a failure.
[  587.550962][T20900] name failslab, interval 1, probability 0, space 0, times 0
[  587.563657][T20900] CPU: 1 UID: 0 PID: 20900 Comm: syz.2.5480 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(voluntary) 
[  587.563692][T20900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  587.563760][T20900] Call Trace:
[  587.563766][T20900]  <TASK>
[  587.563774][T20900]  __dump_stack+0x1d/0x30
[  587.563796][T20900]  dump_stack_lvl+0xe8/0x140
[  587.563820][T20900]  dump_stack+0x15/0x1b
[  587.563918][T20900]  should_fail_ex+0x265/0x280
[  587.563972][T20900]  should_failslab+0x8c/0xb0
[  587.564011][T20900]  kmem_cache_alloc_node_noprof+0x57/0x320
[  587.564037][T20900]  ? __alloc_skb+0x101/0x320
[  587.564069][T20900]  __alloc_skb+0x101/0x320
[  587.564131][T20900]  hci_mgmt_cmd+0xfc/0x8a0
[  587.564159][T20900]  hci_sock_sendmsg+0x518/0x900
[  587.564288][T20900]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  587.564388][T20900]  __sock_sendmsg+0x142/0x180
[  587.564414][T20900]  sock_write_iter+0x165/0x1b0
[  587.564448][T20900]  aio_write+0x2e5/0x410
[  587.564528][T20900]  io_submit_one+0xac8/0x11b0
[  587.564566][T20900]  __se_sys_io_submit+0xfb/0x280
[  587.564737][T20900]  __x64_sys_io_submit+0x43/0x50
[  587.564773][T20900]  x64_sys_call+0xfc4/0x2fb0
[  587.564868][T20900]  do_syscall_64+0xd0/0x1a0
[  587.564898][T20900]  ? clear_bhb_loop+0x40/0x90
[  587.564926][T20900]  ? clear_bhb_loop+0x40/0x90
[  587.565107][T20900]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  587.565128][T20900] RIP: 0033:0x7f039927e969
[  587.565147][T20900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  587.565170][T20900] RSP: 002b:00007f03978e7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[  587.565197][T20900] RAX: ffffffffffffffda RBX: 00007f03994a5fa0 RCX: 00007f039927e969
[  587.565221][T20900] RDX: 0000200000000340 RSI: 0000000000000001 RDI: 00007f039947f000
[  587.565232][T20900] RBP: 00007f03978e7090 R08: 0000000000000000 R09: 0000000000000000
[  587.565243][T20900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  587.565255][T20900] R13: 0000000000000000 R14: 00007f03994a5fa0 R15: 00007ffe50b67f38
[  587.565276][T20900]  </TASK>
[  587.952414][T20904] loop3: detected capacity change from 0 to 1024
[  587.962974][T20904] EXT4-fs: Ignoring removed bh option
[  587.968447][T20904] EXT4-fs: inline encryption not supported
[  587.969919][T20908] loop2: detected capacity change from 0 to 512
[  587.982021][T20904] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  587.996754][T20904] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  588.007487][T20904] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 2: comm syz.3.5482: lblock 2 mapped to illegal pblock 2 (length 1)
[  588.025733][T20904] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 48: comm syz.3.5482: lblock 0 mapped to illegal pblock 48 (length 1)
[  588.033182][T20911] loop0: detected capacity change from 0 to 512
[  588.049759][T20904] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.5482: Failed to acquire dquot type 0
[  588.062213][T20911] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  588.076169][T20904] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  588.086157][T20904] EXT4-fs error (device loop3): ext4_evict_inode:259: inode #11: comm syz.3.5482: mark_inode_dirty error
[  588.097836][T20904] EXT4-fs warning (device loop3): ext4_evict_inode:262: couldn't mark inode dirty (err -117)
[  588.108177][T20904] EXT4-fs (loop3): 1 orphan inode deleted
[  588.115768][ T5583] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:11: lblock 1 mapped to illegal pblock 1 (length 1)
[  588.130885][ T5583] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:11: Failed to release dquot type 0
[  588.144868][T20908] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  588.164472][T20904] EXT4-fs error (device loop3): __ext4_get_inode_loc:4450: comm syz.3.5482: Invalid inode table block 1 in block_group 0
[  588.179623][T20911] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5485'.
[  588.182354][T20908] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5484'.
[  588.189028][T20904] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  588.244233][T20904] EXT4-fs error (device loop3): ext4_quota_off:7219: inode #3: comm syz.3.5482: mark_inode_dirty error
[  588.259582][T20916] loop1: detected capacity change from 0 to 256
[  588.286569][T20916] FAT-fs (loop1): Directory bread(block 64) failed
[  588.293327][T20916] FAT-fs (loop1): Directory bread(block 65) failed
[  588.299953][T20916] FAT-fs (loop1): Directory bread(block 66) failed
[  588.306638][T20916] FAT-fs (loop1): Directory bread(block 67) failed
[  588.313260][T20916] FAT-fs (loop1): Directory bread(block 68) failed
[  588.319852][T20916] FAT-fs (loop1): Directory bread(block 69) failed
[  588.326526][T20916] FAT-fs (loop1): Directory bread(block 70) failed
[  588.333084][T20916] FAT-fs (loop1): Directory bread(block 71) failed
[  588.339650][T20916] FAT-fs (loop1): Directory bread(block 72) failed
[  588.346258][T20916] FAT-fs (loop1): Directory bread(block 73) failed
[  588.523989][T20908] Cannot find del_set index 3 as target
[  588.940798][T20928] FAULT_INJECTION: forcing a failure.
[  588.940798][T20928] name failslab, interval 1, probability 0, space 0, times 0
[  588.953579][T20928] CPU: 1 UID: 0 PID: 20928 Comm: syz.4.5490 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(voluntary) 
[  588.953658][T20928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  588.953674][T20928] Call Trace:
[  588.953683][T20928]  <TASK>
[  588.953695][T20928]  __dump_stack+0x1d/0x30
[  588.953717][T20928]  dump_stack_lvl+0xe8/0x140
[  588.953740][T20928]  dump_stack+0x15/0x1b
[  588.953764][T20928]  should_fail_ex+0x265/0x280
[  588.953811][T20928]  should_failslab+0x8c/0xb0
[  588.953883][T20928]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  588.953974][T20928]  ? kvasprintf_const+0xb3/0x130
[  588.954012][T20928]  kvasprintf+0x8a/0x110
[  588.954050][T20928]  kvasprintf_const+0xb3/0x130
[  588.954114][T20928]  kobject_set_name_vargs+0x44/0xe0
[  588.954157][T20928]  dev_set_name+0x83/0xb0
[  588.954243][T20928]  ? wakeup_source_sysfs_add+0xfe/0x1b0
[  588.954282][T20928]  ? device_initialize+0x1fe/0x210
[  588.954382][T20928]  wakeup_source_sysfs_add+0x110/0x1b0
[  588.954457][T20928]  wakeup_source_register+0xfd/0x240
[  588.954482][T20928]  ep_insert+0x7fe/0xd10
[  588.954515][T20928]  do_epoll_ctl+0x6c3/0x870
[  588.954551][T20928]  __x64_sys_epoll_ctl+0xcb/0x100
[  588.954587][T20928]  x64_sys_call+0x26ef/0x2fb0
[  588.954683][T20928]  do_syscall_64+0xd0/0x1a0
[  588.954714][T20928]  ? clear_bhb_loop+0x40/0x90
[  588.954741][T20928]  ? clear_bhb_loop+0x40/0x90
[  588.954849][T20928]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  588.954877][T20928] RIP: 0033:0x7fec7697e969
[  588.954893][T20928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  588.955003][T20928] RSP: 002b:00007fec74fe7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[  588.955024][T20928] RAX: ffffffffffffffda RBX: 00007fec76ba5fa0 RCX: 00007fec7697e969
[  588.955041][T20928] RDX: 0000000000000004 RSI: 0000000000000001 RDI: 0000000000000006
[  588.955056][T20928] RBP: 00007fec74fe7090 R08: 0000000000000000 R09: 0000000000000000
[  588.955072][T20928] R10: 0000200000000340 R11: 0000000000000246 R12: 0000000000000001
[  588.955087][T20928] R13: 0000000000000000 R14: 00007fec76ba5fa0 R15: 00007fffba5e1278
[  588.955151][T20928]  </TASK>
[  589.666453][T20942] loop3: detected capacity change from 0 to 256
[  589.698546][T20942] FAT-fs (loop3): Directory bread(block 64) failed
[  589.705330][T20942] FAT-fs (loop3): Directory bread(block 65) failed
[  589.711995][T20942] FAT-fs (loop3): Directory bread(block 66) failed
[  589.718607][T20942] FAT-fs (loop3): Directory bread(block 67) failed
[  589.725287][T20942] FAT-fs (loop3): Directory bread(block 68) failed
[  589.731867][T20942] FAT-fs (loop3): Directory bread(block 69) failed
[  589.738518][T20942] FAT-fs (loop3): Directory bread(block 70) failed
[  589.745183][T20942] FAT-fs (loop3): Directory bread(block 71) failed
[  589.751797][T20942] FAT-fs (loop3): Directory bread(block 72) failed
[  589.758378][T20942] FAT-fs (loop3): Directory bread(block 73) failed
[  589.794896][ T3309] udevd[3309]: symlink '../../loop3' '/dev/disk/by-diskseq/2660.tmp-b7:3' failed: Read-only file system
[  589.869092][ T3309] udevd[3309]: symlink '../../loop3' '/dev/disk/by-diskseq/2660.tmp-b7:3' failed: Read-only file system
[  589.989245][ T3510] udevd[3510]: symlink '../../loop1' '/dev/disk/by-diskseq/2658.tmp-b7:1' failed: Read-only file system
[  590.092563][T20945] loop1: detected capacity change from 0 to 1024
[  590.159312][ T3510] udevd[3510]: symlink '../../loop1' '/dev/disk/by-diskseq/2658.tmp-b7:1' failed: Read-only file system
[  590.178244][T20945] EXT4-fs: Ignoring removed orlov option
[  590.263419][T20945] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  590.298228][ T3309] udevd[3309]: symlink '../../loop1' '/dev/disk/by-diskseq/2661.tmp-b7:1' failed: Read-only file system
[  590.339340][ T3309] udevd[3309]: symlink '../../loop1' '/dev/disk/by-diskseq/2662.tmp-b7:1' failed: Read-only file system
[  590.463913][ T3309] udevd[3309]: symlink '../../loop1' '/dev/disk/by-diskseq/2662.tmp-b7:1' failed: Read-only file system
[  590.538058][ T3309] udevd[3309]: symlink '../../loop1' '/dev/disk/by-diskseq/2662.tmp-b7:1' failed: Read-only file system
[  590.633319][ T3309] udevd[3309]: symlink '../../loop1' '/dev/disk/by-diskseq/2663.tmp-b7:1' failed: Read-only file system
[  590.711380][T20957] SELinux: failed to load policy
[  590.783332][ T3309] udevd[3309]: symlink '../../loop1' '/dev/disk/by-diskseq/2663.tmp-b7:1' failed: Read-only file system
[  590.829018][T20959] loop1: detected capacity change from 0 to 512
[  590.866878][T20959] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  590.943243][T20959] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5498'.
[  591.033461][T20960] Cannot find del_set index 3 as target
[  591.176303][T20963] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.5499'.
[  591.609315][T20980] loop4: detected capacity change from 0 to 512
[  591.681338][T20980] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  591.690514][T20980] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  591.721207][T20980] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  591.730434][T20980] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  591.738754][T20980] System zones: 0-2, 18-18, 34-34
[  591.790808][T20980] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  591.851042][T20980] EXT4-fs (loop4): 1 truncate cleaned up
[  592.909383][T20992] loop4: detected capacity change from 0 to 1024
[  592.930876][T20992] EXT4-fs: Ignoring removed bh option
[  592.936453][T20992] EXT4-fs: inline encryption not supported
[  592.971284][T20992] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  593.011825][T20992] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  593.029389][T20992] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 2: comm syz.4.5508: lblock 2 mapped to illegal pblock 2 (length 1)
[  593.071310][T20992] __quota_error: 4 callbacks suppressed
[  593.071394][T20992] Quota error (device loop4): qtree_write_dquot: dquota write failed
[  593.114482][T20992] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 48: comm syz.4.5508: lblock 0 mapped to illegal pblock 48 (length 1)
[  593.160509][T20992] Quota error (device loop4): v2_write_file_info: Can't write info structure
[  593.169423][T20992] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.5508: Failed to acquire dquot type 0
[  593.221192][T20992] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  593.263175][T20992] EXT4-fs error (device loop4): ext4_evict_inode:259: inode #11: comm syz.4.5508: mark_inode_dirty error
[  593.281151][T20992] EXT4-fs warning (device loop4): ext4_evict_inode:262: couldn't mark inode dirty (err -117)
[  593.291443][T20992] EXT4-fs (loop4): 1 orphan inode deleted
[  593.298015][ T5584] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:12: lblock 1 mapped to illegal pblock 1 (length 1)
[  593.314507][ T5584] Quota error (device loop4): remove_tree: Can't read quota data block 1
[  593.323043][ T5584] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:12: Failed to release dquot type 0
[  593.365189][T20996] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  593.374198][T20996] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  593.391916][T20992] EXT4-fs error (device loop4): __ext4_get_inode_loc:4450: comm syz.4.5508: Invalid inode table block 1 in block_group 0
[  593.421306][T20992] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  593.441516][T20992] EXT4-fs error (device loop4): ext4_quota_off:7219: inode #3: comm syz.4.5508: mark_inode_dirty error
[  593.510975][T20996] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  593.519464][T20996] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  593.550255][T21001] loop2: detected capacity change from 0 to 512
[  593.562742][T21001] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  593.574365][T21001] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5510'.
[  593.604891][T21001] Cannot find del_set index 3 as target
[  593.668758][T21008] netlink: 'syz.2.5515': attribute type 2 has an invalid length.
[  593.676875][T21008] netlink: 'syz.2.5515': attribute type 1 has an invalid length.
[  593.684742][T21008] netlink: 199820 bytes leftover after parsing attributes in process `syz.2.5515'.
[  593.743829][T21011] loop4: detected capacity change from 0 to 2048
[  593.756664][T21008] netlink: 'syz.2.5515': attribute type 13 has an invalid length.
[  593.778862][T21008] 8021q: adding VLAN 0 to HW filter on device bond0
[  593.787166][T21008] 8021q: adding VLAN 0 to HW filter on device team0
[  593.797286][T21008] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  593.863629][T21011] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5516: bg 0: block 234: padding at end of block bitmap is not set
[  593.898758][T21011] EXT4-fs (loop4): Remounting filesystem read-only
[  593.941737][T21024] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  593.951052][T21024] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  594.303054][T21040] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  594.312911][T21040] SELinux: failed to load policy
[  594.342486][T21041] loop0: detected capacity change from 0 to 1024
[  594.350017][T21041] EXT4-fs: Ignoring removed mblk_io_submit option
[  594.356562][T21041] EXT4-fs: Ignoring removed nobh option
[  594.362282][T21041] EXT4-fs: Ignoring removed bh option
[  594.742296][T21049] SELinux: failed to load policy
[  594.793962][T21053] SELinux: failed to load policy
[  594.816169][ T3510] udevd[3510]: symlink '../../loop3' '/dev/disk/by-diskseq/2666.tmp-b7:3' failed: Read-only file system
[  594.839362][T21056] loop4: detected capacity change from 0 to 1024
[  594.848217][T21056] EXT4-fs: Ignoring removed bh option
[  594.853691][T21056] EXT4-fs: inline encryption not supported
[  594.865204][ T3309] udevd[3309]: symlink '../../loop4' '/dev/disk/by-diskseq/2676.tmp-b7:4' failed: Read-only file system
[  594.877744][ T3309] udevd[3309]: symlink '../../loop4' '/dev/disk/by-label/syzkal\xff\xff\xff\xff\xff\xff\xff\x7f.tmp-b7:4' failed: Read-only file system
[  594.898862][T21059] loop3: detected capacity change from 0 to 512
[  594.911471][T21059] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  594.920740][T21059] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  594.929667][T21059] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended
[  594.938920][T21059] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  594.947561][T21056] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  594.962021][ T3510] udevd[3510]: symlink '../../loop3' '/dev/disk/by-diskseq/2677.tmp-b7:3' failed: Read-only file system
[  594.976157][ T3510] udevd[3510]: symlink '../../loop3' '/dev/disk/by-label/syzkaller.tmp-b7:3' failed: Read-only file system
[  594.987733][T21059] System zones: 0-2, 18-18, 34-34
[  595.091639][T21059] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  595.127600][T21064] loop2: detected capacity change from 0 to 1024
[  595.135119][T21064] EXT4-fs: Ignoring removed mblk_io_submit option
[  595.141670][T21064] EXT4-fs: Ignoring removed nobh option
[  595.147337][T21064] EXT4-fs: Ignoring removed bh option
[  595.224196][ T5257] udevd[5257]: symlink '../../loop3' '/dev/disk/by-label/syzkaller.tmp-b7:0' failed: Read-only file system
[  595.240230][T21056] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  595.282087][ T3510] udevd[3510]: symlink '../../loop2' '/dev/disk/by-diskseq/2678.tmp-b7:2' failed: Read-only file system
[  595.293658][ T3309] udevd[3309]: symlink '../../loop3' '/dev/disk/by-diskseq/2677.tmp-b7:3' failed: Read-only file system
[  595.314292][T21059] EXT4-fs (loop3): 1 truncate cleaned up
[  595.326199][T21056] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 2: comm syz.4.5530: lblock 2 mapped to illegal pblock 2 (length 1)
[  595.360053][ T5257] udevd[5257]: symlink '../../loop0' '/dev/disk/by-diskseq/2674.tmp-b7:0' failed: Read-only file system
[  595.378053][ T3510] udevd[3510]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system
[  595.413476][T21056] Quota error (device loop4): qtree_write_dquot: dquota write failed
[  595.438210][T21056] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 48: comm syz.4.5530: lblock 0 mapped to illegal pblock 48 (length 1)
[  595.453555][T21056] Quota error (device loop4): v2_write_file_info: Can't write info structure
[  595.462482][T21056] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.5530: Failed to acquire dquot type 0
[  595.499790][T21056] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  595.539133][T21074] netlink: 'syz.0.5534': attribute type 13 has an invalid length.
[  595.560671][T21056] EXT4-fs error (device loop4): ext4_evict_inode:259: inode #11: comm syz.4.5530: mark_inode_dirty error
[  595.591563][T21056] EXT4-fs warning (device loop4): ext4_evict_inode:262: couldn't mark inode dirty (err -117)
[  595.606436][T21074] tipc: Resetting bearer <eth:ip6_vti0>
[  595.610812][T21056] EXT4-fs (loop4): 1 orphan inode deleted
[  595.618704][ T5580] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:9: lblock 1 mapped to illegal pblock 1 (length 1)
[  595.640705][ T5580] Quota error (device loop4): remove_tree: Can't read quota data block 1
[  595.649568][ T5580] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:9: Failed to release dquot type 0
[  595.675888][T21074] bridge0: port 4(dummy0) entered disabled state
[  595.676575][T21056] EXT4-fs error (device loop4): __ext4_get_inode_loc:4450: comm syz.4.5530: Invalid inode table block 1 in block_group 0
[  595.710797][T21056] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  595.740901][T21056] EXT4-fs error (device loop4): ext4_quota_off:7219: inode #3: comm syz.4.5530: mark_inode_dirty error
[  596.005648][T21086] loop4: detected capacity change from 0 to 512
[  596.024343][T21086] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  596.092117][T21086] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5537'.
[  596.148011][T21089] Cannot find del_set index 3 as target
[  596.989235][T21102] loop1: detected capacity change from 0 to 512
[  597.062156][T21102] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[  597.110153][T21102] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.5543: invalid indirect mapped block 2683928664 (level 1)
[  597.195127][T21102] EXT4-fs (loop1): Remounting filesystem read-only
[  597.223059][T21115] loop0: detected capacity change from 0 to 1024
[  597.229968][T21102] EXT4-fs (loop1): 1 truncate cleaned up
[  597.291275][T21102] EXT4-fs mount: 40 callbacks suppressed
[  597.291369][T21102] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  597.351411][T21115] EXT4-fs: Ignoring removed orlov option
[  597.458101][T21115] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  597.634094][T21118] 9pnet_fd: Insufficient options for proto=fd
[  597.851526][T21115] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  597.916976][T13248] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  598.012224][T13552] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  598.047374][T21124] loop2: detected capacity change from 0 to 1024
[  598.096900][T21124] EXT4-fs: Ignoring removed bh option
[  598.102475][T21124] EXT4-fs: inline encryption not supported
[  598.121831][T21124] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  598.137228][T21124] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  598.154406][T21124] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #3: block 2: comm syz.2.5549: lblock 2 mapped to illegal pblock 2 (length 1)
[  598.193727][T21132] netlink: 'syz.1.5550': attribute type 13 has an invalid length.
[  598.210970][T21124] Quota error (device loop2): qtree_write_dquot: dquota write failed
[  598.228045][T21124] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #3: block 48: comm syz.2.5549: lblock 0 mapped to illegal pblock 48 (length 1)
[  598.254837][T21124] Quota error (device loop2): v2_write_file_info: Can't write info structure
[  598.263989][T21124] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.5549: Failed to acquire dquot type 0
[  598.291840][T21124] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  598.304959][T21124] EXT4-fs error (device loop2): ext4_evict_inode:259: inode #11: comm syz.2.5549: mark_inode_dirty error
[  598.317889][T21124] EXT4-fs warning (device loop2): ext4_evict_inode:262: couldn't mark inode dirty (err -117)
[  598.342121][T21124] EXT4-fs (loop2): 1 orphan inode deleted
[  598.354648][T21124] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  598.367392][ T5584] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:12: lblock 1 mapped to illegal pblock 1 (length 1)
[  598.382290][ T5584] Quota error (device loop2): remove_tree: Can't read quota data block 1
[  598.390787][ T5584] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:12: Failed to release dquot type 0
[  598.403727][T21124] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  598.421153][T21124] EXT4-fs error (device loop2): __ext4_get_inode_loc:4450: comm syz.2.5549: Invalid inode table block 1 in block_group 0
[  598.550741][T21124] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  598.567852][T21124] EXT4-fs error (device loop2): ext4_quota_off:7219: inode #3: comm syz.2.5549: mark_inode_dirty error
[  598.981082][T21139] SELinux: failed to load policy
[  599.403588][   T29] audit: type=1326 audit(1747153976.496:14579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21152 comm="syz.0.5556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb28ce969 code=0x7ffc0000
[  599.427330][   T29] audit: type=1326 audit(1747153976.496:14580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21152 comm="syz.0.5556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb28ce969 code=0x7ffc0000
[  599.505058][T21153] loop0: detected capacity change from 0 to 2048
[  599.513507][   T29] audit: type=1326 audit(1747153976.556:14581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21152 comm="syz.0.5556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fdcb28ce969 code=0x7ffc0000
[  599.537083][   T29] audit: type=1326 audit(1747153976.556:14582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21152 comm="syz.0.5556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb28ce969 code=0x7ffc0000
[  599.560754][   T29] audit: type=1326 audit(1747153976.556:14583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21152 comm="syz.0.5556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb28ce969 code=0x7ffc0000
[  599.584465][   T29] audit: type=1326 audit(1747153976.556:14584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21152 comm="syz.0.5556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fdcb28ce969 code=0x7ffc0000
[  599.608163][   T29] audit: type=1326 audit(1747153976.556:14585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21152 comm="syz.0.5556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb28ce969 code=0x7ffc0000
[  599.754949][T21153] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  599.881780][T21153] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  599.931272][T21158] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000.
[  600.022508][T13248] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  600.051540][ T3309] udevd[3309]: symlink '../../loop0' '/dev/disk/by-diskseq/2691.tmp-b7:0' failed: Read-only file system
[  600.074513][ T3309] udevd[3309]: symlink '../../loop0' '/dev/disk/by-diskseq/2691.tmp-b7:0' failed: Read-only file system
[  600.105547][ T3510] udevd[3510]: symlink '../../loop3' '/dev/disk/by-diskseq/2680.tmp-b7:3' failed: Read-only file system
[  600.123086][ T3309] udevd[3309]: symlink '../../loop0' '/dev/disk/by-diskseq/2691.tmp-b7:0' failed: Read-only file system
[  600.219942][ T3309] udevd[3309]: symlink '../../loop3' '/dev/disk/by-diskseq/2680.tmp-b7:3' failed: Read-only file system
[  600.239490][ T3510] udevd[3510]: symlink '../../loop0' '/dev/disk/by-diskseq/2692.tmp-b7:0' failed: Read-only file system
[  600.316616][ T3510] udevd[3510]: symlink '../../loop0' '/dev/disk/by-diskseq/2692.tmp-b7:0' failed: Read-only file system
[  600.318493][ T5257] udevd[5257]: symlink '../../loop3' '/dev/disk/by-diskseq/2680.tmp-b7:3' failed: Read-only file system
[  600.339883][ T3309] udevd[3309]: symlink '../../loop2' '/dev/disk/by-diskseq/2690.tmp-b7:2' failed: Read-only file system
[  600.356529][T21172] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  600.369269][T21171] loop2: detected capacity change from 0 to 1024
[  600.379684][T21172] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  600.391764][ T3309] udevd[3309]: symlink '../../loop2' '/dev/disk/by-diskseq/2693.tmp-b7:2' failed: Read-only file system
[  600.411472][T21171] EXT4-fs: Ignoring removed orlov option
[  600.416750][T21175] loop4: detected capacity change from 0 to 512
[  600.428398][T21171] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  600.519412][T21172] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  600.527980][T21172] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  600.542528][T21175] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[  600.551352][T21175] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.5558: invalid indirect mapped block 2683928664 (level 1)
[  600.566294][T21175] EXT4-fs (loop4): Remounting filesystem read-only
[  600.573602][T21175] EXT4-fs (loop4): 1 truncate cleaned up
[  600.580367][T21171] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  600.593706][T21175] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  600.759989][T12580] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  601.037469][T21186] loop2: detected capacity change from 0 to 512
[  601.070309][T21186] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  601.079575][T21186] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  601.113715][T13726] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  601.136057][T21186] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[  601.150899][T21186] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  601.169450][T21186] System zones: 0-2, 18-18, 34-34
[  601.175255][T21186] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  601.190180][T21191] loop4: detected capacity change from 0 to 1024
[  601.208387][T21191] EXT4-fs: Ignoring removed orlov option
[  601.219092][T21191] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  601.230816][T21186] EXT4-fs (loop2): 1 truncate cleaned up
[  601.237296][T21186] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  601.312029][T21191] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  601.411480][T21199] loop3: detected capacity change from 0 to 256
[  601.484466][T13726] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  601.509366][T21199] FAT-fs (loop3): Directory bread(block 64) failed
[  601.516106][T21199] FAT-fs (loop3): Directory bread(block 65) failed
[  601.522710][T21199] FAT-fs (loop3): Directory bread(block 66) failed
[  601.529305][T21199] FAT-fs (loop3): Directory bread(block 67) failed
[  601.535998][T21199] FAT-fs (loop3): Directory bread(block 68) failed
[  601.542539][T21199] FAT-fs (loop3): Directory bread(block 69) failed
[  601.549214][T21199] FAT-fs (loop3): Directory bread(block 70) failed
[  601.555792][T21199] FAT-fs (loop3): Directory bread(block 71) failed
[  601.562400][T21199] FAT-fs (loop3): Directory bread(block 72) failed
[  601.569009][T21199] FAT-fs (loop3): Directory bread(block 73) failed
[  601.610377][T12580] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  602.408755][T21207] loop1: detected capacity change from 0 to 1024
[  602.416118][T21207] EXT4-fs: Ignoring removed mblk_io_submit option
[  602.422767][T21207] EXT4-fs: Ignoring removed nobh option
[  602.428411][T21207] EXT4-fs: Ignoring removed bh option
[  602.613828][T21207] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  602.829933][T21220] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  602.943536][T21220] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  603.032805][T13552] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  603.056369][T21220] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  603.065199][T21220] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  603.157392][T21226] loop1: detected capacity change from 0 to 1024
[  603.167704][T21228] loop3: detected capacity change from 0 to 512
[  603.181133][T21226] EXT4-fs: Ignoring removed bh option
[  603.186690][T21226] EXT4-fs: inline encryption not supported
[  603.194008][T21226] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  603.215858][T21226] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  603.221232][T21228] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  603.244663][T21226] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 2: comm syz.1.5578: lblock 2 mapped to illegal pblock 2 (length 1)
[  603.371065][T21228] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.5579: invalid indirect mapped block 2683928664 (level 1)
[  603.386402][T21228] EXT4-fs (loop3): Remounting filesystem read-only
[  603.397266][T21228] EXT4-fs (loop3): 1 truncate cleaned up
[  603.403199][T21226] __quota_error: 78 callbacks suppressed
[  603.403215][T21226] Quota error (device loop1): qtree_write_dquot: dquota write failed
[  603.419647][T21228] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  603.436648][T21226] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 48: comm syz.1.5578: lblock 0 mapped to illegal pblock 48 (length 1)
[  603.458484][T21226] Quota error (device loop1): v2_write_file_info: Can't write info structure
[  603.467446][T21226] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.5578: Failed to acquire dquot type 0
[  603.516391][T21226] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  603.536231][T21226] EXT4-fs error (device loop1): ext4_evict_inode:259: inode #11: comm syz.1.5578: mark_inode_dirty error
[  603.558013][T21226] EXT4-fs warning (device loop1): ext4_evict_inode:262: couldn't mark inode dirty (err -117)
[  603.568439][T21226] EXT4-fs (loop1): 1 orphan inode deleted
[  603.574647][T21226] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  603.598395][ T5618] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:46: lblock 1 mapped to illegal pblock 1 (length 1)
[  603.674594][ T5618] Quota error (device loop1): remove_tree: Can't read quota data block 1
[  603.683246][ T5618] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:46: Failed to release dquot type 0
[  603.687291][T21238] loop0: detected capacity change from 0 to 1024
[  603.729213][T21226] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  603.738743][T21226] EXT4-fs error (device loop1): __ext4_get_inode_loc:4450: comm syz.1.5578: Invalid inode table block 1 in block_group 0
[  603.746737][T21238] EXT4-fs: Ignoring removed orlov option
[  603.758973][T12165] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  603.768364][T21226] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  603.778426][T21226] EXT4-fs error (device loop1): ext4_quota_off:7219: inode #3: comm syz.1.5578: mark_inode_dirty error
[  603.779274][T21238] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  603.839047][T21238] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  603.851707][   T29] audit: type=1326 audit(1747153980.936:14664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21235 comm="syz.4.5582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec7697e969 code=0x7ffc0000
[  603.875380][   T29] audit: type=1326 audit(1747153980.936:14665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21235 comm="syz.4.5582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec7697e969 code=0x7ffc0000
[  603.883526][T21240] tipc: Started in network mode
[  603.899091][   T29] audit: type=1326 audit(1747153980.936:14666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21235 comm="syz.4.5582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec7697e969 code=0x7ffc0000
[  603.904000][T21240] tipc: Node identity ac14140f, cluster identity 4711
[  603.927594][   T29] audit: type=1326 audit(1747153980.946:14667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21235 comm="syz.4.5582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec7697e969 code=0x7ffc0000
[  603.934816][T21240] tipc: New replicast peer: 10.1.1.2
[  603.957953][   T29] audit: type=1326 audit(1747153980.946:14668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21235 comm="syz.4.5582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec7697e969 code=0x7ffc0000
[  603.963283][T21240] tipc: Enabled bearer <udp:syz0>, priority 10
[  603.986930][   T29] audit: type=1326 audit(1747153980.946:14669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21235 comm="syz.4.5582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec7697e969 code=0x7ffc0000
[  604.018279][   T29] audit: type=1326 audit(1747153980.946:14670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21235 comm="syz.4.5582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec7697e969 code=0x7ffc0000
[  604.045849][T13248] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  604.135357][T21250] SELinux: ebitmap: truncated map
[  604.153059][T21250] SELinux: failed to load policy
[  604.523164][T21265] loop2: detected capacity change from 0 to 512
[  604.556798][T21265] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  604.565935][T21265] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  604.604998][T21265] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[  604.767518][T21265] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  604.775694][T21265] System zones: 0-2, 18-18, 34-34
[  604.787071][T21265] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  604.802893][T21274] SELinux: ebitmap: truncated map
[  604.808259][T21274] SELinux: failed to load policy
[  604.814008][T21265] EXT4-fs (loop2): 1 truncate cleaned up
[  604.820138][T21265] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  604.853857][T12580] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  604.915606][T21277] loop4: detected capacity change from 0 to 1024
[  604.975405][T21282] netlink: 'syz.0.5594': attribute type 2 has an invalid length.
[  604.983326][T21282] netlink: 'syz.0.5594': attribute type 1 has an invalid length.
[  604.991227][T21282] netlink: 199820 bytes leftover after parsing attributes in process `syz.0.5594'.
[  605.001685][T21277] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  605.023389][T21287] loop2: detected capacity change from 0 to 1024
[  605.053207][T21287] EXT4-fs: Ignoring removed orlov option
[  605.059598][T13726] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  605.062496][ T3309] udevd[3309]: symlink '../../loop2' '/dev/disk/by-diskseq/2714.tmp-b7:2' failed: Read-only file system
[  605.080649][ T3391] tipc: Node number set to 2886997007
[  605.081217][T21290] netlink: 'syz.0.5594': attribute type 13 has an invalid length.
[  605.094839][T21287] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  605.105347][ T3309] udevd[3309]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system
[  605.124900][T21289] SELinux: ebitmap: truncated map
[  605.124981][ T3309] udevd[3309]: symlink '../../loop2' '/dev/disk/by-diskseq/2714.tmp-b7:2' failed: Read-only file system
[  605.142837][ T3309] udevd[3309]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system
[  605.147920][ T3510] udevd[3510]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:4' failed: Read-only file system
[  605.156101][T21289] SELinux: failed to load policy
[  605.171472][T21287] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  605.187134][ T3510] udevd[3510]: symlink '../../loop4' '/dev/disk/by-diskseq/2713.tmp-b7:4' failed: Read-only file system
[  605.209238][T12580] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  605.213787][T21290] 8021q: adding VLAN 0 to HW filter on device bond0
[  605.227032][ T3309] udevd[3309]: symlink '../../loop4' '/dev/disk/by-diskseq/2713.tmp-b7:4' failed: Read-only file system
[  605.240121][T21290] 8021q: adding VLAN 0 to HW filter on device team0
[  605.249162][ T3510] udevd[3510]: symlink '../../loop2' '/dev/disk/by-diskseq/2714.tmp-b7:2' failed: Read-only file system
[  605.264135][ T3309] udevd[3309]: symlink '../../loop4' '/dev/disk/by-diskseq/2715.tmp-b7:4' failed: Read-only file system
[  605.280077][T21290] bridge0: port 4(dummy0) entered blocking state
[  605.286578][T21290] bridge0: port 4(dummy0) entered forwarding state
[  605.289793][ T5257] udevd[5257]: symlink '../../loop3' '/dev/disk/by-diskseq/2708.tmp-b7:3' failed: Read-only file system
[  605.313159][T21290] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  605.404295][T21301] SELinux: failed to load policy
[  605.457539][T21307] loop2: detected capacity change from 0 to 512
[  605.466906][T21309] loop4: detected capacity change from 0 to 512
[  605.473466][T21307] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  605.482537][T21307] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  605.496647][T21309] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  605.519846][T21307] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[  605.532750][T21309] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5603'.
[  605.538022][T21313] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5605'.
[  605.554212][T21297] netlink: 'syz.3.5599': attribute type 13 has an invalid length.
[  605.562783][T21307] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  605.570208][T21309] Cannot find del_set index 3 as target
[  605.570888][T21307] System zones: 0-2, 18-18, 34-34
[  605.586575][T21313] loop1: detected capacity change from 0 to 512
[  605.594239][T21307] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  605.612788][T21307] EXT4-fs (loop2): 1 truncate cleaned up
[  605.619276][T21307] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  605.638461][T21313] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  605.647755][T21313] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  605.657771][T21320] netlink: 'syz.4.5606': attribute type 4 has an invalid length.
[  605.667166][T21313] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended
[  605.667300][T21313] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  605.667336][T21313] System zones: 0-2, 18-18, 34-35
[  605.668125][T21313] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  605.678047][T21320] netlink: 152 bytes leftover after parsing attributes in process `syz.4.5606'.
[  605.715648][T12580] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  605.726396][T21320] : renamed from bond0 (while UP)
[  605.754431][T13552] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  605.787410][T21326] loop4: detected capacity change from 0 to 1024
[  605.795039][T21326] EXT4-fs: Ignoring removed orlov option
[  605.806968][T21326] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  605.831704][T21326] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  605.857655][T13726] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  605.945541][T21337] FAULT_INJECTION: forcing a failure.
[  605.945541][T21337] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  605.958769][T21337] CPU: 0 UID: 0 PID: 21337 Comm: syz.4.5611 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(voluntary) 
[  605.958859][T21337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  605.958872][T21337] Call Trace:
[  605.958878][T21337]  <TASK>
[  605.958898][T21337]  __dump_stack+0x1d/0x30
[  605.958997][T21337]  dump_stack_lvl+0xe8/0x140
[  605.959020][T21337]  dump_stack+0x15/0x1b
[  605.959035][T21337]  should_fail_ex+0x265/0x280
[  605.959068][T21337]  should_fail+0xb/0x20
[  605.959124][T21337]  should_fail_usercopy+0x1a/0x20
[  605.959169][T21337]  _copy_from_user+0x1c/0xb0
[  605.959196][T21337]  __sys_bpf+0x178/0x790
[  605.959242][T21337]  __x64_sys_bpf+0x41/0x50
[  605.959274][T21337]  x64_sys_call+0x2478/0x2fb0
[  605.959365][T21337]  do_syscall_64+0xd0/0x1a0
[  605.959452][T21337]  ? clear_bhb_loop+0x40/0x90
[  605.959478][T21337]  ? clear_bhb_loop+0x40/0x90
[  605.959505][T21337]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  605.959531][T21337] RIP: 0033:0x7fec7697e969
[  605.959550][T21337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  605.959658][T21337] RSP: 002b:00007fec74fe7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  605.959680][T21337] RAX: ffffffffffffffda RBX: 00007fec76ba5fa0 RCX: 00007fec7697e969
[  605.959696][T21337] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020
[  605.959711][T21337] RBP: 00007fec74fe7090 R08: 0000000000000000 R09: 0000000000000000
[  605.959726][T21337] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  605.959741][T21337] R13: 0000000000000000 R14: 00007fec76ba5fa0 R15: 00007fffba5e1278
[  605.959766][T21337]  </TASK>
[  606.189432][T21339] SELinux: failed to load policy
[  606.243400][T21346] netlink: 'syz.4.5615': attribute type 13 has an invalid length.
[  606.259838][T21349] SELinux: failed to load policy
[  606.300495][T21351] SELinux: failed to load policy
[  606.327598][T21353] loop3: detected capacity change from 0 to 512
[  606.350237][T21353] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  606.359548][T21353] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  606.376278][T21357] loop0: detected capacity change from 0 to 512
[  606.383088][T21353] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended
[  606.384855][T21357] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[  606.400495][T21357] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.5619: invalid indirect mapped block 2683928664 (level 1)
[  606.415518][T21353] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  606.427139][T21355] netlink: 'syz.4.5620': attribute type 13 has an invalid length.
[  606.430466][T21353] System zones: 0-2, 18-18, 34-34
[  606.441177][T21357] EXT4-fs (loop0): Remounting filesystem read-only
[  606.447831][T21353] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  606.447873][T21357] EXT4-fs (loop0): 1 truncate cleaned up
[  606.463898][T21353] EXT4-fs (loop3): 1 truncate cleaned up
[  606.468541][T21357] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  606.474480][T21353] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  606.516747][T12165] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  606.616483][T21366] loop4: detected capacity change from 0 to 512
[  606.627485][T21366] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  606.636726][T21366] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  606.681871][T21366] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  606.695934][T21370] SELinux: failed to load policy
[  606.722356][T21366] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  606.731262][T21366] System zones: 0-2, 18-18, 34-34
[  606.740201][T21366] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  606.755272][T21376] loop2: detected capacity change from 0 to 512
[  606.764659][T21366] EXT4-fs (loop4): 1 truncate cleaned up
[  606.781106][T21366] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  606.815476][T13726] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  606.821063][T21382] SELinux: failed to load policy
[  606.829815][T21376] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.5627: invalid indirect mapped block 256 (level 2)
[  606.830014][T21385] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  606.851816][T21376] EXT4-fs (loop2): 2 truncates cleaned up
[  606.880989][T21385] SELinux: failed to load policy
[  606.882419][T21376] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  606.913274][T21376] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  606.933725][T21391] loop1: detected capacity change from 0 to 512
[  606.955787][T21389] netlink: 'syz.3.5631': attribute type 13 has an invalid length.
[  606.964817][T13248] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  606.974929][T21391] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  606.984095][T21391] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  607.021444][T21391] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  607.034752][T21391] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  607.050409][T21391] System zones: 0-2, 18-18, 34-34
[  607.073862][T21391] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  607.091974][T21391] EXT4-fs (loop1): 1 truncate cleaned up
[  607.098134][T21391] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  607.148022][T21406] loop2: detected capacity change from 0 to 164
[  607.177503][T13552] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  607.244767][T21414] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  607.260005][T21414] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  607.445374][T21423] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  607.454161][T21423] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  607.578449][T21426] loop1: detected capacity change from 0 to 1024
[  607.585918][T21426] EXT4-fs: Ignoring removed mblk_io_submit option
[  607.592559][T21426] EXT4-fs: Ignoring removed nobh option
[  607.598126][T21426] EXT4-fs: Ignoring removed bh option
[  607.755335][T21426] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  607.956212][T21431] loop4: detected capacity change from 0 to 8192
[  608.353418][T13552] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  608.456042][T21445] loop3: detected capacity change from 0 to 256
[  608.563270][T21445] FAT-fs (loop3): Directory bread(block 64) failed
[  608.569916][T21445] FAT-fs (loop3): Directory bread(block 65) failed
[  608.576636][T21445] FAT-fs (loop3): Directory bread(block 66) failed
[  608.583289][T21445] FAT-fs (loop3): Directory bread(block 67) failed
[  608.589938][T21445] FAT-fs (loop3): Directory bread(block 68) failed
[  608.596625][T21445] FAT-fs (loop3): Directory bread(block 69) failed
[  608.603232][T21445] FAT-fs (loop3): Directory bread(block 70) failed
[  608.609815][T21445] FAT-fs (loop3): Directory bread(block 71) failed
[  608.616453][T21445] FAT-fs (loop3): Directory bread(block 72) failed
[  608.623101][T21445] FAT-fs (loop3): Directory bread(block 73) failed
[  608.920281][T21449] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5646'.
[  609.848107][T21458] loop4: detected capacity change from 0 to 512
[  609.876707][T21458] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  609.936438][T21458] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5650'.
[  610.001839][T21458] Cannot find del_set index 3 as target
[  610.085173][T21461] loop4: detected capacity change from 0 to 512
[  610.110444][T21461] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  610.119687][T21461] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  610.150312][ T3309] udevd[3309]: symlink '../../loop4' '/dev/disk/by-diskseq/2744.tmp-b7:4' failed: Read-only file system
[  610.220955][ T3510] udevd[3510]: symlink '../../loop0' '/dev/disk/by-diskseq/2733.tmp-b7:0' failed: Read-only file system
[  610.253419][ T3510] udevd[3510]: symlink '../../loop0' '/dev/disk/by-diskseq/2733.tmp-b7:0' failed: Read-only file system
[  610.259579][T21461] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  610.279184][ T3309] udevd[3309]: symlink '../../loop4' '/dev/disk/by-label/syzkaller.tmp-b7:4' failed: Read-only file system
[  610.282833][   T29] kauditd_printk_skb: 50 callbacks suppressed
[  610.282850][   T29] audit: type=1326 audit(1747153987.376:14721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21464 comm="syz.0.5653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb28ce969 code=0x7ffc0000
[  610.297813][ T3309] udevd[3309]: symlink '../../loop4' '/dev/disk/by-diskseq/2744.tmp-b7:4' failed: Read-only file system
[  610.320353][   T29] audit: type=1326 audit(1747153987.376:14722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21464 comm="syz.0.5653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb28ce969 code=0x7ffc0000
[  610.332581][ T3309] udevd[3309]: symlink '../../loop4' '/dev/disk/by-label/syzkaller.tmp-b7:4' failed: Read-only file system
[  610.398379][ T3309] udevd[3309]: symlink '../../loop2' '/dev/disk/by-diskseq/2735.tmp-b7:2' failed: Read-only file system
[  610.429985][T21461] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  610.449176][T21461] System zones: 0-2, 18-18, 34-34
[  610.468541][T21461] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  610.488169][   T29] audit: type=1326 audit(1747153987.506:14723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21464 comm="syz.0.5653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=163 compat=0 ip=0x7fdcb28ce969 code=0x7ffc0000
[  610.511829][   T29] audit: type=1326 audit(1747153987.506:14724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21464 comm="syz.0.5653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb28ce969 code=0x7ffc0000
[  610.512398][T21461] EXT4-fs (loop4): 1 truncate cleaned up
[  610.535446][   T29] audit: type=1326 audit(1747153987.506:14725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21464 comm="syz.0.5653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb28ce969 code=0x7ffc0000
[  610.578520][T21472] serio: Serial port ptm0
[  610.583890][T21461] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  610.593174][ T3309] udevd[3309]: symlink '../../loop0' '/dev/disk/by-diskseq/2733.tmp-b7:0' failed: Read-only file system
[  610.620685][T13726] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  610.695354][T21475] loop3: detected capacity change from 0 to 512
[  610.695574][ T3309] udevd[3309]: symlink '../../loop3' '/dev/disk/by-diskseq/2740.tmp-b7:3' failed: Read-only file system
[  610.704198][T21475] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  610.725093][ T3309] udevd[3309]: symlink '../../loop3' '/dev/disk/by-diskseq/2740.tmp-b7:3' failed: Read-only file system
[  610.769665][T21475] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.5657: invalid indirect mapped block 2683928664 (level 1)
[  610.784582][T21475] EXT4-fs (loop3): Remounting filesystem read-only
[  610.797962][T21475] EXT4-fs (loop3): 1 truncate cleaned up
[  610.804080][T21475] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  610.841734][T21480] tipc: Started in network mode
[  610.846669][T21480] tipc: Node identity 800, cluster identity 4711
[  610.853196][T21480] tipc: Node number set to 2048
[  610.864613][T21486] loop0: detected capacity change from 0 to 512
[  610.913170][T21486] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[  610.955663][T21480] netlink: 9412 bytes leftover after parsing attributes in process `syz.1.5659'.
[  610.965377][T21486] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.5661: invalid indirect mapped block 2683928664 (level 1)
[  610.982160][T21486] EXT4-fs (loop0): Remounting filesystem read-only
[  610.988873][T21486] EXT4-fs (loop0): 1 truncate cleaned up
[  610.995723][T21486] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  611.077171][T21497] loop1: detected capacity change from 0 to 512
[  611.106393][T21497] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  611.115599][T21497] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  611.142309][T12165] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  611.170612][T21497] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  611.183092][T21497] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  611.201824][T21497] System zones: 0-2, 18-18, 34-34
[  611.207387][T21497] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  611.230638][T13248] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  611.242141][T21502] SELinux: failed to load policy
[  611.351023][   T29] audit: type=1326 audit(1747153988.436:14726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21505 comm="syz.0.5665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb28ce969 code=0x7ffc0000
[  611.374777][   T29] audit: type=1326 audit(1747153988.436:14727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21505 comm="syz.0.5665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb28ce969 code=0x7ffc0000
[  611.398554][   T29] audit: type=1326 audit(1747153988.436:14728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21505 comm="syz.0.5665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=163 compat=0 ip=0x7fdcb28ce969 code=0x7ffc0000
[  611.422390][   T29] audit: type=1326 audit(1747153988.436:14729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21505 comm="syz.0.5665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb28ce969 code=0x7ffc0000
[  611.446714][   T29] audit: type=1326 audit(1747153988.436:14730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21505 comm="syz.0.5665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb28ce969 code=0x7ffc0000
[  611.481328][T21497] EXT4-fs (loop1): 1 truncate cleaned up
[  611.487481][T21497] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  611.543280][T21508] netlink: 'syz.3.5667': attribute type 13 has an invalid length.
[  611.563178][T21513] serio: Serial port ptm0
[  611.634655][T13552] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  611.737829][T21518] loop2: detected capacity change from 0 to 1024
[  611.744982][T21518] EXT4-fs: Ignoring removed mblk_io_submit option
[  611.751573][T21518] EXT4-fs: Ignoring removed nobh option
[  611.757251][T21518] EXT4-fs: Ignoring removed bh option
[  611.808087][T21518] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  612.024682][T21525] loop1: detected capacity change from 0 to 512
[  612.052856][T21525] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  612.082100][T21525] EXT4-fs (loop1): 1 truncate cleaned up
[  612.095603][T21525] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  612.119841][T21525] netlink: 96 bytes leftover after parsing attributes in process `syz.1.5670'.
[  612.197018][T21529] loop3: detected capacity change from 0 to 8192
[  612.264583][T12580] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  612.301674][T21535] loop0: detected capacity change from 0 to 256
[  612.409054][T21535] FAT-fs (loop0): Directory bread(block 64) failed
[  612.420859][T21535] FAT-fs (loop0): Directory bread(block 65) failed
[  612.427550][T21535] FAT-fs (loop0): Directory bread(block 66) failed
[  612.587123][T21535] FAT-fs (loop0): Directory bread(block 67) failed
[  612.593770][T21535] FAT-fs (loop0): Directory bread(block 68) failed
[  612.600306][T21535] FAT-fs (loop0): Directory bread(block 69) failed
[  612.607392][T21535] FAT-fs (loop0): Directory bread(block 70) failed
[  612.614294][T21535] FAT-fs (loop0): Directory bread(block 71) failed
[  612.677293][T21535] FAT-fs (loop0): Directory bread(block 72) failed
[  612.712579][T21535] FAT-fs (loop0): Directory bread(block 73) failed
[  612.869236][T13552] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  612.902191][T21549] loop1: detected capacity change from 0 to 512
[  612.949636][T21549] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[  612.965939][T21549] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.5677: invalid indirect mapped block 2683928664 (level 1)
[  612.995148][T21549] EXT4-fs (loop1): Remounting filesystem read-only
[  613.002157][T21549] EXT4-fs (loop1): 1 truncate cleaned up
[  613.008516][T21549] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  613.217164][T13552] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  613.252103][T21556] loop1: detected capacity change from 0 to 1024
[  613.264107][T21556] EXT4-fs: Ignoring removed bh option
[  613.269605][T21556] EXT4-fs: inline encryption not supported
[  613.276804][T21556] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  613.293515][T21556] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  613.302985][T21556] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 2: comm syz.1.5678: lblock 2 mapped to illegal pblock 2 (length 1)
[  613.317187][T21556] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 48: comm syz.1.5678: lblock 0 mapped to illegal pblock 48 (length 1)
[  613.331688][T21556] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.5678: Failed to acquire dquot type 0
[  613.343461][T21556] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  613.353248][T21556] EXT4-fs error (device loop1): ext4_evict_inode:259: inode #11: comm syz.1.5678: mark_inode_dirty error
[  613.365047][T21556] EXT4-fs warning (device loop1): ext4_evict_inode:262: couldn't mark inode dirty (err -117)
[  613.375825][T21556] EXT4-fs (loop1): 1 orphan inode deleted
[  613.382916][T21556] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  613.395637][ T5583] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:11: lblock 1 mapped to illegal pblock 1 (length 1)
[  613.410588][ T5583] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:11: Failed to release dquot type 0
[  613.423492][T21556] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  613.433145][T21556] EXT4-fs error (device loop1): __ext4_get_inode_loc:4450: comm syz.1.5678: Invalid inode table block 1 in block_group 0
[  613.446287][T21556] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  613.456037][T21556] EXT4-fs error (device loop1): ext4_quota_off:7219: inode #3: comm syz.1.5678: mark_inode_dirty error
[  613.514131][T21559] loop1: detected capacity change from 0 to 1024
[  613.523248][T21559] EXT4-fs: Ignoring removed orlov option
[  613.531268][T21559] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  613.591637][T21563] loop1: detected capacity change from 0 to 512
[  613.601990][T21563] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  613.611225][T21563] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  613.622068][T21563] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  613.631161][T21563] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  613.639360][T21563] System zones: 0-2, 18-18, 34-34
[  613.645423][T21563] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  613.661021][T21563] EXT4-fs (loop1): 1 truncate cleaned up
[  613.864127][T21570] serio: Serial port ptm1
[  614.043257][T21577] loop4: detected capacity change from 0 to 1024
[  614.058747][T21577] EXT4-fs: Ignoring removed bh option
[  614.064316][T21577] EXT4-fs: inline encryption not supported
[  614.109009][T21577] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  614.133941][T21577] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  614.183989][T21577] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 2: comm syz.4.5685: lblock 2 mapped to illegal pblock 2 (length 1)
[  614.228801][T21577] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 48: comm syz.4.5685: lblock 0 mapped to illegal pblock 48 (length 1)
[  614.270710][T21577] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.5685: Failed to acquire dquot type 0
[  614.310947][T21577] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  614.331287][T21577] EXT4-fs error (device loop4): ext4_evict_inode:259: inode #11: comm syz.4.5685: mark_inode_dirty error
[  614.363296][T21577] EXT4-fs warning (device loop4): ext4_evict_inode:262: couldn't mark inode dirty (err -117)
[  614.404459][T21577] EXT4-fs (loop4): 1 orphan inode deleted
[  614.470583][ T5615] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:43: lblock 1 mapped to illegal pblock 1 (length 1)
[  614.500894][ T5615] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:43: Failed to release dquot type 0
[  614.531782][T21577] EXT4-fs error (device loop4): __ext4_get_inode_loc:4450: comm syz.4.5685: Invalid inode table block 1 in block_group 0
[  614.545192][T21577] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  614.565376][T21577] EXT4-fs error (device loop4): ext4_quota_off:7219: inode #3: comm syz.4.5685: mark_inode_dirty error
[  614.638018][T21591] loop4: detected capacity change from 0 to 1024
[  614.647227][T21591] EXT4-fs: Ignoring removed orlov option
[  614.680915][T21591] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  614.785283][T21595] loop1: detected capacity change from 0 to 1024
[  614.805488][T21595] EXT4-fs: Ignoring removed orlov option
[  614.829194][T21595] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  614.857316][T21597] loop0: detected capacity change from 0 to 8192
[  615.175072][T21616] loop1: detected capacity change from 0 to 1024
[  615.182536][T21616] EXT4-fs: Ignoring removed mblk_io_submit option
[  615.189093][T21616] EXT4-fs: Ignoring removed nobh option
[  615.194740][T21616] EXT4-fs: Ignoring removed bh option
[  615.302923][ T3309] udevd[3309]: symlink '../../loop1' '/dev/disk/by-diskseq/2777.tmp-b7:1' failed: Read-only file system
[  615.376389][ T3309] udevd[3309]: symlink '../../loop1' '/dev/disk/by-diskseq/2777.tmp-b7:1' failed: Read-only file system
[  615.564150][ T3309] udevd[3309]: symlink '../../loop2' '/dev/disk/by-diskseq/2757.tmp-b7:2' failed: Read-only file system
[  615.575694][T21621] loop2: detected capacity change from 0 to 1024
[  615.582968][T21621] EXT4-fs: Ignoring removed bh option
[  615.588433][T21621] EXT4-fs: inline encryption not supported
[  615.595688][T21621] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  615.602321][ T3309] udevd[3309]: symlink '../../loop2' '/dev/disk/by-diskseq/2778.tmp-b7:2' failed: Read-only file system
[  615.617776][T21621] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  615.618622][ T3309] udevd[3309]: symlink '../../loop2' '/dev/disk/by-label/syzkal\xff\xff\xff\xff\xff\xff\xff\x7f.tmp-b7:2' failed: Read-only file system
[  615.640399][T21621] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #3: block 2: comm syz.2.5695: lblock 2 mapped to illegal pblock 2 (length 1)
[  615.654833][T21621] __quota_error: 38 callbacks suppressed
[  615.654851][T21621] Quota error (device loop2): qtree_write_dquot: dquota write failed
[  615.668758][T21621] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #3: block 48: comm syz.2.5695: lblock 0 mapped to illegal pblock 48 (length 1)
[  615.686122][T21621] Quota error (device loop2): v2_write_file_info: Can't write info structure
[  615.695074][T21621] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.5695: Failed to acquire dquot type 0
[  615.717945][T21621] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  615.724864][ T3309] udevd[3309]: symlink '../../loop4' '/dev/disk/by-diskseq/2773.tmp-b7:4' failed: Read-only file system
[  615.730965][T21621] EXT4-fs error (device loop2): ext4_evict_inode:259: inode #11: comm syz.2.5695: mark_inode_dirty error
[  615.750487][T21621] EXT4-fs warning (device loop2): ext4_evict_inode:262: couldn't mark inode dirty (err -117)
[  615.761324][T21621] EXT4-fs (loop2): 1 orphan inode deleted
[  615.767876][ T5580] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:9: lblock 1 mapped to illegal pblock 1 (length 1)
[  615.783088][ T5580] Quota error (device loop2): remove_tree: Can't read quota data block 1
[  615.791673][ T5580] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:9: Failed to release dquot type 0
[  615.819944][T21621] EXT4-fs error (device loop2): __ext4_get_inode_loc:4450: comm syz.2.5695: Invalid inode table block 1 in block_group 0
[  615.836577][T21621] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  615.846959][ T3309] udevd[3309]: symlink '../../loop0' '/dev/disk/by-diskseq/2775.tmp-b7:0' failed: Read-only file system
[  615.860235][T21621] EXT4-fs error (device loop2): ext4_quota_off:7219: inode #3: comm syz.2.5695: mark_inode_dirty error
[  615.873176][ T3309] udevd[3309]: symlink '../../loop0' '/dev/disk/by-diskseq/2775.tmp-b7:0' failed: Read-only file system
[  615.879578][T21628] serio: Serial port ptm0
[  615.888725][ T3309] udevd[3309]: symlink '../../loop0' '/dev/disk/by-diskseq/2779.tmp-b7:0' failed: Read-only file system
[  615.888885][T21628] ==================================================================
[  615.907980][T21628] BUG: KCSAN: data-race in _prb_read_valid / prb_reserve
[  615.915049][T21628] 
[  615.917376][T21628] write to 0xffffffff868e7170 of 88 bytes by task 3309 on cpu 1:
[  615.925105][T21628]  prb_reserve+0x696/0xaf0
[  615.929549][T21628]  vprintk_store+0x56d/0x860
[  615.934150][T21628]  vprintk_emit+0x178/0x650
[  615.938666][T21628]  devkmsg_emit+0x7f/0xb0
[  615.943021][T21628]  devkmsg_write+0x1e3/0x2b0
[  615.947634][T21628]  do_iter_readv_writev+0x41e/0x4c0
[  615.952848][T21628]  vfs_writev+0x2c9/0x870
[  615.957186][T21628]  do_writev+0xe7/0x210
[  615.961353][T21628]  __x64_sys_writev+0x45/0x50
[  615.966052][T21628]  x64_sys_call+0x2006/0x2fb0
[  615.970739][T21628]  do_syscall_64+0xd0/0x1a0
[  615.975258][T21628]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  615.981162][T21628] 
[  615.983493][T21628] read to 0xffffffff868e7170 of 8 bytes by task 21628 on cpu 0:
[  615.991130][T21628]  _prb_read_valid+0x1c4/0x920
[  615.995920][T21628]  prb_read_valid+0x3c/0x60
[  616.000445][T21628]  console_unlock+0x164/0x330
[  616.005131][T21628]  vprintk_emit+0x388/0x650
[  616.009644][T21628]  vprintk_default+0x26/0x30
[  616.014242][T21628]  vprintk+0x1d/0x30
[  616.018150][T21628]  _printk+0x79/0xa0
[  616.022068][T21628]  serport_ldisc_read+0x1ed/0x300
[  616.027111][T21628]  tty_read+0x151/0x470
[  616.031285][T21628]  do_iter_readv_writev+0x41e/0x4c0
[  616.036510][T21628]  vfs_readv+0x1e3/0x670
[  616.040778][T21628]  do_readv+0xe7/0x210
[  616.044868][T21628]  __x64_sys_readv+0x45/0x50
[  616.049477][T21628]  x64_sys_call+0x29af/0x2fb0
[  616.054166][T21628]  do_syscall_64+0xd0/0x1a0
[  616.058688][T21628]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  616.064853][T21628] 
[  616.067192][T21628] value changed: 0x0000000000002e72 -> 0x0000000000004e72
[  616.074301][T21628] 
[  616.076623][T21628] Reported by Kernel Concurrency Sanitizer on:
[  616.082785][T21628] CPU: 0 UID: 0 PID: 21628 Comm: syz.0.5696 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(voluntary) 
[  616.095296][T21628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  616.105385][T21628] ==================================================================
[  616.221300][ T3309] udevd[3309]: symlink '../../loop1' '/dev/disk/by-diskseq/2777.tmp-b7:1' failed: Read-only file system